Re: FCC: rulemaking on STIR/SHAKEN and Caller ID Authentication

On 9/10/20 9:49 AM, Sean Donelan wrote: At this month's FCC rulemaking meeting, it will consider https://www.fcc.gov/document/fcc-announces-tentative-agenda-september-open-meeting-6 Promoting Caller ID Authentication to Combat Spoofed Robocalls – The Commission will consider a Report

CPE and bufferbloat

Given the new stresses of teleworking on the infrastructure, have providers been getting more calls about "the internetz are slow"? And if so, can you attribute any of it to bufferbloat? Anecdotally, I once had to hunt down a problem where the network was slagged because a friend was

Re: questions asked during network engineer interview

On 7/20/20 1:02 PM, William Herrin wrote: On Mon, Jul 20, 2020 at 5:09 AM Mark Tinka wrote: We'll probably spend 95% of the time just talking about who they are, and 5% on the role. That has worked well for me in the past decade, and none of those hires had any "certificates" to impress me

Re: questions asked during network engineer interview

On 7/14/20 10:33 AM, Owen DeLong wrote: On Jul 14, 2020, at 10:20 , Michael Thomas <mailto:m...@mtcc.com>> wrote: I once failed a network engineering interview because I couldn’t recite the OSPF LSA types by number from memory. It was fine, the fact that was a key question in the

Re: questions asked during network engineer interview

On 7/13/20 8:16 PM, Greg Skinner via NANOG wrote: If you ever decide to revisit this subject, I recall it was covered here in this thread started by Bill Herrin . My general feelings on the subject of tech interviews are

Re: questions asked during network engineer interview

On 7/14/20 12:09 PM, William Herrin wrote: On Mon, Jul 13, 2020 at 3:12 PM Mehmet Akcin wrote: I am hosting a live show a few times a month about internet infrastructure and today's topics were, your favorite questions asked network engineers - you can watch the recording here

Re: questions asked during network engineer interview

On 7/14/20 12:32 PM, William Herrin wrote: On Tue, Jul 14, 2020 at 12:17 PM Michael Thomas wrote: On 7/14/20 12:09 PM, William Herrin wrote: On Mon, Jul 13, 2020 at 3:12 PM Mehmet Akcin wrote: I am hosting a live show a few times a month about internet infrastructure and today's topics

Re: questions asked during network engineer interview

On 7/14/20 10:46 AM, Shawn L via NANOG wrote: I completely agree.  One of the people I used to do interviews with would look through the resume, etc. and then say something like "this all looks good. Tell me about something you've done".  And we'd move on to talk about projects and how they

Re: questions asked during network engineer interview

On 7/14/20 1:23 PM, Scott Weeks wrote: --- mpet...@netflight.com wrote: From: Matthew Petach On Tue, Jul 14, 2020, 11:00 Ahmed elBorno wrote: I had less than two years experience. The interviewer asked me: [...] 2) If we had a 1GB file that we need to transfer between America and Europe,

Re: questions asked during network engineer interview

On 7/14/20 11:19 AM, Peter Kristolaitis wrote: On 2020-07-14 1:55 p.m., Michael Thomas wrote: But I try as much as possible to put candidates at ease because I know that not everybody reacts to interviews the same, which is sadly not the case far too often. Mike I often ask a question

Re: questions asked during network engineer interview

On 7/14/20 1:14 PM, Matthew Petach wrote: On Tue, Jul 14, 2020, 11:00 Ahmed elBorno > wrote: 15 years ago, I applied to a network admin role at Google, it was for their corporate office, not even the production network. I had less than two years

Re: questions asked during network engineer interview

On 7/14/20 1:25 PM, Miles Fidelman wrote: - If someone asks me to do an algorithm or coding question, I generally tell them to pound sand; that I generally use the language statement or a standard library, or look up hard stuff in Knuth - and then ask them if they'd like to discuss the

lol reddit

Apparently they've completely melted down. But them crapping out is almost a daily occurrence anyway. Does anybody have any insight as to why they are unable to keep the lights on? I mean from the outside what they do is not particularly complicated. At least Usenet had an inter-domain

