On Thu, May 27, 2010 at 8:07 AM, James Bensley jwbens...@gmail.com wrote:
On 27 May 2010 12:10, Dorn Hetzel dhet...@gmail.com wrote:
http://www.cnn.com/2010/TECH/05/27/internet.crunch.2012/index.html?hpt=T2
Disgraceful scaremongery, CCN should be ashamed.
Why should CNN be ashamed? They're
On Thu, Jun 17, 2010 at 8:19 AM, Deric Kwok deric.kwok2...@gmail.com wrote:
My DSL company asks me to set the modem 146 2 and my old company used 14 92
Why it is not standard 1 500?
Because they're wrapping your packet inside another packet that they
then transmit on a line with a 1500 byte
On Thu, Jun 17, 2010 at 12:38 AM, Roy r.engehau...@gmail.com wrote:
On 6/16/2010 7:43 PM, Jon Lewis wrote:
With a larger
network, multiple IP blocks, ***numerous multihomed customers***, some of
which
use IP's we've assigned them, it gets a little more complicated to do.
I could reject at
On Fri, Jun 18, 2010 at 9:21 AM, Steve Bertrand st...@ipv6canada.com wrote:
On 2010.06.18 09:06, William Herrin wrote:
On Fri, Jun 18, 2010 at 8:37 AM, Steve Bertrand st...@ipv6canada.com wrote:
I'm not sure what that accomplishes. It doesn't close any doors. With
loose-mode RPF he can still
On Tue, Jun 22, 2010 at 2:30 PM, Gadi Evron g...@linuxbox.org wrote:
http://www.zdnet.com.au/make-zombie-code-mandatory-govt-report-339304001.htm
A government report into cybercrime has recommended that internet service
providers (ISPs) force customers to use antivirus and firewall software or
On Tue, Jun 29, 2010 at 11:32 AM, Patrick Giagnocavo patr...@zill.net wrote:
And the wider issue of negotiating
good rates with telecoms?
Carrier neutral facility. When it's in their house its their rules and
their rules aren't designed for your benefit. When it's somebody
else's house, they
On Thu, Jul 1, 2010 at 8:04 AM, Gadi Evron g...@linuxbox.org wrote:
http://edition.cnn.com/2010/TECH/web/07/01/finland.broadband/index.html?hpt=T2
In the US, the Communications Act of 1934 brought about the creation
of the Universal Service Fund. The idea, more or less, was that
every phone line
On Mon, Jul 12, 2010 at 1:47 PM, Stefan Molnar ste...@csudsu.com wrote:
Anyoneone know anything about Stratogent ( www.stratogent.com )?
They look to me as a Internap reseller with SaaS direction. I am being
asked to have a meeting with them from one of my VP level guys.
Networking vendors
On Wed, Jul 21, 2010 at 3:18 AM, Fred Baker f...@cisco.com wrote:
IETF IPv6 Operations WG is looking at this draft, and we're interested
in any comments you might have as well.
http://tools.ietf.org/html/draft-arkko-ipv6-transition-guidelines
Guidelines for Using IPv6 Transition Mechanisms,
On Wed, Jul 21, 2010 at 5:37 PM, Owen DeLong o...@delong.com wrote:
http://tools.ietf.org/html/draft-arkko-ipv6-transition-guidelines
There is a third major challenge to dual-stack that isn't addressed in
the document: differing network security models that must deliver the
same result for the
On Thu, Jul 22, 2010 at 3:02 AM, Owen DeLong o...@delong.com wrote:
On Jul 22, 2010, at 12:49 AM, William Herrin wrote:
From the lack of dispute, can I infer agreement with the remainder of
my comments wrt mitigations for the one of my addresses doesn't work
problem and the impracticality
On Thu, Jul 22, 2010 at 11:38 AM, Brian E Carpenter
brian.e.carpen...@gmail.com wrote:
However, the fact is that various *extremely* large operators find themselves
more or less forced into these scenarios by IPv4 exhaustion.
