Re: Frontier Pennsylvania

You don't have a PUC? http://www.puc.state.pa.us/filing_resources/filing_complaints.aspx 8 months exceeds my friendly contact limit. On Sun, Mar 22, 2020, 18:41 Matt Hoppes wrote: > Does anyone have a contact for Frontier Central PA OSP contact? > > There is a line that has been down for over

Re: Sunday traffic curiosity

Le 23/03/2020 à 04:05, Aaron Gould a écrit : I can see it now Business driver that moved the world towards multicast 2020 Coronavirus I should abstain from writing about this but I think the situation of virus with a crown version year 2020 is not yet understood on business.

RE: COVID-19 vs. peering wars

Worldwide, I don’t know. In Canada, peering is pretty messed up, i.e. it simply doesn’t happen at scale. At all. Even where it should. The overwhelmingly vast majority of Canadian traffic, even when nominally in-country, still transits the USA somewhere. If we had “ideal” full-mesh peering

Re: Frontier Pennsylvania

I normally like to talk directly to the manager, rather than raise a PUC fuss when possible, but Frontier seems to change GMs like they change underwear. On 3/23/20 8:57 AM, Jeff Shultz wrote: You don't have a PUC? http://www.puc.state.pa.us/filing_resources/filing_complaints.aspx 8 months

Re: Sunday traffic curiosity

I'm in Ohio. Dewine announced a stay at home order in the middle of the day. Our uplink that feeds more urban customers, kept increasing as per usual. Our uplink that feeds exclusively rural customers, leveled out - the usage peaked at 1600!!! I'd never seen it not peak at 2000-2400 at night.

Re: UDP/123 policers & status

Steven Sommars said: > The secure time transfer of NTS was designed to avoid amplification attacks. I work on NTP software (ntpsec). I have a couple of low cost cloud servers in the pool where I can test things and collect data. I see bursts of 10K to several million packets "from" the same IP

Re: Sunday traffic curiosity

On 23/Mar/20 12:18, Alexandre Petrescu wrote: > > I should abstain from writing about this but I think the situation of > virus with a crown version year 2020 is not yet understood on business. > > There are signs business would work as before: business challenges > that we know worked are now

RE: Sunday traffic curiosity

On Monday, 23 March, 2020 04:19, Alexandre Petrescu wrote: > ... like 'remote surgery' needs to transmit haptic feedback effect across > long distances. Personally, if I were asked to give consent for surgery and it contained a risk "the communications uses the Internet for transport and

Re: Sunday traffic curiosity

On 23/Mar/20 05:51, Owen DeLong wrote: > How do you see that happening? Are people going to stop wanting to watch live, > or are teams going to somehow play asynchronously (e.g. Lakers vs. Celtics, > the Lakers play on November 5 at 6 PM and the Celtics play on November 8 > at 11 AM)? > >

Re: Sunday traffic curiosity

Thank you for the update. The rural usage peaking at 1600 (instead of 2000-24000) sounds as a relevant indicator, I think. It sounds as a shock ('in the middle of the day'), but it is a wave.  People spot it from a distance, and you do have time.  There are levels of 'stay home',

South Africa On Lockdown - Coronavirus

So the South African president has just announced - full country lockdown from midnight this Thursday, 26th March (SAST). If any of you have any work that needs to be done out here, please bear that in mind. Mark.

Re: South Africa On Lockdown - Coronavirus - Update!

But also: "The categories of people who will be exempted from this lockdown are... those involved in the production, distribution and supply of... telecommunications services" https://www.cnbcafrica.com/news/2020/03/23/breaking-nationwide-lockdown-announced-in-south-africa/

Re: South Africa On Lockdown - Coronavirus - Update!

And oh, it's for 21 days... Mark. On 23/Mar/20 20:22, Mark Tinka wrote: > So the South African president has just announced - full country > lockdown from midnight this Thursday, 26th March (SAST). > > If any of you have any work that needs to be done out here, please > bear that in mind. > >

RE: South Africa On Lockdown - Coronavirus - Update!

