On Fri, Sep 01, 2023 at 10:16:05AM -0700, Randy Bush wrote:
> and i just have to wonder about sending passords over the net in
> cleartext in 2023. really?
This is a non-issue.
Given that pretty much every SMTP connection is encrypted and that
the worst thing that an attacker in possession of on
On Mon, Feb 06, 2023 at 12:41:43PM -0800, Michael Thomas wrote:
> This seems like a perfect object lesson on why you should use DKIM and SPF
> and make sure the sending domain can set up a p=reject policy for DMARC.
But it's not. DKIM and SPF are mostly useless against competently executed
email
On Sat, Mar 20, 2021 at 12:46:57PM -0600, David Siegel wrote:
> The board has been thinking about enhancements to the NANOG list for a
> couple of years now, with the goal of creating a modern interface that the
> younger generation of engineers will be more comfortable using.
This isn't a valid g
On Thu, Mar 18, 2021 at 03:28:31PM -0700, Matthew Petach wrote:
> If only we had some way to segregate out different topics
> of interest or disinterest, so that people who weren't interested
> in questions about bandwidth availability could unsubscribe
> from those topics, and only subscribe to th
On Fri, Mar 12, 2021 at 02:46:51PM +, David Hubbard wrote:
> After sending them abuse reports for years with only an increase in
> malicious traffic, I have no expectation of anything they do getting
> better or being for the benefit of the internet as a whole.
This is a shared experience. It'
If you give people the means to hurt you, and they do it, and
you take no action except to continue giving them the means to
hurt you, and they take no action except to keep hurting you,
then one of the ways you can describe the situation is "it isn't
scaling
On Mon, Feb 22, 2021 at 08:44:32PM +0200, Saku Ytti wrote:
> On Mon, 22 Feb 2021 at 20:28, Rich Kulawiec wrote:
>
> > right: artificial sweeteners are safe, WMDs were in Iraq, and Anna Nicole
>
> Hope you meant to write 'unsafe', as the conspiracy theory is tha
On Mon, Feb 22, 2021 at 05:48:06PM +, Mel Beckman wrote:
> Sorry Global Warmists,
Right. Sure. Also, the earth is 6,000 years old (and flat), the moon
landings were faked, creationism is real, dinosaurs and humans co-existed,
vaccines cause autism, Elvis is alive, and...how does that line g
On Wed, Feb 17, 2021 at 10:34:35AM -0800, Sabri Berisha wrote:
> With apologies to those on the list who still use mutt/pine etc.
1. "still"? Competent professionals with security awareness use text-only
email clients as a matter of basic self-defense. I trust it's obvious
why those of us who a
On Tue, Feb 16, 2021 at 12:23:22PM +, Bret Clark wrote:
> Texas doesn't generally experience this type of extreme cold.
That was then; this is now.
As scientist Jeff Masters put it most of a decade ago:
The atmosphere I grew up with no longer exists. My new motto
with regard
On Tue, Feb 16, 2021 at 01:37:35PM -0600, John Kristoff wrote:
> Which examples would make up your top three?
Morris worm, November 1988. Much confusion and eventually the realization
the John Brunner had called it from 13 years out ("The Shockwave Rider", 1975).
But sloppy coding meant it could
On Tue, Feb 16, 2021 at 04:17:15AM +, Robert Jacobs wrote:
> How about letting us Texans have more natural gas power plants or even
> let the gas be delivered to the plants we have so they can provide more
> power in an emergency. Did not help that 20% of our power is now wind
> which of cours
On Mon, Jan 25, 2021 at 11:26:51AM -0500, Rob McEwen wrote:
> Is DDoS-Guard without blame? Probably not, but them hosting some occasional
> criminals is NOT UNLIKE EVERY OTHER GLOBAL NETWORK!
You might wish to scroll back up to the message I sent here on January 21
with the Subject "DDOS-Guard" a
While I agree pretty much entirely with everything you've expressed,
there is another force in the world quietly chugging away to make
sure that email privacy remains largely hypothetical...and that is:
cloud computing.