Hi Brian,
Respectfully, anyone betting on what the ISPs will be
On Fri, Jul 23, 2010 at 7:11 AM, Positively Optimistic
positivelyoptimis...@gmail.com wrote:
How do ISPs handle RIAA notices when NATTING customers.. ? We have
several customers that don't require public address space that could be
moved to private.. We're reluctant to make the move due to
On Sat, Jul 24, 2010 at 9:20 PM, Tarig Yassin tariq198...@hotmail.com wrote:
I'm wondering why the software based router is not preferable in
business even if they have high featured Processers, and high capcity of
memory.
What is the main deferent between Appliance router and Software based
On Tue, Aug 3, 2010 at 7:14 PM, Franck Martin fra...@genius.com wrote:
If it is a business, then accurate address does not seem to me an
issue, if it is a private address, I think a bit of fuzziness is helpful
An apartment complex/condo/etc is a business which contains private addresses.
Do
On Wed, Aug 4, 2010 at 3:42 PM, Steven Bellovin s...@cs.columbia.edu wrote:
On Aug 4, 2010, at 1:35 17AM, William Herrin wrote:
For the latter, you're providing significant amounts of a public
resource (IP addresses) to a business whose contact information you're
contractually and ethically
On Thu, Aug 5, 2010 at 4:25 AM, Steven Bellovin s...@cs.columbia.edu wrote:
Clearly, the apartment complex owners could do that if
they so choose. I'm not sure who you suggest should
buy a box from mail boxes etc. yourself and set up
mail forwarding each time you set up a new apartment
complex
On Thu, Aug 5, 2010 at 8:49 AM, valdis.kletni...@vt.edu wrote:
On Thu, 05 Aug 2010 08:04:47 EDT, William Herrin said:
If you feel that way, I suggest you take the issue up on the ARIN
public policy mailing list. Solicit public consensus for a change in
handling for SWIPs for apartment
On Thu, Aug 5, 2010 at 8:54 AM, ML m...@kenweb.org wrote:
There's usually a 50/50 split between the HOA (Home Owners Association)
and the individual that are our customers. In the case of a HOA it's
not that the HOA is reselling it's that we are contracted to service
every member of the HOA
On Thu, Aug 5, 2010 at 9:17 AM, valdis.kletni...@vt.edu wrote:
On Thu, 05 Aug 2010 08:58:48 EDT, William Herrin said:
It takes some creative reading to think I claimed using an alternate
but still correct address (e.g. supplied by mailboxes etc.)
constituted fraud. Alternate != redacted
On Thu, Aug 5, 2010 at 9:37 AM, valdis.kletni...@vt.edu wrote:
On Thu, 05 Aug 2010 09:23:12 EDT, William Herrin said:
Absent such a change, redacting identity and contact info for the apartment
management company remains simple fraud.
fraud is usually defined as deception with intent
On Thu, Aug 5, 2010 at 11:00 AM, valdis.kletni...@vt.edu wrote:
On Thu, 05 Aug 2010 10:30:45 EDT, William Herrin said:
A false representation of a matter of fact whether by words or by
conduct, by false or misleading allegations, or by concealment of what
should have been disclosed
On Fri, Aug 13, 2010 at 1:36 PM, John Levine jo...@iecc.com wrote:
http://www.circleid.com/posts/psst_interested_in_some_lightly_used_ip_addresses/
I don't entirely understand the process. Here's the flow chart as far
as I've figured it out:
1. A sells a /20 of IPv4 space to B for, say,
On Fri, Aug 13, 2010 at 4:25 PM, Vadim Antonov a...@kotovnik.com wrote:
How come ARIN has any say at all if A wants to sell and
B wants to buy? Trying to fend off the imaginary
monopolistic hobgoblin?
Because that portion of the address-using community, people just like
you, that shows up and
On Sat, Aug 14, 2010 at 12:00 AM, John Levine jo...@iecc.com wrote:
And in complete fairness - why should folks who received vast tracts
of addresses for little or no cost under a justified-need regime now
have free reign to monetize their sale?