On Monday, 23 March, 2020 14:21, Peter Beckman wrote: >Software-based TOTP offer more security than no one-time passwords, but >admittedly less than the physical tokens. Google Authenticator, Authy, >1Password, LastPass all support TOTP. Hardware tokens are nothing more than dedicated

Re: South Africa On Lockdown - Coronavirus - Update!

On 23/Mar/20 21:20, Peter Beckman wrote: > But also: > >     "The categories of people who will be exempted from this lockdown > are... those involved in the production, distribution and supply > of... telecommunications services" > > >

Re: South Africa On Lockdown - Coronavirus - Update!

I dont know where are people about supporting VPN and one-time passwords on tokens. At my work place a few people dont have tokens (OTP - One Time PAsswords).  The reserve of these tokens has been exhausted.  NEw ones are being on order.  Until then some people cant get on VPN. Some people

Re: South Africa On Lockdown - Coronavirus - Update!

Software-based TOTP offer more security than no one-time passwords, but admittedly less than the physical tokens. Google Authenticator, Authy, 1Password, LastPass all support TOTP. On Mon, 23 Mar 2020, Alexandre Petrescu wrote: I dont know where are people about supporting VPN and one-time

Re: South Africa On Lockdown - Coronavirus - Update!

I’ve already been playing with YubiKeys, but sadly Google Titan wouldn't work with Windows Hello. Might be something I was doing wrong... Sincerely, Eric Tykwinski TrueNet, Inc. P: 610-429-8300 > On Mar 23, 2020, at 4:21 PM, Peter Beckman wrote: > > Software-based TOTP offer more security

Re: Sunday traffic curiosity

> On Mar 23, 2020, at 10:14 , Mark Tinka wrote: > > > > On 23/Mar/20 05:51, Owen DeLong wrote: > > >> How do you see that happening? Are people going to stop wanting to watch >> live, >> or are teams going to somehow play asynchronously (e.g. Lakers vs. Celtics, >> the Lakers play on

Re: South Africa On Lockdown - Coronavirus - Update!

On 23/Mar/20 22:39, Keith Medcalf wrote: > Hardware tokens are nothing more than dedicated hardware TOTP devices with > perhaps a few additional parameters programmed at manufacturing time. > Example, RSAID keyfobs are nothing more than TOTP generators with > manufacturer programmed

Re: Internet operations during pandemics

On Thu, Mar 19, 2020 at 1:47 PM Seth Mattinen wrote: > > On 3/19/20 9:51 AM, Christopher Morrow wrote: > > During this time, however, 'work from home' technology hasn't really > > progressed along the same path, has it? So, "get to the vpn" is still > > largely a process of getting packets across

Re: South Africa On Lockdown - Coronavirus - Update!

I think that’s the major sticky point, I would hope we could all agree on one thing, but that also leaves one entry point of failure. Hopefully we can all agree that FIDO2, OAUTH2, et al, with be a winner in the long run so everything can just use one simple authentication mechanism.

RE: South Africa On Lockdown - Coronavirus - Update!

Both Fido and OAuth2 are inherently insecure. While they may be better than nothing at all, they are only very slightly better than proper password selection and management. -- The fact that there's a Highway to Hell but only a Stairway to Heaven says a lot about anticipated traffic volume.

Re: South Africa On Lockdown - Coronavirus - Update!

I don't know about Fido, but i've been making that point about Oauth for a very long time. As a browser mechanism which implements a sandbox it's fine. But when you have apps that can reach out of the sandbox it is definitely not fine. Mike On 3/23/20 2:59 PM, Keith Medcalf wrote: Both Fido

Re: crypto frobs

On Mon, Mar 23, 2020 at 7:00 PM Michael Thomas wrote: > > On 3/23/20 3:53 PM, Sabri Berisha wrote: > > Hi, > > In my experience, yubikeys are not very secure. I know of someone in my team > who would generate a few hundred tokens during a meeting and save the output > in a text file. Then

Re: South Africa On Lockdown - Coronavirus - Update!