A lot of people have outsourced their mail service to cloud operations,
so e
On Thu, Jan 14, 2021 at 03:45:06PM -0700, Grant Taylor via NANOG wrote:
> Be mindful that there is and has been a concerted effort to block parts of
> SendGrid. There's even a relatively new RBL -- which started because of
> SendGrid -- specifically for blocking some of their worse customers. Many
On Thu, Jan 14, 2021 at 11:01:19AM -0700, Keith Medcalf wrote:
> This result will only come to pass if Parler wins their lawsuit (which is
> likely)
The first hearing in this case was held today.
Per reporting by Katherine Long of the Seattle Times, during
that hearing Parler's attorney:
On Wed, Jan 13, 2021 at 05:06:15PM -0500, Robert Webb wrote:
> Anyone else getting spam from DoNotPay everytime they send an email to the
> list?
This is solvable by permanently blocking all traffic from Mailgun in
your MTA. This should be a good start and may suffice:
mailgun.info
Given that people on Parler are currently discussing/planning attacks
against Amazon/Google/Apple/etc.'s facilities and personnel, this seems wise.
---rsk
On Fri, Jan 08, 2021 at 01:31:56PM -0600, Dave Phelps wrote:
> Keybase was purchased by Zoom (
> https://www.cnbc.com/2020/05/07/zoom-buys-keybase-in-first-deal-as-part-of-plan-to-fix-security.html).
> >From what I've gathered, Zoom is too tight with, owned by, or run by China,
> so I believe there
On Thu, Jan 07, 2021 at 01:27:07AM +1300, Mark Foster wrote:
> I respect this in principle, but hyperbole serves no-one - a smartphone
> only creates a "morass of privacy/security issues" if you let it.
You can't be serious. Have you paid *any* attention to what's been
going on in this ecosystem
On Mon, Jan 04, 2021 at 09:08:06PM -0600, Billy Crook wrote:
> Then again how many people would benefit from adding this to online
> streaming, but don't already have cellphones that have emergency alert
> popups that get their attention. The kind of people who don't have
> smartphones are going t
On Sun, Jan 03, 2021 at 03:26:07AM -0500, Valdis Kl??tnieks wrote:
> Meanwhile, this causes yet another problem - if Hulu has to be able to
> know what alerts should be piped down to my device, this now means that
> every single police and public safety agency has to be able to send the
> alerts to
On Fri, Jan 01, 2021 at 05:07:22PM -0500, Sean Donelan wrote:
> Not later than 180 days after the date of
> enactment of this Act, and after providing public notice and
> opportunity for comment, the Commission shall complete an
> inquiry to examine the feasibility of updating the Emergency
> Alert
On Tue, Dec 22, 2020 at 10:41:43PM -0700, Wayne Bouchard wrote:
> And if the last 15 years has shown us anything, it is that when you
> can't get past the auto-attendant and talk to a real human, and if
> that person can't talk to you like a person instead of reading scripts
> at you, your stress l
On Mon, Dec 14, 2020 at 09:58:01AM -0500, Tom Beecher wrote:
> Questionable cloud / VPS / hosting companies are great for spammers and
> botnet C&C, but not so great for DDoS "ion cannons". You still need a large
> volume of geographically diverse endpoints for those to be effective.
To piggyback
On Thu, Dec 10, 2020 at 09:48:25AM -0500, Jared Mauch wrote:
> I miss weather underground before it became slow as molasses with
> openstreetmap and other things.
As do I, and the demise of uswx.com took away one of the alternatives.
I spent some time earlier this year unsuccessfully trying to con
On Thu, Dec 10, 2020 at 12:34:33AM +, Mel Beckman wrote:
> So don???t be fooled by Siri and Google voice response. There is no
> intellect there, only pattern matching. Which we???ve been doing with
> machines since the Jacquard Loom.
On this particular point: many years ago, some of us at Pur
- Forwarded message from Dave Farber -
> From: Dave Farber
> Date: Thu, 10 Dec 2020 15:47:44 +0900
> Subject: [IP] Weather Service faces Internet bandwidth shortage, proposes
> limiting key data
>
> Weather Service faces Internet bandwidth shortage, proposes limiting key data
> The Nat
/Friday afternoon
On Thu, Nov 05, 2020 at 09:05:34AM -0800, William Herrin wrote:
> Following staff home and picking them off with a rifle is so much
> cheaper and carries a better probability of success.