All of the real estate in my part of New York
On Sun, Aug 15, 2010 at 12:23 AM, John Curran jcur...@arin.net wrote:
https://www.arin.net/about_us/corp_docs/annual_rprt.html
In
between meetings, this topic is probably best suited for the arin-discuss
mailing
list as opposed to the nanog list.
John,
Is arin-discuss still a closed
On Sun, Aug 15, 2010 at 11:44 AM, Owen DeLong o...@delong.com wrote:
ARIN fees and budget are a member concern, not a public concern.
Oh really? The money ARIN spends managing the public's IP addresses
(and how it collects that money and the privileges conferred on the
folks from whom it's
On Sun, Aug 15, 2010 at 3:03 PM, John Curran jcur...@arin.net wrote:
The last round of improvements to the LRSA (version 2.0) added several
circumstances that result in pre-contract status quo, and additional
ones could be added if the community wants such and the Board concurs.
John,
I
On Sun, Aug 15, 2010 at 11:05 PM, Owen DeLong o...@delong.com wrote:
On Aug 15, 2010, at 9:20 AM, William Herrin wrote:
On Sun, Aug 15, 2010 at 11:44 AM, Owen DeLong o...@delong.com wrote:
ARIN fees and budget are a member concern, not a public concern.
I seem to recall that attitude was how
On Mon, Aug 16, 2010 at 1:49 AM, Marco Hogewoning mar...@marcoh.net wrote:
On 15 aug 2010, at 20:05, Randy Bush wrote:
rfc1918 packets are not supposed to reach the public internet. once you
start accommodating their doing so, the downward slope gets pretty steep
and does not end in a nice
On Fri, Aug 20, 2010 at 1:20 PM, Christopher Morrow
christopher.mor...@gmail.com wrote:
Polling a little bit here, there's an active discussion going on
6...@ietf about whether or not v6 routers should:
o be required to implement ip redirect functions (icmpv6 redirect)
o be sending these by
On Thu, Sep 2, 2010 at 5:59 PM, Zhiyun Qian zhiy...@umich.edu wrote:
http://www.eecs.umich.edu/~zhiyunq/pub/oakland10_triangular-spamming.pdf
One of the high-level findings is that we developed probing techniques
to verify that indeed most ISPs are only blocking 1) outgoing traffic
of
On Thu, Sep 2, 2010 at 11:04 PM, Daniel Senie d...@senie.com wrote:
Ingress filtering is the correct tool for the job.
Not really. Ingress filtering only ever protected you from being the
source of spooding attacks, not the destination. The point of Zhiyun's
results is that it doesn't fully
On Mon, Sep 13, 2010 at 3:22 AM, Hank Nussbacher h...@efes.iucc.ac.il wrote:
http://www.wired.com/epicenter/2010/09/paid-prioritized-traffic
No, the founders anticipated source-declared priorities for unpaid
military and government traffic. Commercial Internet really wasn't on
their radar.
On
On Thu, Sep 16, 2010 at 12:10 PM, valdis.kletni...@vt.edu wrote:
On Thu, 16 Sep 2010 08:59:23 CDT, Joe Greco said:
What prevents a service provider from saying We're selling you a
15M/2M circuit, and we guarantee that we've got sufficient capacity
to consistently deliver at least 4M/512K
On Thu, Sep 16, 2010 at 2:44 PM, George Bonser gbon...@seven.com wrote:
Your statement misses the point, which is, *who* gets to decide what
traffic is prioritized? And will that prioritization be determined by
who is paying my carrier for that prioritization, potentially against
my own
On Thu, Sep 16, 2010 at 3:28 PM, sth...@nethelp.no wrote:
Will the provider unbundle the components so that it's feasible for a
niche vendor to sell me custom connection services?
No?
Then the provider doesn't get to decide.
It's about control. As the customer, the guy with the green, I
On Fri, Sep 17, 2010 at 1:44 PM, Michael Sokolov
msoko...@ivan.harhan.org wrote:
Ditto with CLECs like Covad-now-MegaPath: even though they don't get
access to the FTTN infrastructure, no telco is evicting their legacy CO
presence. Therefore, if a kooky customer like me wishes to forego fiber
On Sat, Sep 18, 2010 at 2:51 PM, Tony Varriale tvarri...@comcast.net wrote:
Of course the high level of oversub is an issue
We'll disagree then. Oversub makes access affordable.
