Re: Don't press the big red buttom on the wall!

2016-08-29 Thread Aaron C. de Bruyn
"“Unfortunately because it was human error we weren’t prepared for it,” Holmes said." I'm glad to know they are prepared for errors by deities and squirrels. -A On Mon, Aug 29, 2016 at 4:02 PM, Alan Buxey wrote: > >“Unfortunately because it was human >error we weren’t prepared for it,” > >Holm

Re: Handling of Abuse Complaints

2016-08-29 Thread Larry Sheldon
On 8/29/2016 11:47, Steve Atkins wrote: Unless your abuse / security desk is staffed by lawyers it's probably better to avoid words like "criminal" and "unlawfully" altogether and stick to "in violation of our ToS". Or "in violation of your contract (which includes, by reference, our TOS) w

Re: Handling of Abuse Complaints

2016-08-29 Thread Mark Andrews
In message <3dc3fd61-5123-0070-dd4e-435ce6785...@satchell.net>, Stephen Satchell writes: > On 08/29/2016 08:55 AM, Jason Lee wrote: > > NANOG Community, > > > > I was curious how various players in this industry handle abuse complaints. > > I'm drafting a policy for the service provider I'm worki

Re: Cloudflare reverse DNS SERVFAIL, normal?

2016-08-29 Thread Mark Andrews
In message <20160829234737.ga16...@cmadams.net>, Chris Adams writes: > Once upon a time, Mark Andrews said: > > The following is general and is not directed at Cloudflare. I know > > some people don't think errors in the reverse DNS are not critical > > but if you are delegated a zone it is your

Re: Cloudflare reverse DNS SERVFAIL, normal?

2016-08-29 Thread David
On 2016-08-29 5:47 PM, Chris Adams wrote: Once upon a time, Mark Andrews said: The following is general and is not directed at Cloudflare. I know some people don't think errors in the reverse DNS are not critical but if you are delegated a zone it is your responsablity to ensure your servers a

Re: Cloudflare reverse DNS SERVFAIL, normal?

2016-08-29 Thread Chris Adams
Once upon a time, Mark Andrews said: > The following is general and is not directed at Cloudflare. I know > some people don't think errors in the reverse DNS are not critical > but if you are delegated a zone it is your responsablity to ensure > your servers are correctly serving that zone regard

ARIN 2016 Election - Nominations and Voter Eligibility

2016-08-29 Thread John Curran
Folks - For those of you associated with ARIN member organizations, please note two important deadlines fast approaching - 31 August is the last day for ARIN Members to nominate candidates to serve on the ARIN Board of Trustees and/or Advisory Council. Note that 31 August is also the last day

Re: Don't press the big red buttom on the wall!

2016-08-29 Thread Alan Buxey
>“Unfortunately because it was human >error we weren’t prepared for it,” >Holmes said. "But it's elementary!" Watson retorted :) alan

Re: Don't press the big red buttom on the wall!

2016-08-29 Thread Scott Weeks
--- s...@donelan.com wrote: From: Sean Donelan See that big red button on the wall under the sign "Do Not Push This Button!" DC 911 outage caused by contractor error http://wtop.com/dc/2016/08/dc-911-outage-caused-by-contractor-who-pulled-wrong-switch/

Don't press the big red buttom on the wall!

2016-08-29 Thread Sean Donelan
See that big red button on the wall under the sign "Do Not Push This Button!" DC 911 outage caused by contractor error http://wtop.com/dc/2016/08/dc-911-outage-caused-by-contractor-who-pulled-wrong-switch/ WASHINGTON — D.C. is now operating two separate 911 centers after a power outage

Re: Cloudflare reverse DNS SERVFAIL, normal?

2016-08-29 Thread Mark Andrews
In message , Jeremy writes: > We're seeing a huge uptick in reverse dns lookup failures across an app, > 99% are all for Cloudflare ip addresses. > > Instead of seeing a PTR or NXDOMAIN we're getting back SERVFAIL. > > Does anyone know if this is a standard response from them? Do they not have

Re: Cloudflare reverse DNS SERVFAIL, normal?

2016-08-29 Thread David
On 2016-08-29 2:46 PM, Jeremy wrote: We're seeing a huge uptick in reverse dns lookup failures across an app, 99% are all for Cloudflare ip addresses. Instead of seeing a PTR or NXDOMAIN we're getting back SERVFAIL. Does anyone know if this is a standard response from them? Do they not have rev

Cloudflare reverse DNS SERVFAIL, normal?