Re: cloud backup

On 7/26/20 1:09 PM, Randy Bush wrote: i backup using arq on macos catalina. on two macs, i need maybe 3-4tb max. google seems to be $100/mo for 20tb (big jump from $100/yr for 2tb). backblaze b2 looks more like $20/mo for 4tb ($0.005/gb/mo). anyone else done a similar analysis? AWS S3

Re: cloud backup

On 7/26/20 1:52 PM, Rob Szarka wrote: On 2020-07-26 16:39, Michael Thomas wrote: On 7/26/20 1:09 PM, Randy Bush wrote: i backup using arq on macos catalina. on two macs, i need maybe 3-4tb max.  google seems to be $100/mo for 20tb (big jump from $100/yr for 2tb).  backblaze b2 looks more

Re: cloud backup

On 7/26/20 1:44 PM, Nick Hilliard wrote: Michael Thomas wrote on 26/07/2020 21:39: AWS S3 infrequent access is $40/month. If it's really archival backup AWS has glacier which is less than $20/month, but it's name gives you an idea of what it is. how much does a full restore cost

Re: cloud backup

On 7/26/20 3:30 PM, Randy Bush wrote: well, i was once given a tee shirt which said "i may have helped build the information superhighway, but i can not drive a car" :) When I was working on carrier VoIP in the early days at Cisco, i was like "wait, why am i doing this? i don't even

Re: questions asked during network engineer interview

On 7/23/20 3:26 PM, William Herrin wrote: On Thu, Jul 23, 2020 at 6:33 AM Michael Douglas wrote: One time I got asked in an interview how to estimate the number of manholes in a city. I replied that I would google 'pretentious interview questions' for a problem solving methodology. Many

Re: Parler

On 1/10/21 10:33 PM, Randy Bush wrote: In article <474fe6a6-9aa8-47a7-82c6-860a21b0e...@ronan-online.com> you write: When I actively hosted USENET servers, I was repeatedly warned by in-house and external counsel, not to moderate which groups I hosted based on content, less I become

Re: Parler

On 1/10/21 9:01 PM, William Herrin wrote: Look closer. The AWS RDS version of mysql is unable to replicate with your version of mysql. The configuration which would permit it is not exposed to you. Unless something has changed in the last couple years? Anything that abstracts database

Re: 10g residential CPE

On 12/25/20 11:34 AM, Niels Bakker wrote: * mark.ti...@seacom.com (Mark Tinka) [Fri 25 Dec 2020, 19:11 CET]: I have a mate up the road who just paid for a 1Gbps FTTH service because it was the same price as a 100Mbps one. He generally lives between 900Kbps and 20Mbps. Gigabit-level FTTH

Re: [External] Re: 10g residential CPE

On 12/25/20 2:32 PM, John Levine wrote: In article <3b0bc95b-c741-7561-1692-75fac74d5...@mtcc.com> you write: I'd definitely appreciate symmetric, or at least better in upstream. Obviously zoom and all of that has made a lie of us not needing upstream. It would make cloud based "filesystems"

Re: [External] Re: 10g residential CPE

On 12/25/20 11:39 AM, Cory Sell wrote: I saturate my 1G connection most during game downloads, file downloads/uploads, full backup uploads, etc. I also self-host a lot of services for personal use and having that peak speed is really nice when you need it. It also had no traffic limit per

Re: [External] Re: 10g residential CPE

On 12/25/20 12:40 PM, Chris Adams wrote: The other aspect of it is that we're doing these downloads while continuing to play other games and chat (both things sensitive to latency). Some have family/roommates in the home, so they may be streaming audio and/or video at the same time. Do we

Re: 10g residential CPE

On 12/25/20 1:22 PM, Niels Bakker wrote: Wouldn't cpe that implements proper queuing disciplines be a lot simpler and cheaper? I got bit by that once when a friend was downloading a game and it. I flashed a router with openwrt and fiddled with their queuing nobs and everything was golden.

