Re: Here we go again.

https://youtu.be/Yi_2020LJQo On Nov 10, 2016 18:27, "Aaron C. de Bruyn via NANOG" wrote: > On Wed, Nov 9, 2016 at 2:39 PM, Ronald F. Guilmette > wrote: > > There are plenty of reasons for thinking people to be terrified today. > > I don't know why

Re: how to deal with port scan and brute force attack from AS 8075 ?

They should always just use Shodan. https://www.shodan.io/explore On 4 April 2016 at 05:54, Brandon Vincent wrote: > On Thu, Mar 31, 2016 at 4:41 AM, DV wrote: >> I have noticed this and especially the strange format of the packets with a >>

Re: how to deal with port scan and brute force attack from AS 8075 ?

I would ignore the portscans since there is nothing wrong with portscanning the Internet. Install fail2ban {don't forgot to whitelist your management static IPs}. You may want to increase the default bantime and findtime {how far back to search logs}. On 31 Mar 2016 11:06, "Todd Crane"

Re: Oh dear, we've all been made redundant...

Every time I have to ring about my home internet the first think they ask be to do is reboot the modem and then connect via cable and check the link light is green. Had to fight with them before since the *FRITZ!**Box* they supplied did not have network link LEDs. Also I know it was a PPPoE auth

Re: Softlayer / Blocking Cuba IP's ?

They have not blocked port 25 on their "legacy" EU Servers. On 20 Feb 2016 9:39 am, "Yang Yu" wrote: > On Fri, Feb 19, 2016 at 9:18 PM, Tony Wicks wrote: > > I had a couple of VM's (personal mail/web hosting) with a provider who > used Softlayer for

Re: Netflix NOC? VPN Mismarked?

Do all "smart" TVs and Game consoles fully support IPv6 out of the box? On 28 Jan 2016 10:17, "Chris Knipe" wrote: > On Thu, Jan 28, 2016 at 11:07 AM, Owen DeLong wrote: > > > > > Fortunately Netflix is running IPv6 for most things already. If you’re an >

Re: ICYMI: FBI looking into LA fiber cuts, Super Bowl

*Twitch **Plays* Super Bowl Drone needs to be a thing. On 20 Jan 2016 17:43, "Scott Whyte" wrote: > > > On 1/20/16 08:25, Naslund, Steve wrote: > >> Helicopters near the Super Bowl are cleared to be there and are flown by >> vetted professional pilots. A human pilot in a

Re: ICYMI: FBI looking into LA fiber cuts, Super Bowl

Am I the only one who thinks the below line is BS? "...pose a risk of injury to event-goers if an operator loses control." If there is not safeguards in-place for "normal" network issues then we would of heard of injuries before. On 19 January 2016 at 21:30, Grant Ridder

Re: Whatsapp issue ?

Its kinda working in Berlin. Probably due to everyone messaging "Happy New 0xB33r". On 31 Dec 2015 7:53 pm, "Idafe Houghton" wrote: > Somebody has told me if I knew that WA it's down. > > I knew, but not that it also affected Barcelona, Spain. > > Well, kind of

Re: Questions regarding equipment for a large LAN event

Have a look at what they did for QuakeCon. What Powers Quakecon | Network Operations Center Tour https :// www.youtube.com /watch?v=

Re: Modem as a service?

Have you looked into scheduled scans with WarVOX? On Dec 6, 2015 7:39 PM, "James Laszko" wrote: We are looking to automate testing of OOB modem connections when our NMS detects a site connection failure. Rather than have a live body call a modem number (or even a fax) to

Re: NTP versions in production use?

Are you using Nmap or masscan? Also I'd be interested in what switches and settings you are using. On 12 Jul 2015 16:26, Alistair Mackenzie magics...@gmail.com wrote: I’m currently running a scan of the internet and querying NTP versions. I’ll publish the results of it on Github and mail them

Re: Fwd: [ PRIVACY Forum ] Windows 10 will share your Wi-Fi key with

This is on by default in the beta like all the reporting in MS. Will probably be either a prompt in the RTM version. On 7 Jul 2015 05:05, Sean Donelan s...@donelan.com wrote: On Mon, 6 Jul 2015, Joe Greco wrote: Anyways, if you look on the first page of Customize settings, yes there's an

Re: How long will it take to completely get rid of IPv4 or will it happen at all?