Sure, at 10:1. At 100:1, oversub makes the service perform like crap.
With QOS, it still performs like crap.
On Mon, Sep 20, 2010 at 2:08 PM, Justin Horstman
justin.horst...@gorillanation.com wrote:
Devil's Advocate here,
What would you say to ISP A that provided similar
speeds as ISP B, but B took payments from content
providers and then provided the service for free?
Gives you the choice, ISP A,
On Tue, Sep 21, 2010 at 1:07 AM, Positively Optimistic
positivelyoptimis...@gmail.com wrote:
Do any of our fellow nanog members have experience with cable management on
6509/6513 cisco switches? We're upgrading infrastructure in some of our
facilities,.. and until it came to cable
On Sun, Sep 26, 2010 at 6:15 AM, Nathanael C. Cariaga
nccari...@stluke.com.ph wrote:
Thank you for the prompt response. Just to clarify my previous
post, I was actually referring to Linux/Unix-based routers.
We've been considering this solution because presently we
don't have any budget for
On Tue, Sep 28, 2010 at 4:15 PM, Erik L erik_l...@caneris.com wrote:
An increasingly large number of our customers are using
Gmail or Google Apps and almost all of our OSS/BSS mail
is getting spam filtered by Google. Among others, these
e-mails include invoices, order confirmations, payment
On Wed, Sep 29, 2010 at 8:25 AM, Rich Kulawiec r...@gsp.org wrote:
On Wed, Sep 29, 2010 at 08:38:17AM -0300, jim deleskie wrote:
WOW full of yourself much. Many of us use gmail and others to manage the
load of mail we received from various lists. I doubt we anyone needs
your sympathies,
On Wed, Sep 29, 2010 at 5:47 PM, bmann...@vacation.karoshi.com wrote:
i find myself in need of a multiport (8-16) 1 Gig ethernet HUB.
or a switch smart enough to do transparant port mirroring to at least
four ports.
Bill,
Out of curiousity, why?
Would a set of gig-e
On Fri, Oct 1, 2010 at 1:47 AM, Ronald F. Guilmette
r...@tristatelogic.com wrote:
Oh yea, and the snail mail addresses given in the WHOIS records for the
domains will usually/often be tracable to UPS Store rental P.O. boxes...
those are standard spammer favorites, because...as they well know...
On Fri, Oct 1, 2010 at 10:32 AM, David Miller dmil...@tiggee.com wrote:
I am merely refuting the statement, which I have heard many times in many
different forums, that ARIN (or any RIR) makes address allocations and then
walks away with no further active involvement in the use of these
On Fri, Oct 1, 2010 at 5:12 PM, George Bonser gbon...@seven.com wrote:
this is still less than a /8, which lasts ~3 months in ARIN region and
less if you could across RIR's...
Which is sort of like saying:
Citizen: Hello, police? There is a crate of M-16's and a truckload of
ammunition
On Fri, Oct 1, 2010 at 5:31 PM, George Bonser gbon...@seven.com wrote:
Quite possible if one is using it to distribute a virus. RE: Spanair
flight JK-5022
http://www.monstersandcritics.com/news/europe/news/article_1578877.php/C
omputer-viruses-may-have-contributed-to-Spanish-2008-plane-crash
On Sat, Oct 2, 2010 at 3:17 AM, Imran Moin imranm...@gmail.com wrote:
I was wondering how long it is taking ARIN these days to assign new IP block
and AS Number. We are a new startup and looking to build our network over
the next few months.
Imran,
The last few times I ran through the
On Sat, Oct 2, 2010 at 4:03 PM, Robert Bonomi bon...@mail.r-bonomi.com wrote:
That _seems_ fairly simple [...] it's straightforward corporate
forensics, and the establishment of provenence, or the
equivalent of an 'abstract of title' for real-estate.