Re: [External] Re: 10g residential CPE

On 12/25/20 1:25 PM, John Levine wrote: In article you write: I'm fine with "free stuff". But it seems we've hit saturation on a number of front like camera and screen pixels, ghz of cpu, TB's of disk, Gb's of netio for residential stuff. My provider on the other (Volcano Internet) doesn't

Re: [External] Re: 10g residential CPE

On 12/26/20 12:44 PM, John Levine wrote: In the 25 years since I've lived here the power has never been out as long as a day so I think a four day battery will give me pretty good reliability. I know my fiber is a straight shot to the CO since I'm only four blocks away but as far as I can

Re: 10g residential CPE

On 12/26/20 10:00 AM, Tony Wicks wrote: Actually the equipment vendor's build in this sort of situation is normally directly related to the availability of affordable chipsets from the likes of Broadcom. For example the chipset in my XGSPON router is a BCM6858. No vendor is going to spend

Re: [External] Re: 10g residential CPE

On 12/25/20 12:53 PM, Chris Adams wrote: Once upon a time, Michael Thomas said: On 12/25/20 12:40 PM, Chris Adams wrote: The other aspect of it is that we're doing these downloads while continuing to play other games and chat (both things sensitive to latency). Some have family/roommates

Re: [External] Re: 10g residential CPE

On 12/27/20 2:26 AM, Mark Tinka wrote: On 12/26/20 23:57, Michael Thomas wrote: Yeah, it burned somebody's house to a crisp here last year around here. It certainly makes the case why leaving professionals in charge of power issues is the better idea. although with pg it's a tough call

Re: [External] Re: 10g residential CPE

On 12/27/20 9:38 AM, Mark Tinka wrote: On 12/27/20 18:14, Michael Thomas wrote: We have both, and are going to get a battery. But the battery would probably only be good for about a day which is not enough, especially with these planned shutoffs because they have to inspect their wire

Re: [External] Re: 10g residential CPE

On 12/27/20 10:00 AM, Valdis Klētnieks wrote: On Sun, 27 Dec 2020 17:57:17 +0100, Baldur Norddahl said: Here in the civilised world we bury the wires ;-) Even the long-haul 765kv and up connections across the power grid? In the US, they're out on towers for a reason - you can fly along

Re: [External] Re: 10g residential CPE

On 12/27/20 10:26 AM, Baldur Norddahl wrote: All of the 400V and 10 kV is buried. That means no wires along streets, anywhere. The long haul transmission network consists mostly of 150 kV and 400 kV lines. That has been partly buried, especially near and in cities. There was a project to

Re: 10g residential CPE

On 12/29/20 9:00 AM, Mike Hammett wrote: People love throwing their own router behind whatever Internet connection they have. It almost never fails to cause a problem. Well *some* of us know what we're doing. And in my case, it's both because it doesn't deal with buffer bloat, but more

Re: 10g residential CPE

On 12/29/20 10:36 AM, Aaron Wendel wrote: It does have wireless.  That doesn't prevent people from trying to use their old equipment in addition. ("My dad's uncle's cousin's former roommate works in IT and told me I just needed to plug my old router into your new router.") Yes, but does

Re: 10g residential CPE

On 12/29/20 8:42 AM, Aaron Wendel wrote: Oh, we still get calls about speed issues. It's always wonderful when someone puts their own 10 year old Linksys WRT54G and double NATs behind our CPE then sends in a speed test wondering why they're only getting 10Mbits on their Gbit line.  We get

Re: [External] Re: 10g residential CPE

w.facebook.com/thebrotherswisp><https://www.youtube.com/channel/UCXSdfxQv7SpoRQYNyLwntZg> -------- *From: *"Michael Thomas" *To: *nanog@nanog.org *Sent: *Friday, December 25, 2020 1:27:39 PM *Subject: *Re: [External] Re: 10g

Re: 10g residential CPE

On 12/26/20 8:00 AM, Valdis Klētnieks wrote: Anybody got a feel for what percent of the third-party gear currently sold to consumers has sane bufferbloat support in 2020, when we've *known* that de-bufferbloated gear is a viable differentiatior if marketed right (consider the percent of

Re: [External] Re: 10g residential CPE

On 12/26/20 1:13 PM, Valdis Klētnieks wrote: On Sat, 26 Dec 2020 12:58:42 -0800, Michael Thomas said: can go on for days. We have a generator because of this, but everybody getting a generator in the middle of the Berkeley Hills would be something of its own horror show, but it will probably