Is anybody still using IPX or TokenRing? I've heard that TokenRing is over 9000 times better for iSCSI since you are guaranteed that the packets will not get collisions. On 27 Jun 2015 18:39, Fredy Kuenzler kuenz...@init7.net wrote: Am 27.06.2015 um 16:38 schrieb Bob Evans: We have a greater

Re: Lists of VPN exit addresses?

Well if they are using Hola then EVERY person with it installed is an exit-node. http://adios-hola.org https://m.reddit.com/r/netsec/comments/37rit3/adios_hola_why_you_should_immediately_uninstall/ On 10 Jun 2015 14:28, Jared Mauch ja...@puck.nether.net wrote: On Jun 10, 2015, at 8:08 AM,

Re: most accurate geo-IP source to build country-based access lists

Tinder would be more accurate since it uses the phones GPS. You could also cross check what subreddits they are subscribed to. On 8 Jun 2015 23:12, a.l.m.bu...@lboro.ac.uk wrote: Hi, Have you thought about application layer tests - e.g. is the client's character set/language set to

Re: Password Decryption Methods?

Grab the firmware and run it through BinWalk. Your should be able to pull out the firmware and see what it does to the password before storing it. On 2 Jun 2015 22:03, Landon Stewart landonstew...@gmail.com wrote: On Jun 2, 2015, at 9:23 AM, Michael O Holstein michael.holst...@csuohio.edu wrote:

Re: Huawei and ZTE Routers

You could try cross posting to UKNOG since BT use Huawei in their DSLAMs. http://lists.uknof.org.uk/cgi-bin/mailman/listinfo/uknof/ On 7 May 2015 21:18, ML m...@kenweb.org wrote: On 5/7/2015 2:25 PM, Daniel Corbe wrote: Colton Conor colton.co...@gmail.com writes: The other thread about the

Re: BGP offloading (fixing legacy router BGP scalability issues)

Is port scanning illegal in China? If not the there is no reason for then to do anything about it. On 3 Apr 2015 19:00, Barry Shein b...@world.std.com wrote: On April 2, 2015 at 14:19 goe...@anime.net (goe...@anime.net) wrote: a number of years back i did have someone contact in chinese and

Re: Purpose of spoofed packets ???

Nmap has an option to hide your real IP among either a provides or IP list of IP addresses. D ***decoy1***[,***decoy2***][,ME][,...] (Cloak a scan with decoys) Causes a decoy scan to be performed, which makes it appear to the remote host that the host(s) you specify as decoys are scanning the

Re: OT - Small DNS appliances for remote offices.

You also have to watch out for issues with the Pi corrupting SD cards. On 19 Feb 2015 01:04, Geoff Mulligan nano...@mulligan.org wrote: I have used the BeagleBone to run a few simple servers. I don't know if the ethernet port on the Bone is on the USB bus. It is slightly more expensive than a

Re: North Korean internet goes dark (yes, they had one)

CCC would not do anything pro-NK. On 27 December 2014 at 19:49, Javier J jav...@advancedmachines.us wrote: Looks like it is still going on. you can make this stuff up: Obama always goes reckless in words and deeds like a monkey in a tropical forest,

Re: Comcast thinks it ok to install public wifi in your house

BT in the UK did the same thing a few years ago with a silent firmware upgrade. On 11 Dec 2014 15:51, Scott Helms khe...@zcorum.com wrote: John, My apologies, I misread your email :) Scott Helms Vice President of Technology ZCorum (678) 507-5000

