Re: Sources of network security templates or designs

http://www.team-cymru.org/ReadingRoom/Templates/ Sean Donelan wrote on 24/06/10 02:45: While every network designer/architect with an emphasis on security has his or her favorite design templates, I'm wondering what public sources do people start with? Cisco SAFE and other published

Re: PCAP Sanitization Tool

I would add the following to FLAIM - ranonymize from Argus http://www.qosient.com/argus/anonymization.htm - Anontools http://www.ics.forth.gr/dcs/Activities/Projects/anontool.html - CPAN IP::Anonymous http://search.cpan.org/~jtk/IP-Anonymous-0.04/lib/IP/Anonymous.pm But I'm not sure if all of

Re: China prefix hijack

changes to avoid the Youtube/Pakistan Telecom effect or i-root as said previously. thanks Best regards, Jul Grzegorz Janoszka wrote on 08/04/10 18:33: Just half an hour ago China Telecom hijacked one of our prefixes: Your prefix: X.Y.Z.0/19: Prefix Description: NETNAME

DNS TXT field usage ?

correspond ? (even if, nearly everything is possible) Maybe somebody knows of a webpage referencing common usage of DNS fields ? I found http://www.iana.org/assignments/dns-parameters but it points only on RFC not practical usage. Thanks a lot. Best regards, Jul [1] http://en.wikipedia.org/wiki

anti-ddos test solutions ?

to test basic attack (synflood, slowloris, socktress, ...) with 10 to hundred computers would be interesting, so not a tool but more a service. Found only Parabon [1] on Google Does someone know something similar ? Thanks Best regards, Jul Note: Please, don't forget this kind

Re: DDoS mitigation recommendations

Sorry but RTFM http://mailman.nanog.org/pipermail/nanog/2010-January/thread.html#16675 Best regards

Re: D/DoS mitigation hardware/software needed.

Stefan Fouant wrote on 11/01/10 14:45: If anyone is interested, I did pretty exhaustive research into the Service Provider marketplace last summer (before Verisign came out with their VIDN). I've got some slides which outline the costs, mitigation capacity, etc. of many different providers.

Re: D/DoS mitigation hardware/software needed.

Martin Hannigan wrote on 05/01/10 16:50: I see two possible solutions: - Netflow/sFlow/***Flow feeding a BGP RTBH - Inline device - Outsource to service provider I want to add some stuff on this as I didn't see them with a quick check on the thread. Local solution always have a

more ISP regulation for UK ?

After Nederlands, things may also move in UK against eCrime + apComms backs ISP cleanup activity http://www.lightbluetouchpaper.org/2009/10/17/apcomms-backs-isp-cleanup-activity/ Extract: The All Party Parliamentary Communications Group (apComms) recently published their report into an