Re: 10g residential CPE

On 12/26/20 9:50 AM, Mel Beckman wrote: i really don't get what the problem is. it's like they're being deliberately obtuse. Michael, If vendors saw a 10GbE CPE market, they would serve it. Obviously they don’t see a market. Why don’t people insisting vendors build their hobby horse see

Re: 10g residential CPE

On 12/26/20 10:09 AM, Valdis Klētnieks wrote: On Sat, 26 Dec 2020 17:50:28 +, Mel Beckman said: If vendors saw a 10GbE CPE market, they would serve it. Obviously they don’t see a market. Why don’t people insisting vendors build their hobby horse see that? It’s like they’re being

Re: 10g residential CPE

On 12/26/20 11:49 AM, Mel Beckman wrote: The thing is that the pandemic has changed the game on the ground: there is an actual feature differentiator to be had. But having dealt with the Linksys folks in the past I don't put out much hope that they'll take advantage of it. The software

Re: [External] Re: 10g residential CPE

On 12/25/20 11:04 AM, Mark Tinka wrote: On 12/25/20 20:10, Hunter Fuller via NANOG wrote: It would meet some customers’ needs because multiple people could use 1G of service at a time. I think it is interesting to distinguish “>1G CPE” from “true 10G CPE” and I suspect many / most

Re: [External] Re: 10g residential CPE

On 12/28/20 4:06 PM, Matthew Petach wrote: I think you may have misunderstood Keith's comment about it being "all a matter of time-frame." He's right--when the sun consumes all the hydrogen in the hydrogen-to-helium fusion process and begins to expand into a red dwarf, that's it; there's no

Re: NDAA passed: Internet and Online Streaming Services Emergency Alert Study

On 1/3/21 1:22 PM, Mark Delany wrote: Even with a participating application, quiescing in-memory state to something less than, say, 1KB is probably hard but might be doable with a participating TLS library. If so, a million quiescent connections could conceivably be stashed in a coupla GB

Re: NDAA passed: Internet and Online Streaming Services Emergency Alert Study

On 1/3/21 1:50 PM, Mark Delany wrote: On 03Jan21, Brandon Martin allegedly wrote: I was thinking more in the original context of this thread w.r.t. potential distribution of emergency alerts. That could, if semi-centralized, easily result in 100s of million connections to juggle across a

Re: NDAA passed: Internet and Online Streaming Services Emergency Alert Study

On 1/3/21 5:00 PM, Keith Medcalf wrote: I think the challenge here is that there's a category of people who don't have cell phones, who don't have cable TV, but receive content over their internet connection. I happen to live with someone like that, so I know it's a non-zero portion of the

Re: NDAA passed: Internet and Online Streaming Services Emergency Alert Study

On 1/3/21 12:26 AM, Valdis Klētnieks wrote: On Sun, 03 Jan 2021 18:59:37 +1300, Mark Foster said: In my mind it's simple.� The streaming companies need to have a channel within their streaming system to get a message to a 'currently active customer' (emergency popup notification that appears

Re: NDAA passed: Internet and Online Streaming Services Emergency Alert Study

On 1/3/21 12:11 PM, Jay R. Ashworth wrote: - Original Message - From: "Michael Thomas" To: nanog@nanog.org On 1/2/21 10:31 PM, Jay R. Ashworth wrote: Yup; it's messy, and in many many different ways. Won't be a snapshot rollout. Not a bad idea, though, if implemented

Re: NDAA passed: Internet and Online Streaming Services Emergency Alert Study

On 1/3/21 2:23 PM, Jay R. Ashworth wrote: - Original Message - From: "Michael Thomas" Well, TCP means that the servers have to expect to have 100k's of open connections; I remember that used to be a problem. As for D'oH, sure; let's centralize the attack surface. The onl

Re: NDAA passed: Internet and Online Streaming Services Emergency Alert Study

On 1/2/21 10:15 PM, b...@theworld.com wrote: Let's just go back to air-raid sirens. I'm old enough to remember when they were tested every day at noon, which also told you it was noon (lunch!) We'd say heaven help us if The Enemy attacked at noon. They still do in San Francisco garbled