On Mon, Mar 23, 2020 at 19:25 Owen DeLong wrote: > > I confess I haven’t investigated the implementation details, but is it > possible for one to issue ubikeys > to an employee in a secure way with those features disabled? > Yes. And changing that setup either requires a separate admin pin or

Re: South Africa On Lockdown - Coronavirus - Update!

I see no possible future outcome in which "one simple authentication mechanism" could ever be remotely close to reasonably secure. On Mon, Mar 23, 2020 at 5:57 PM Eric Tykwinski wrote: > I think that’s the major sticky point, I would hope we could all agree on > one thing, but that also

Re: COVID-19 vs. peering wars

Regardless of the possible gain from “solving” peering. You are talking about renegotiating thousands of individual agreements between hundreds of individual organizations, all while everyone is in lockdown. or You ask a handful of companies to make changes to their own systems. Good luck

RE: interesting troubleshooting

> Saku Ytti > Sent: Saturday, March 21, 2020 4:26 PM > > On Sat, 21 Mar 2020 at 18:19, Mark Tinka wrote: > > > So the three or four times we tried to get FAT going (in a > > multi-vendor network), it simply didn't work. > > Yeah we run it in a multivendor network (JNPR, CSCO, NOK), works. > >

Re: South Africa On Lockdown - Coronavirus - Update!

> On Mar 23, 2020, at 16:50 , Warren Kumari wrote: > > On Mon, Mar 23, 2020 at 6:53 PM Sabri Berisha wrote: >> >> Hi, >> >> In my experience, yubikeys are not very secure. I know of someone in my team >> who would generate a few hundred tokens during a meeting and save the output >> in a

Re: South Africa On Lockdown - Coronavirus - Update!

On Mon, Mar 23, 2020 at 8:03 PM Owen DeLong wrote: > > > > > On Mar 23, 2020, at 16:50 , Warren Kumari wrote: > > > > On Mon, Mar 23, 2020 at 6:53 PM Sabri Berisha wrote: > >> > >> Hi, > >> > >> In my experience, yubikeys are not very secure. I know of someone in my > >> team who would

Re: South Africa On Lockdown - Coronavirus - Update!

how did 'africa on lockdown' get sidetracked into OTP conversations?

crypto frobs

On 3/23/20 3:53 PM, Sabri Berisha wrote: Hi, In my experience, yubikeys are not very secure. I know of someone in my team who would generate a few hundred tokens during a meeting and save the output in a text file. Then they'd have a small python script which was triggered by a hotkey on my

Re: crypto frobs

On Mon, Mar 23, 2020 at 7:34 PM George Michaelson wrote: > > I don't see SKEY style OTP lists as inherently bad. "its how you do > it" which concerns me, not that it is done. > trust your users to always ALWAYS find the worst way to use the product. Note the label on bleach bottles: "Do not

Re: South Africa On Lockdown - Coronavirus - Update!

> On Mar 23, 2020, at 17:24 , Warren Kumari wrote: > > On Mon, Mar 23, 2020 at 8:03 PM Owen DeLong > wrote: >> >> >> >>> On Mar 23, 2020, at 16:50 , Warren Kumari wrote: >>> >>> On Mon, Mar 23, 2020 at 6:53 PM Sabri Berisha wrote: Hi, In my

California full facilities CLEC

Need a small yet large COVID traffic load related favor from a California Full-Facilities CLEC/CLC, pls contact me off list if you can help. Connecting at-risk citizens. -Ben

Re: crypto frobs

On Mon, Mar 23, 2020 at 20:08 Michael Loftis wrote: > > > On Mon, Mar 23, 2020 at 18:50 William Herrin wrote: > >> On Mon, Mar 23, 2020 at 5:16 PM Warren Kumari wrote: >> > Well, yes and no. With a Yubiikey the attacker has to be local to >> > physically touch the button[0] - with just an SSH

Re: South Africa On Lockdown - Coronavirus - Update!