2016-08-29 Thread Jeremy
We're seeing a huge uptick in reverse dns lookup failures across an app, 99% are all for Cloudflare ip addresses. Instead of seeing a PTR or NXDOMAIN we're getting back SERVFAIL. Does anyone know if this is a standard response from them? Do they not have reverse DNS setup for their networks? Try

Re: Handling of Abuse Complaints

2016-08-29 Thread Stephen Satchell
On 08/29/2016 08:55 AM, Jason Lee wrote: NANOG Community, I was curious how various players in this industry handle abuse complaints. I'm drafting a policy for the service provider I'm working for about handing of complaints registered against customer IP space. In this example I have a customer

Looking for Spamhaus contact

2016-08-29 Thread Hristo Dimitrov
Hi, Could somebody from Spamhaus contact me offlist? I've run in the case "[CIDR] conflicts with other PBL master records" where the whole range previously seems to have belonged to another ISP who has returned the range to RIPE. However they still have it listed in a PBL and it is not possi

Re: Handling of Abuse Complaints

2016-08-29 Thread William Herrin
On Mon, Aug 29, 2016 at 12:47 PM, Steve Atkins wrote: > Unless your abuse / security desk is staffed by > lawyers it's probably better to avoid words like > "criminal" and "unlawfully" altogether Not really an ambiguous situation IMHO, but whatever floats your boat. Bear in mind, though, that if

Re: Handling of Abuse Complaints

2016-08-29 Thread Joe Maimon
There is a distance to travel between cant and cant effectively. Perhaps they can share how they ever so effectively have solved this conundrum. After all, they are apparently not getting any abuse reports ever. As an operator of several open resolvers (with rate limiting and automatic mitigat

Re: Handling of Abuse Complaints

2016-08-29 Thread Filip Hruska
Google, Level 3 and the like's open DNS resolvers are strictly rate-limited. They can't be used as DDOS amplifiers. On the other hand, there are tons of open resolvers on the internet without any sort of limiting. These are very effective amplifiers. Regards, Filip On 29.8.2016 19:04, Laszlo

Re: Handling of Abuse Complaints

2016-08-29 Thread Lee Fuller
It's quite possible to operate an open resolver while still making it very difficult to use in an amplification attack - maybe coach your user into using rate limiting if you are particularly keen not to 'shape' their traffic at this stage. PowerDNS has a very powerful load balancer that can be use

Re: Handling of Abuse Complaints

2016-08-29 Thread Laszlo Hanyecz
I know this is against the popular religion here but how is this abuse on the part of your customer? Google, Level3 and many others also run open resolvers, because they're useful services. This is why we can't have nice things. On 2016-08-29 15:55, Jason Lee wrote: NANOG Community, I was

Re: Handling of Abuse Complaints

2016-08-29 Thread Steve Atkins
> On Aug 29, 2016, at 9:37 AM, Paul Ferguson wrote: > > I would suggest that violation of the ISP’s ToS should also be consideration, > since what may be illegal in one jurisdiction may not be illegal in some > other jurisdictions. Unless your abuse / security desk is staffed by lawyers it's

RE: Handling of Abuse Complaints

2016-08-29 Thread Gareth Tupper
"unlawfully" is probably redundant, unless these are otherwise law-abiding cyber criminals. /pedant -Original Message- From: NANOG [mailto:nanog-boun...@nanog.org] On Behalf Of William Herrin Sent: Monday, August 29, 2016 9:28 AM To: Jason Lee Cc: nanog@nanog.org Subject: Re: Handling o

Re: Handling of Abuse Complaints

2016-08-29 Thread Paul Ferguson
I would suggest that violation of the ISP’s ToS should also be consideration, since what may be illegal in one jurisdiction may not be illegal in some other jurisdictions. Repeated abuse and violations of an ISP’s ToS should also be a consideration to terminate a customer relationship, and ISPs

Re: Handling of Abuse Complaints

2016-08-29 Thread William Herrin
Dear Customer, Cyber criminals are using your network (and ours) to unlawfully attack other computers on the Internet. The specific security problem with your DNS server at 127.0.0.1 was first reported to you on Date1 (original message attached). Please be advised that we will interrupt network a

Re: Handling of Abuse Complaints

2016-08-29 Thread Hugo Slabbert
On Mon 2016-Aug-29 10:55:27 -0500, Jason Lee wrote: NANOG Community, I was curious how various players in this industry handle abuse complaints. I'm drafting a policy for the service provider I'm working for about handing of complaints registered against customer IP space. In this example I ha

Handling of Abuse Complaints

2016-08-29 Thread Jason Lee
NANOG Community, I was curious how various players in this industry handle abuse complaints. I'm drafting a policy for the service provider I'm working for about handing of complaints registered against customer IP space. In this example I have a customer who is running an open resolver and have r

Re: Level 3 voice outage?

2016-08-29 Thread Ryan, Spencer
Ran across this earlier, it sounds bad. https://www.reddit.com/r/networking/comments/504xbo/level_3_voice_outage_global_ticket_being_worked/ Spencer Ryan | Senior Systems Administrator | sr...@arbor.net Arbor Networks +1.734.794.5033 (d) | +1.734.846.2053 (m) www.arborn

Level 3 voice outage?

2016-08-29 Thread David Hubbard
Curious if anyone else is having issues with Level 3 (legacy Twtelecom specifically) enterprise SIP? I’m at minute 45 of being on hold with them, so I suspect they are having known issues. Our sales rep mentioned a toll free outage being tracked under master ticket 11377637 but I don’t have th

Brocade 6910 password recovery

2016-08-29 Thread Kaiser, Erich
Anyone know how to do a password recovery on the BR6910 Metro E Switches, I know standard procedure for 99% of their gear, but it does not work on these. I have searched high and low online and also submitted ticket, with no answer yet. Thanks in advance. Erich Kaiser The Fusion Network