Re: NDAA passed: Internet and Online Streaming Services Emergency Alert Study

On 1/2/21 10:31 PM, Jay R. Ashworth wrote: including foreign locations, generations of emergency alert packets *MUST* be responsibility of *LOCAL* ISPs. A problem is that home routers may filter the broadcast packets from ISPs, but the routers may be upgraded or some device to snoop the

Re: NDAA passed: Internet and Online Streaming Services Emergency Alert Study

On 1/3/21 2:27 PM, Ask Bjørn Hansen wrote: On Jan 3, 2021, at 13:57, Michael Thomas wrote: I just sent some mail to the myshakes folks at UCB asking if they have an achitecture/network document. In their case for earthquakes it need to be less than ~10 seconds so they are really pushing

Re: NDAA passed: Internet and Online Streaming Services Emergency Alert Study

On 1/3/21 10:01 AM, Rich Kulawiec wrote: On Sun, Jan 03, 2021 at 03:26:07AM -0500, Valdis Kl??tnieks wrote: Meanwhile, this causes yet another problem - if Hulu has to be able to know what alerts should be piped down to my device, this now means that every single police and public safety

Re: Parler

On 1/10/21 9:36 AM, William Herrin wrote: First, this would appear to be an illustration of the single-vendor problem. You don't have a credible continuity of operations plan if a termination by a single vendor can take you and keep you offline. It's the single point of failure that otherwise

Re: Parler

On 1/10/21 10:17 AM, Töma Gavrichenkov wrote: Peace, On Sun, Jan 10, 2021 at 9:09 PM Michael Thomas wrote: Yes, it's been obvious to anybody who's only paying even a little attention that AWS is trying to be build a walled garden. In my experience, moving off Amazon services isn't

Re: Parler

On 1/10/21 10:24 AM, Töma Gavrichenkov wrote: Peace, On Sun, Jan 10, 2021 at 9:18 PM Michael Thomas wrote: At my previous job, I built a tool which could spin up a server farm given a platform agnostic design spec from a list of vendors as well as pricing it out. It was really more

Re: Parler

On 1/10/21 10:21 AM, William Herrin wrote: On Sun, Jan 10, 2021 at 9:55 AM Töma Gavrichenkov wrote: I'd say it starts to be "inconvenient approaching impossible" only at the point where you begin to use Cloudformation — or when you don't have automated deployment at all. While the

Re: Parler

On 1/10/21 9:55 AM, Töma Gavrichenkov wrote: Peace, On Sun, Jan 10, 2021 at 8:38 PM William Herrin wrote: providers like Amazon tend to make it inconvenient approaching impossible to build cross-platform services. I kinda wonder what a cloud services product would look like that was

Re: Parler

On 1/10/21 11:11 AM, Bryan Fields wrote: Anyone hosting with Amazon/Google/the cloud here should be really concerned with the timing they gave them, 24 hours notice to migrate. Industry standards would seem to be at least 30 days notice. Note this is not the police/courts coming to the host

Re: Parler

On 1/10/21 12:13 PM, Matthew Petach wrote: On Sun, Jan 10, 2021 at 12:03 PM Michael Thomas <mailto:m...@mtcc.com>> wrote: On 1/10/21 11:11 AM, Bryan Fields wrote: > > Anyone hosting with Amazon/Google/the cloud here should be really concerned > with th

Re: Parler

On 1/10/21 5:42 AM, sro...@ronan-online.com wrote: While Amazon is absolutely within their rights to suspend anyone they want for violation of their TOS, it does create an interesting problem. Amazon is now in the content moderation business, which could potentially open them up to

Re: Parler

On 1/10/21 4:00 PM, Eric S. Raymond wrote: sro...@ronan-online.com : While Amazon is absolutely within their rights to suspend anyone they want for violation of their TOS, it does create an interesting problem. Amazon is now in the content moderation business, which could potentially open

Re: Parler

On 1/10/21 4:48 PM, Dan Hollis wrote: On Sun, 10 Jan 2021, Michael Thomas wrote: On 1/10/21 3:15 PM, Izaac wrote: On Sun, Jan 10, 2021 at 12:01:46PM -0800, Michael Thomas wrote: Considering that it seems that there continues to be talk/planning of armed insurrection, I think we can forgive