Re: Got a call at 4am - RAID Gurus Please Read

Are you running ZFS and RAIDZ on Linux or BSD? On 10 Dec 2014 23:21, Javier J jav...@advancedmachines.us wrote: I'm just going to chime in here since I recently had to deal with bit-rot affecting a 6TB linux raid5 setup using mdadm (6x 1TB disks) We couldn't rebuild because of 5 URE sectors

RE: Cisco CCNA Training (Udemy Discounted Training)

Anybody got codes valid for December? On 14 Nov 2014 18:07, Wakefield, Thad M. twakefi...@stcloudstate.edu wrote: Since there was some interest in the Udemy CCNA training, I'll risk forwarding these additional discounts: Remember that this is ONLY for the month of NOVEMBER! *** CCNA Course

RE: Cisco CCNA Training (Udemy Discounted Training)

Is that the codes can only be used during November or access to the training? On 14 Nov 2014 18:07, Wakefield, Thad M. twakefi...@stcloudstate.edu wrote: Since there was some interest in the Udemy CCNA training, I'll risk forwarding these additional discounts: Remember that this is ONLY for

Re: cheap laptop with 32G or 64G recommendations

I'd say 60% of laptops at security conferences I've been to are Lenovo, 30% Apple and 10% Dell/other. On 12 Nov 2014 20:35, John Schiel jsch...@flowtools.net wrote: On 11/11/2014 05:54 PM, lobna gouda wrote: Thanks all for your reply, lenovo seems decent almost all the pc ( lenovo and hp)

Re: Tech Laptop with DB9

You mean like they did with the last driver update pushed via Windows Update? http://hackaday.com/2014/10/22/watch-that-windows-update-ftdi-drivers-are-killing-fake-chips/ On 10 Nov 2014 23:32, John Schiel jsch...@flowtools.net wrote: On 11/10/2014 02:05 PM, joel jaeggli wrote: ftdi chipsets

Re: GMail contact - misroute / security issue

This probably also effected German users. On Sep 30, 2014 6:32 PM, Alexander Harrowell a.harrow...@gmail.com wrote: Related oddness: if you're British and a GMail user, you either got a gmail.com username before the lawsuit, or you got a googlemail.com between the lawsuit and the point when

Re: Match.com contact - Previously: GMail contact - misroute / security issue

You sure you wife did not sign up or Match.com and using this as a cover story? On Sep 29, 2014 6:17 AM, John Fraizer j...@op-sec.us wrote: Set up a filter in the GMAIL console to match (pun intended) the Match emails and filter them into their own label. Then, hide that label. Don't delete

Re: Saying goodnight to my GSR

So when was the last time you patched this internet facing device? On Sep 20, 2014 7:12 PM, Matthew S. Crocker matt...@corp.crocker.com wrote: -48VDC. On Sep 20, 2014, at 10:58 AM, James R Cutler james.cut...@consultant.com wrote: On Sep 20, 2014, at 10:18 AM, Matthew Crocker

Re: Saying goodnight to my GSR

OK thank you for decommissioning this.* * Only if you either had authority to do so for max 1 year or had no authority but were fighting to have it patches or replaced for years. On Sep 20, 2014 7:54 PM, Daniel Sterling sterling.dan...@gmail.com wrote: On Sat, Sep 20, 2014 at 1:37 PM, Bacon

Re: Help me make sense of these traceroutes please

Pitcher of Guinness!?! What blasphemy is this, the only way to drink it is via individually poured pint glasses. Back to the issues I'd say MPLS or GHCQ before NSA. On 25 Dec 2013 15:52, valdis.kletni...@vt.edu wrote: On Tue, 24 Dec 2013 19:03:02 -0500, Sam Moats said: Also you'd be amazed

Re: Prism continued

There is no way they could of paid for all the Splunk licencing costs which the budget quoted before On 9 June 2013 18:42, Daniel Rohan dro...@gmail.com wrote: Anyone else notice that the Boundless Informant GUI looks suspiciously like the Splunk GUI? And according to the article, it

After Being Cut From Norway, The Pirate Bay Returns From North Korea or is it just BGP Tricks