Hi Robert,
It may seem simple but it only
On Mon, Oct 4, 2010 at 12:47 PM, Greg Whynott greg.whyn...@oicr.on.ca wrote:
A partner had a security audit done on their site.
The report said they were at risk of a DoS due to
the fact they didn't have a SPF record.
how many of you are using SPF records? Do you
have an opinion on their
On Wed, Oct 6, 2010 at 10:37 AM, Dan White dwh...@olp.net wrote:
If your PBX is SIP based, you might be victim of a SIP registration hijack,
which are on the rise, based on traffic we've been seeing in our network.
I had my unpublished asterisk box up for all of two days before
getting half a
On Wed, Oct 20, 2010 at 5:48 PM, Jeroen van Aart jer...@mompl.net wrote:
I am trying to set up a local IPv6 network and am curious why all the
examples I come accross do not seem to use the 40-bit pseudorandom number?
What should I do? Use something like fd00::1234, or incorporate something
On Sun, Oct 17, 2010 at 12:46 AM, Day Domes daydo...@gmail.com wrote:
I have been tasked with coming up with a new name for are transit data
network. I am thinking of using 101100010100110.net does anyone see
any issues with this?
Two helpful rules of thumb when picking a domain name:
1.
On Thu, Oct 21, 2010 at 8:14 AM, Ray Soucy r...@maine.edu wrote:
That's assuming ULA would be the primary addressing scheme used. If
that became the norm, I agree, the extra uniqueness would be
desirable, perhaps to the point that you should be asking an authority
for FC00::/8 space to be
On Thu, Oct 21, 2010 at 6:27 PM, Joel Jaeggli joe...@bogus.com wrote:
On 10/21/10 6:02 AM, William Herrin wrote:
On Thu, Oct 21, 2010 at 8:14 AM, Ray Soucy r...@maine.edu wrote:
That's assuming ULA would be the primary addressing scheme used. If
that became the norm, I agree, the extra
On Fri, Oct 22, 2010 at 1:20 AM, Joel Jaeggli joe...@bogus.com wrote:
On 10/21/10 6:38 PM, Owen DeLong wrote:
On Oct 21, 2010, at 3:42 PM, Jack Bates wrote:
On 10/21/2010 5:27 PM, Joel Jaeggli wrote:
Announce your gua and then blackhole it and monitor your prefix.
you can tell if you're
On Fri, Nov 5, 2010 at 6:32 PM, Scott Weeks sur...@mauigateway.com wrote:
It's really quiet in here. So, for some Friday fun let
me whap at the hornets nest and see what happens... ;-)
And so, ...the first principle of our proposed new network architecture:
Layers are recursive.
Hi Scott,
On Mon, Nov 8, 2010 at 6:02 PM, Scott Weeks sur...@mauigateway.com wrote:
And so, ...the first principle of our proposed new network architecture:
Layers are recursive.
: Anyone who has bridged an ethernet via a TCP based
: IPSec tunnel understands that layers are recursive.
WRT the paper
Hiya folks,
Why are your respective companies treating IPv6 turn ups as a sales
matter instead of a standard technical change request like IP
addresses or BGP? Sprint and Qwest, I know you're guilty. How many of
the rest of you are making IPv6 installation harder for your customers
than it needs
On Thu, Nov 18, 2010 at 5:24 PM, George, Wes E [NTK]
wesley.e.geo...@sprint.com wrote:
Sprint and Qwest, I know you're guilty.
[WES] Bill, I know that you mean well and you're just trying to push IPv6
deployment, and sometimes a little public shame goes a long way, but in the
future, before you
On Thu, Nov 18, 2010 at 9:07 PM, Richard Hartmann
richih.mailingl...@gmail.com wrote:
as most of you are aware, there is no definite, canonical name for the
two bytes of IPv6 addresses between colons. This forces people to use
a description like I just did instead of a single, specific term.