Re: Parler

On 1/10/21 3:15 PM, Izaac wrote: On Sun, Jan 10, 2021 at 12:01:46PM -0800, Michael Thomas wrote: Considering that it seems that there continues to be talk/planning of armed insurrection, I think we can forgive them for violating professional courtesy. Got links? Ask Google, Apple

Re: Parler

On 1/10/21 3:40 PM, Izaac wrote: On Sun, Jan 10, 2021 at 03:36:18PM -0800, Michael Thomas wrote: On Sun, Jan 10, 2021 at 12:01:46PM -0800, Michael Thomas wrote: Considering that it seems that there continues to be talk/planning of armed insurrection, I think we can forgive them for violating

Re: Hosting recommendations ... ?

On 1/19/21 9:33 AM, Brandon Martin wrote: On 1/19/21 11:44 AM, William Herrin wrote: Cloud = you get virtual servers with virtual storage, generally adjustable to meet your needs. You manage the operating systems and storage within the virtual environment. You DO NOT manage the host operating

Re: DoNotPay Spam?

oh is that where it's coming from. yes. my filter now zaps it. Mike On 1/13/21 2:06 PM, Robert Webb wrote: Anyone else getting spam from DoNotPay everytime they send an email to the list? I have not sent anything in a while until my ATT email and now I am getting this on every new email I

Re: NDAA passed: Internet and Online Streaming Services Emergency Alert Study

On 1/4/21 6:44 AM, Mike Hammett wrote: What makes the most sense is the underlying OS does the work and not each individual app. The underlying OS gets these alerts from some aggregator that collects this information from all jurisdictions. Doing it at the app layer seems foolish. That

Re: NDAA passed: Internet and Online Streaming Services Emergency Alert Study

On 1/3/21 2:01 PM, Andy Brezinsky wrote: At this point I would assume that nearly every device is persisting at least one long lived TCP connection.  Whether it's for telemetry or command and control, everything these days seems to have this capability.  As an example, I can hit a button in

Re: NDAA passed: Internet and Online Streaming Services Emergency Alert Study

On 1/2/21 12:40 PM, Sabri Berisha wrote: - On Jan 1, 2021, at 2:12 PM, Matt Hoppes mattli...@rivervalleyinternet.net wrote: Hi, How would that even work? Force a pop up into web traffic? What if the end users is using an app on a phone? Most, if not all, mobile devices connected to

Re: Google uploading your plain text passwords

[sorry meant to send this to the list] Isn't that what lots of password managers do? I understand that one of them syncs point to point, but that has the downside that it probably needs to be on the same subnet. The actual problem here is that sites only allow a single password. if you could

Re: Google uploading your plain text passwords

On Fri, Jun 11, 2021 at 12:01 PM William Herrin wrote: > On Fri, Jun 11, 2021 at 10:27 AM Michael Thomas wrote: > > Isn't that what lots of password managers do? I understand that one of > them syncs point to point, but that has the downside that it probably needs > to be on

Re: Can somebody explain these ransomwear attacks?

On 6/24/21 3:08 PM, Shane Ronan wrote: A lot of the payments for Ransomware come from Insurance Companies under "Business Interruption Insurance". It in fact may be more cost effective to pay the ransom, than to pay for continued business interruption. Of course along with paying the

Re: OT: Re: Can somebody explain these ransomwear attacks?

On 6/24/21 4:57 PM, Karl Auer wrote: Ransomwear - the latest fashion idea. "Pay me money or I will continue to wear these clothes" I reckon I could make a killing just by stepping out in a knee-length macrame skirt... Lol. Thanks, I knew that didn't look right. Maybe with a crop top to

Re: Can somebody explain these ransomwear attacks?

. But if you pay without finding how they got in, they could turn around and do it again, or sell it on the dark web, right? Mike On Thu, Jun 24, 2021 at 2:44 PM Michael Thomas <mailto:m...@mtcc.com>> wrote: Not exactly network but maybe, but certainly operational. Shouldn't this

Can somebody explain these ransomwear attacks?