The Pirate Bay have released a press release that they are now hosted out of North Korea: The Pirate Bay has been hunted in many countries around the world. This is truly an ironic situation. We have been fighting for a free world, and our opponents are mostly huge corporations from the

Re: Problem with email to Hawaiilink.net email

Looks like you are not the only one with issues connecting to Hawaii: http://permalink.gmane.org/gmane.org.operators.isotf.outages/5231 On 16 January 2013 00:19, david peahi davidpe...@gmail.com wrote: Does anyone know of any problems in Hawaii with email or DNS problems? Sending from

Re: Hurricane Electric Tunnelbroker staff?

Can I ask why you count a port scan at something bad? Or is it just the length of time it has been running for and it re-running the same scan repetitively? ฤ๊็๊ ฮ้ ฦ้็้็็ On 23 December 2012 05:31, Ben Carleton

Re: Google burp

And if you are a Chrome user have a look at Vimium [1] [1] http://vimium.github.com/ On 31 October 2012 23:43, Chris Adams cmad...@hiwaay.net wrote: Once upon a time, shawn wilson ag4ve...@gmail.com said: yeah, be careful with their new compose feature. i'm used to vim, so i hit esc half way

Re: Network scan tool/appliance horror stories

It all depends on what tools they are using and how you have your system setup. Both NMAP and Nessus can check system\service to see if common accounts have default or non password at all. This can cause these accounts to be locked out. There are other exploits that can cause systems\services to

Re: Google opens Web Window on their Data Centers

It looks right the right-hand side is real and the left is just a mirror on most of the pictures. You can see from the LED's, empty slots in the racks, hanging cables and labels. Here is a collect of photos you from the Reddit thread on it: http://imgur.com/a/UBxVc Also they did not show any of

Re: Internet-wide port scans

Have a look at the talks done by Fyodor the creator of Nmap Scanning the Internet. http://nmap.org/presentations/BHDC08/bhdc08-slides-fyodor.pdf http://www.securitytube.net/video/170 http://blog.thc.org/index.php?/archives/2-Port-Scanning-the-Internet.html Also if you are look for a host

Re: The Department of Work and Pensions, UK has an entire /8

Well 172.0.0.0 to 172.15.255.255 is now owned by ATT and they have live systems on some of them already. On 18 September 2012 17:39, George Herbert george.herb...@gmail.com wrote: I'm having problems finding any announcements for this net 10/8, too. Can someone talk to these IANA folks about

Re: Heads-Up: GoDaddy Broke the Interwebs...

The blog says 99.999% uptime, but I'm guessing this outage lasted more them 5.4930002 minutes and they probably had other issues during the year. On 11 September 2012 21:53, Rubens Kuhl rube...@gmail.com wrote: No large flows reported to the affected NSes, tweets were suspicious at

Re: Blocking MX query

Are you saying that you only allow your subscribers to use your DNS Servers and block access to all other DNS Server? On 4 September 2012 11:07, Ibrahim ibrah...@gmail.com wrote: Hi All, I've read old archive about blocking SMTP port (TCP port 25). In my current situation we are mobile

Re: Fair Use Policy

I how you are talking about 3G or there is a typo. An ISP with a 5GB cap that is charging the end user more then 5$ total {including line rental} a month should not be allow to operate. And if your infrastructure and handle 25% at a minimum maxing out their connect them don't advertise unlimited

Re: Penetration Test Assistance

You should have a look at the Pentest Standards page, it was created by some very skilled Pen Testers how are trying to create a minimum standard for all tests and reporting. http://www.pentest-standard.org/index.php/Main_Page Also you should just have to give them your external net-block

Re: ping me please...

Reachable from Ireland using Eircom AS5466. Host is up (0.029s latency). Not shown: 64531 filtered ports, 1002 closed ports PORT STATE SERVICEVERSION 443/tcp open ssl/http Cisco ASA firewall http config (Cisco AWARE 2.0) |_http-methods: No Allow or Public header in OPTIONS response