On Fri, Nov 19, 2010 at 4:09 PM, Joel Jaeggli joe...@bogus.com wrote:
On 11/19/10 12:45 PM, William Herrin wrote:
The meaningful boundaries in the protocol itself are nibble and /64.
If you want socially significant boundaries, add /12, /32 and /48.
It is possible and desirable to be able
On Sat, Nov 20, 2010 at 5:05 AM, Richard Hartmann
richih.mailingl...@gmail.com wrote:
On Fri, Nov 19, 2010 at 23:52, William Herrin b...@herrin.us wrote:
I thought about that. Have a one colon rule that IPv6 addresses in
hexidecimal format have to include at least one colon somewhere
On Sat, Nov 20, 2010 at 5:15 PM, Owen DeLong o...@delong.com wrote:
fd00:68::1 and fd:0068::1 mean different things now. The former means
fd00:0068::1 while the latter means 00fd:0068::1. I would instead have
them mean the same thing: fd00:6800::1. The single-colon separator
gets syntax but no
in the
IPv6 address. He's gonna be trouble.
On Sun, Nov 21, 2010 at 1:42 PM, valdis.kletni...@vt.edu wrote:
On Sat, 20 Nov 2010 12:12:09 EST, William Herrin said:
260:abcde:123456:98::1
260 - IANA to ARIN, a /12
abcde - ARIN to ISP, a /32
123456 - ISP to customer, a /56
98 - customer subnet
::1
On Mon, Nov 22, 2010 at 6:40 AM, Richard Hartmann
richih.mailingl...@gmail.com wrote:
On Sun, Nov 21, 2010 at 16:54, William Herrin b...@herrin.us wrote:
Because in my version fd::/8
actually is the same as fd00::/8, which, as you rightly point out, is
exactly what a normal human being would
On Mon, Nov 22, 2010 at 3:09 PM, Michael Brown mich...@supermathie.net wrote:
On 11/22/2010 02:58 PM, Steven Bellovin wrote:
010 is how C represents an octal number. This one is known in decimal as 8.
Obviously, what Greg meant to type was:
$ ping 012.0xA.10.1
PING 012.0xA.10.1 (10.10.10.1)
On Mon, Nov 29, 2010 at 5:28 PM, Patrick W. Gilmore patr...@ianai.net wrote:
http://www.marketwatch.com/story/level-3-communications-issues-statement-concerning-comcasts-actions-2010-11-29?reflink=MW_news_stmp
I understand that politics is off-topic, but this policy affects operational
On Mon, Nov 29, 2010 at 9:29 PM, Ben Butler ben.but...@c2internet.net wrote:
It is not double billing, it is shared billing.
Hi Ben,
Nice try, but no.
There are a couple forms of shared billing. The one you're probably
talking about is The Dance. Everybody pays to get in to the dance. The
On Mon, Nov 29, 2010 at 10:51 PM, Ben Butler ben.but...@c2internet.net wrote:
Then consumer broadband came along, the subs went
down, the headline speeds went up, service delivery
becomes impossible in the face of the marketing BS
and here we are.
Hi Ben,
So you're saying: treat it like
On Tue, Nov 30, 2010 at 12:09 AM, Andrew Koch andrew.k...@gawul.net wrote:
On Mon, Nov 29, 2010 at 22:17, William Herrin b...@herrin.us wrote:
So if we can't bill you by usage, and at a consumer level we can't,
then we have to find another way. Statistics and prayer isn't working
out as well
On Tue, Nov 30, 2010 at 9:47 AM, William Warren
hescomins...@emmanuelcomputerconsulting.com wrote:
On 11/30/2010 12:09 AM, Andrew Koch wrote:
On Mon, Nov 29, 2010 at 22:17, William Herrinb...@herrin.us wrote:
So you're saying: treat it like electrical service. I have a 200 amp
electrical
On Tue, Nov 30, 2010 at 11:22 AM, Brielle Bruns br...@2mbit.com wrote:
On 11/30/10 9:07 AM, William Herrin wrote:
My Verizon Blackberry plan says unlimited data. Including the tether.
Its 5GB, trust me on that one.