Not exactly network but maybe, but certainly operational. Shouldn't this just be handled like disaster recovery? I haven't looked into this much, but it sounds like the only way to stop it is to stop paying the crooks. There is also the obvious problem that if they got in, something (or

Re: Can somebody explain these ransomwear attacks?

On 6/25/21 5:25 AM, Jim wrote: On Thu, Jun 24, 2021 at 5:41 PM Brandon Svec via NANOG wrote: I think a big problem may be that the ransom is actually very cost effective and probably the lowest line item cost in many of these situations where large revenue streams are interrupted and

Re: SITR/SHAKEN implementation in effect today (June 30 2021)

People who are actually interested in this subject are well advised to read this thoroughly because it equally applies to SIP spam with a system far less complex and far fewer gaping security holes as STIR. https://www.usenix.org/system/files/conference/usenixsecurity18/sec18-hu.pdf Mike On

Re: SITR/SHAKEN implementation in effect today (June 30 2021)

On 7/1/21 1:05 PM, Paul Timmins wrote: On 7/1/21 3:53 PM, Keith Medcalf wrote: And this is why this problem will not be solved. The "open relay" is making money from processing the calls, and the end carrier is making money for terminating them. Until fine(s) -- hopefully millions of

Re: Can somebody explain these ransomwear attacks?

On 6/25/21 8:39 AM, Karl Auer wrote: On Fri, 2021-06-25 at 10:05 -0400, Tom Beecher wrote: Everything can be broken, and nothing will ever be 100% secure. If you strive to make sure the cost to break in is massively larger than the value of what could be extracted, you'll generally be ahead

Re: Can somebody explain these ransomwear attacks?

On 6/25/21 11:59 PM, Valdis Klētnieks wrote: On Thu, 24 Jun 2021 14:55:12 -0700, JoeSox said: It gets tricky when 'your' company will lose money $$$ while you wait a month to restore from your cloud backups. If that's a concern, you've *already* totally screwed the pooch regarding DR

Re: SITR/SHAKEN implementation in effect today (June 30 2021)

On 7/10/21 12:09 PM, b...@theworld.com wrote: No, the root of the problem is the telcos making billions on these robocalls. Make that illegal, start fining them billions (whatever it takes), and it will stop. We've already had this discussion on nanog, recently, and people who were in that

Re: SITR/SHAKEN implementation in effect today (June 30 2021)

Nothing has changed for me either. Color me surprised. The real proof will be to see if the originating domain can be determined, and whether the receiving domain does anything about it. Mike On 7/9/21 9:42 AM, Brandon Svec via NANOG wrote: I’m getting the same or more, but did anyone really

Re: SITR/SHAKEN implementation in effect today (June 30 2021)

On 7/9/21 1:36 PM, K. Scott Helms wrote: Nothing will change immediately.  Having said that, I do expect that we will see much more effective enforcement. The investigations will come from the ITG (Industry Traceback Group) with enforcement coming from FCC or FTC depending on the actual

Re: SITR/SHAKEN implementation in effect today (June 30 2021)

On 7/9/21 3:44 PM, Keith Medcalf wrote: On Friday, 9 July, 2021 16:32, K. Scott Helms wrote: Robocalls really aren't a product of the legacy PSTN. Today almost none of them originate from anywhere but VOIP. Now, you can certainly say that if SS7 had robust authentication mechanisms that we

Re: SITR/SHAKEN implementation in effect today (June 30 2021)

On 7/9/21 3:32 PM, K. Scott Helms wrote: On Fri, Jul 9, 2021 at 4:47 PM Michael Thomas <mailto:m...@mtcc.com>> wrote: On 7/9/21 1:36 PM, K. Scott Helms wrote: > Nothing will change immediately.  Having said that, I do expect that > we will see much

Re: SITR/SHAKEN implementation in effect today (June 30 2021)

On 6/30/21 11:30 AM, Sean Donelan wrote: STIR/SHAKEN Broadly Implemented Starting Today https://www.fcc.gov/document/stirshaken-broadly-implemented-starting-today WASHINGTON, June 30, 2021—FCC Acting Chairwoman Jessica Rosenworcel today announced that the largest voice service providers