Hi, In my experience, yubikeys are not very secure. I know of someone in my team who would generate a few hundred tokens during a meeting and save the output in a text file. Then they'd have a small python script which was triggered by a hotkey on my macbook to push "keyboard" input. They did

Re: crypto frobs

> On 3/23/20 3:53 PM, Sabri Berisha wrote: > In my experience, yubikeys are not very secure. I know of someone in my team > who would generate a few hundred tokens during a meeting and save the output > in a text file. Then they'd have a small python script which was triggered by > a hotkey on

Re: South Africa On Lockdown - Coronavirus - Update!

First, for your whole message: s/\s+UBIKEY'/YUBIKEY/g s/\s+UBI/YUBI/g thanks. On Mon, Mar 23, 2020 at 9:24 PM Owen DeLong wrote: > > > > On Mar 23, 2020, at 17:24 , Warren Kumari wrote: > > On Mon, Mar 23, 2020 at 8:03 PM Owen DeLong wrote: > > > > > On Mar 23, 2020, at 16:50 , Warren

Re: crypto frobs

On Mon, Mar 23, 2020 at 18:50 William Herrin wrote: > On Mon, Mar 23, 2020 at 5:16 PM Warren Kumari wrote: > > Well, yes and no. With a Yubiikey the attacker has to be local to > > physically touch the button[0] - with just an SSH key, anyone who gets > > access to the machine can take my key

Re: crypto frobs

I don't see SKEY style OTP lists as inherently bad. "its how you do it" which concerns me, not that it is done. -G On Tue, Mar 24, 2020 at 9:33 AM Christopher Morrow wrote: > > On Mon, Mar 23, 2020 at 7:00 PM Michael Thomas wrote: > > > > On 3/23/20 3:53 PM, Sabri Berisha wrote: > > > > Hi, >

Re: South Africa On Lockdown - Coronavirus - Update!

On Mon, Mar 23, 2020 at 6:53 PM Sabri Berisha wrote: > > Hi, > > In my experience, yubikeys are not very secure. I know of someone in my team > who would generate a few hundred tokens during a meeting and save the output > in a text file. Then they'd have a small python script which was

Re: crypto frobs

On Mon, Mar 23, 2020 at 7:57 PM William Herrin wrote: > > > On 3/23/20 3:53 PM, Sabri Berisha wrote: > > In my experience, yubikeys are not very secure. I know of someone in my > > team who would generate a few hundred tokens during a meeting and save the > > output in a text file. Then they'd

Re: crypto frobs

On Mon, Mar 23, 2020 at 5:16 PM Warren Kumari wrote: > Well, yes and no. With a Yubiikey the attacker has to be local to > physically touch the button[0] - with just an SSH key, anyone who gets > access to the machine can take my key and use it. This puts it in the > "something you have" (not

Re: South Africa On Lockdown - Coronavirus - Update!

I guess I wasn’t as detailed as should be, multi factor authentication should hopefully have 1 standard which will work for everything. So we have an app on our phone to authenticate after a username/password which give a 6 digit key, or we use a hardware based key to sign a OTP. Really

Re: South Africa On Lockdown - Coronavirus - Update!

On Mon, Mar 23, 2020 at 4:53 PM Sabri Berisha wrote: > > Hi, > > In my experience, yubikeys are not very secure. I know of someone in my team > who would generate a few hundred tokens during a meeting and save the output > in a text file. Then they'd have a small python script which was

(updated) COVID-19 fast/small resources page

It's here: http://www.firemountain.net/covid19.html There's now a link to Job Snijders' "Internet Operations During Pandemics" PDF, better coverage of mapping/tracking, links to every US state's public health agency, links to Canada and Mexico's CDC-equivalents, etc. I also fixed the character