I checked it out when I updated my credit card number online recently
On Wed, Dec 1, 2010 at 3:38 PM, Derek J. Balling dr...@megacity.org wrote:
On Nov 29, 2010, at 10:25 PM, William Herrin wrote:
There are a couple forms of shared billing.
There's a third kind you failed to mention that doesn't require equal footing
of the parties. The broker.
I might pay
On Thu, Dec 2, 2010 at 10:58 AM, Jay Nakamura zeusda...@gmail.com wrote:
I really want to move all newly installed internal and customer racks
over to all 208v power instead of 120v. As far as I can remember, I
can't remember any server/switch/router or any other equipment that
didn't run on
On Thu, Dec 2, 2010 at 11:22 AM, Ingo Flaschberger i...@xip.at wrote:
I really want to move all newly installed internal and customer racks
over to all 208v power instead of 120v. As far as I can remember, I
can't remember any server/switch/router or any other equipment that
didn't run on
On Thu, Dec 2, 2010 at 4:28 PM, Steve Gibbard s...@gibbard.org wrote:
Regardless of whether the apartment broker comparison holds up,
there are many examples of what economists call two-sided markets:
http://en.wikipedia.org/wiki/Two-sided_market
They don't all have the same fee-splitting
On Thu, Dec 2, 2010 at 7:25 PM, William Herrin b...@herrin.us wrote:
On Thu, Dec 2, 2010 at 4:28 PM, Steve Gibbard s...@gibbard.org wrote:
http://en.wikipedia.org/wiki/Two-sided_market
They don't all have the same fee-splitting systems, and you can find an
example to site as precedent for just
On Thu, Dec 2, 2010 at 3:28 PM, Owen DeLong o...@delong.com wrote:
On Dec 2, 2010, at 12:21 PM, Leo Bicknell wrote:
Sunday Night Football at the top last week, with 7.1% of US homes
watching. That's over 23 times as many folks watching as the 0.3% in
our previous math! Ok, 23 times 150Gbps.
On Fri, Dec 3, 2010 at 11:08 AM, Christopher Morrow
morrowc.li...@gmail.com wrote:
On Fri, Dec 3, 2010 at 10:47 AM, William Herrin b...@herrin.us wrote:
Perhaps the eyeball networks should build, standardize and deploy a
content caching system so that the popular Netflix streams (and the
live
2010/12/9 b2 b...@playtime.bg:
Hi , first sorry for lame question but i'm new to BGP.
In my ISP I have two full BGP sessions with my two transit providers (X
and Y), and for every provider i have assigned PA (Provider
Aggregatable) networks. Is it possible (if there are no filters on other
On Thu, Dec 9, 2010 at 7:24 PM, Brandon Kim brandon@brandontek.com wrote:
I want to know if there's software out there that will encrypt files on
win2k3, winxp, win7, so that if someone
decides to steal the computer and plug the harddrive into a USB external
case, they won't be able to
On Fri, Dec 10, 2010 at 8:21 AM, Florian Weimer f...@deneb.enyo.de wrote:
Software-based solutions have the advantage that they are somewhat
more testable and reviewable. If it's all in the disk, you can't
really be sure that the data is encrypted with a static key, and the
passphrase is used
On Thu, Jan 6, 2011 at 5:00 PM, Deepak Jain dee...@ai.net wrote:
Wouldn't a number of problems go away if we just, for now, follow the
IPv4 lessons/practices like allocating the number of addresses a
customer needs --- say /122s or /120s that current router
architectures know how to handle --
On Fri, Jan 7, 2011 at 3:29 PM, Deepak Jain dee...@ai.net wrote:
Question - Whatever happened to the concept of a customer
coming to their SP for more space? [E]very week we could
widen their subnet without causing any negative
impact on them?
Clever folks figured that making the customer
On Fri, Jan 7, 2011 at 8:02 PM, Dobbins, Roland rdobb...@arbor.net wrote:
NAT has no inherent security benefits whatsoever.