Re: SITR/SHAKEN implementation in effect today (June 30 2021)

On 6/30/21 12:17 PM, Paul Timmins wrote: On 6/30/21 2:56 PM, Michael Thomas wrote: Just because you can know (fsvo "know") that a call is allowed to assert a number doesn't change anything unless other actions are taken. With DKIM which is far simpler than STIR it would require

Re: DoD IP Space

On 4/24/21 3:45 PM, William Herrin wrote: On Sat, Apr 24, 2021 at 8:26 AM Mel Beckman wrote: This doesn’t sound good, no matter how you slice it. The lack of transparency with a civilian resource is troubling at a minimum. You do understand that the addresses in question are not and have

Something that should put a smile on everybody's face today

And we can help! Cloudflare is setting out to destroy a patent troll: https://www.techdirt.com/articles/20210426/09454946684/patent-troll-sable-networks-apparently-needs-to-learn-lesson-cloudflare-wants-to-destroy-another-troll Mike

Re: Something that should put a smile on everybody's face today

On 4/28/21 2:04 AM, William Herrin wrote: On Tue, Apr 27, 2021 at 10:51 PM Mel Beckman wrote: NANOG is not the right place to post this. This list is not an “interesting news group”, and as fascinating as the patent troll take down is, it has nothing to do with operational issues. Read the

Re: Something that should put a smile on everybody's face today

4D <https://keys.openpgp.org/vks/v1/by-fingerprint/BBAA6BCE33057FD66452711557B60114DE0B314D> On Tue, Apr 27, 2021 at 3:26 PM Michael Thomas <mailto:m...@mtcc.com>> wrote: And we can help! Cloudflare is setting out to destroy a patent troll: https://www.techdirt.com/articles/20210426

Re: Something that should put a smile on everybody's face today

On 4/28/21 10:19 AM, Mel Beckman wrote: Michael, Sorry, but Cloudfare wasn’t sued /because/ they’re a service provider. This dispute is no different than if they had gotten into an argument over a copier toner scammer. And your snide remark about my comments, claiming they are political, is

10 years from now... (was: internet futures)

On 3/26/21 12:26 PM, Mark Tinka wrote: If the last decade is anything to go by, I'm keen to see what the next one brings. Mark. So the obvious question is what will happen to the internet 10 years from now. The last 10 years were all about phones and apps, but that's pretty well played

Re: 10 years from now... (was: internet futures)

On 3/26/21 2:00 PM, Mark Andrews wrote: There are more smart phones in use in the world today the world than can be addressed by IPv4. Complaining about lack of IPv6 deployment has been legitimate for a long time. Telcos shouldn’t have to deploy NATs. Homes shouldn’t have to deploy NATs.

Re: 10 years from now... (was: internet futures)

On 3/26/21 3:31 PM, Mark Tinka wrote: On 3/26/21 23:30, b...@uu3.net wrote: Oh, sorry to disappoint you, but they are not missing anything.. Internet become a consumer product where data is provided by large corporations similary to TV now. Your avarage Joe consumer does NOT care about NAT

Re: OT: Re: Younger generations preferring social media(esque) interactions.

On 3/24/21 5:57 PM, Bryan Fields wrote: On 3/24/21 8:44 PM, Michael Thomas wrote: FWIW, nanog doesn't alter messages. All lists have the option to follow suit. It does. There's a setting in mailman that's enabled for the nanog list. dmarc_moderation_action (privacy): Action to take when

Re: 10 years from now... (was: internet futures)

On 3/27/21 2:50 AM, Valdis Klētnieks wrote: On Fri, 26 Mar 2021 12:42:20 -0700, Michael Thomas said: dishwasher will probably be common, but that's hardly exciting. LEO internet providers will be coming online which might make a difference in the corners of the world where it's hard to get

Re: OT: Re: Younger generations preferring social media(esque) interactions.

On 3/22/21 11:22 PM, Cynthia Revström via NANOG wrote: Hi, As someone from a "younger generation" (2001) who does use mailing lists, semi-actively participates in RIPE mailing lists but also created a network community on Discord, I want to chime in here. > Are they willing to use a

<    1   2   3   4   5   6   7   8   >