Hi Roland,
With that statement, you paint with a remarkably broad brush. As you
know, folks use (or perhaps misuse) the term NAT to describe
everything from RFC 1631 to
On Fri, Jan 7, 2011 at 9:00 PM, Dobbins, Roland rdobb...@arbor.net wrote:
On Jan 8, 2011, at 8:54 AM, William Herrin wrote:
I presume you don't intend us to conclude that a bastion
host firewall provides no security benefit to the equipment it
protects.
If it's protecting workstations, yes
On Wed, Mar 21, 2007 at 5:41 AM, Tarig Ahmed tariq198...@hotmail.com wrote:
We have wide range of Public IP addresses, I tried to assign public ip
directly to a server behined firewall( in DMZ), but I have been resisted.
Security guy told me is not correct to assign public ip to a server, it
On Wed, Jan 12, 2011 at 12:16 PM, valdis.kletni...@vt.edu wrote:
On Wed, 12 Jan 2011 12:04:01 EST, William Herrin said:
In a client (rather than server) scenario, the picture is different.
Depending on the specific NAT technology in use, the firewall may be
incapable of selecting a target
On Thu, Jan 13, 2011 at 11:54 AM, Dobbins, Roland rdobb...@arbor.net wrote:
On Jan 13, 2011, at 9:59 AM, Jack Bates wrote:
The proxy capabilities of the firewall are additional security
measures on top of the NAT (and definitely should be
deployed for their higher security value).
Not in
On Thu, Jan 13, 2011 at 1:11 PM, Jack Bates jba...@brightok.net wrote:
On 1/13/2011 11:56 AM, William Herrin wrote:
So all the folks who use reverse proxies like an http accellerator are
wrong?
They have their purpose. However, depending on the security rating of the
accelerator versus
On Wed, Jan 12, 2011 at 10:02 PM, Mark Andrews ma...@isc.org wrote:
In message aanlktikixf_mbuo-oskpjsw98vn5_d5wznui_pl37...@mail.gmail.com,
William
Herrin writes:
There's actually a large difference between something that's
impossible for a technology to do (even in theory), something
On Thu, Jan 13, 2011 at 11:50 PM, Douglas Otis do...@mail-abuse.org wrote:
Unfortunately, a large number of web sites have been compromised, where an
unseen iFrame might be included in what is normally safe content. A device
accessing the Internet through a NATs often creates opportunities for
On Fri, Jan 14, 2011 at 2:43 PM, Owen DeLong o...@delong.com wrote:
Ah, but, the point here is that NAT actually serves as an enabling
technology for part of the attack he is describing.
Hi Owen,
Doug's comments on that were pretty abstract, so let me try to ground
it a little bit. He
On Sat, Jan 15, 2011 at 4:16 PM, Brian Keefer ch...@smtps.net wrote:
1.) Allows you to redirect a privileged port (on UNIX) to a
non-privileged port. For daemons that don't implement some
form of privilege revoking after binding to a low port (and/or aren't
allowed to run as root), this is
On Mon, Jan 17, 2011 at 5:12 PM, Jeffrey Lyon
jeffrey.l...@blacklotus.net wrote:
Our listing is misleading. They show me specifically what needs to be
done and why and we will act on it. The problem is that they expect me
to dig through our customer database and correlate various customers
to
On Mon, Jan 17, 2011 at 7:01 PM, Jeffrey Lyon
jeffrey.l...@blacklotus.net wrote:
On Mon, Jan 17, 2011 at 6:58 PM, William Herrin b...@herrin.us wrote:
I pulled up http://www.spamhaus.org/sbl/sbl.lasso?query=SBL100691 .
There is a rather long list at that page of offending IP addresses
On Mon, Jan 17, 2011 at 7:42 PM, Jeffrey Lyon
jeffrey.l...@blacklotus.net wrote:
I fat fingered the netmask, try now.
Jeff,
You have some work left to do. Much of it is exhibited in the Spamhaus listing.
wget -nd http://eros-pharmacy.com/
--2011-01-17 19:54:44-- http://eros-pharmacy.com/
1 - 100 of 1911 matches
Mail list logo