So does following them home and leaving them brand new unopened large
bottles of Woodford
On Sat, Oct 17, 2020 at 07:44:01PM -0400, Sean Donelan wrote:
> In the USA, absent clear and convincing evidence otherwise, I expect any
> outages will be due to the normal things that cause outages on election day.
One of those things is the chronic underfunding of the systems/personnel
involved.
On Tue, Sep 22, 2020 at 07:58:42AM -0500, J. Hellenthal via NANOG wrote:
> geeks@nanog works just fine
Yes, it works just fine for *that* purpose. However, *this* has a
different purpose:
Shining a light on ambulance chasers - Noction
https://mailman.nanog.org/pipermail/nan
On Mon, Sep 21, 2020 at 06:30:24PM -0600, Grant Taylor via NANOG wrote:
> Is this simply being aggregated by a NANOG member / subscriber and thus
> something unofficial?
That's exactly right. Whether NANOG itself ever wants to do anything
with the results is entirely up to them.
---rsk
On Mon, Sep 14, 2020 at 12:45:32PM -0400, Dovid Bender wrote:
> Is anyone starting to get the "cogent emails" again?
Reminder: forwarding these sorts of things (with full headers please) to:
nanog-spamm...@firemountain.net
will cause them to be compiled into a list.
---rsk
On Mon, Aug 03, 2020 at 08:57:53AM -0400, Tom Beecher wrote:
> Telia made a mistake. They owned it and will endeavor to do better. What
> more can be asked?
Figure out how that mistake happened -- what factors led to it? Then make
changes so that it can't happen again, at least not in that partic
Update on:
On Mon, Mar 23, 2020 at 10:42:32PM -0400, Rich Kulawiec wrote:
> It's here: http://www.firemountain.net/covid19.html
I've been updating this every 24-48 hours. It now includes every
applicable case/test tracker I'm aware of and links to quite a few
articles and pap
On Tue, Apr 28, 2020 at 12:40:12PM -0400, Matt Corallo via NANOG wrote:
> Please don't use this kind of crap to send automated "we received 3 login
> attempts on our SSH box..wa" emails.
> This is why folks don't have abuse contacts that are responsive to real
> issues anymore.
[ "you" =
On Thu, Apr 23, 2020 at 10:47:18AM -0700, William Herrin wrote:
> One of the annoyances with both those guys and the swedish folks is
> that they're not sending messages to the return path, they're
> responding to the header from address. Mailman at NANOG never sees it.
> It doesn't pass through th
On Thu, Apr 23, 2020 at 07:56:30PM -0700, Michael Thomas wrote:
> $SHINYNEWSITE has only to entice you to enter your reused password which
> comes out in the clear on the other side of that TLS connection.?? basically
> password phishing. you can whine all you like about how stupid they are, but
>
[ Bunch of replies to messages in thread bundled here. ]
On Tue, Apr 21, 2020 at 06:28:48PM -0400, Bryan Fields wrote:
> It's a mailman list, so nanog-ow...@nanog.org should work. If not reach out
> to the communications committee.
All mailing lists should support that, regardless of what's runn
(since it's Friday and we're all stressed)
I can't believe that out of everything I wrote that we're going to discuss
the semantics of this, but then again: yes I can. I should have known.
I should have known. I. Should. Have. Known. *bangs head on desk*
*reaches for scotch* Alrighty then:
24
On Wed, Apr 15, 2020 at 11:33:58PM -0400, Ross Tajvar wrote:
> Can you give some examples of the things you mention above? I'm not doing
> much in terms of customer filtering and would be interested to hear what
> others consider best practice.
Sure. These are just examples and are by no means ex
On Mon, Apr 13, 2020 at 12:11:44PM -0700, Matt Corallo via NANOG wrote:
> I don???t really get the point of bothering, then. AWS takes about
> ~forever to respond to SES phishing reports, let alone hosting abuse,
> and other, cheaper, hosts/mailers (OVH etc come up all the time) don???t
> bother at
[ Copied to Jonathan @ RiskIQ because I don't believed he's subscribed. ]
On Mon, Apr 13, 2020 at 11:14:11PM +0530, Kushal R. wrote:
> All abuse reports that we receive are dealt within 48 business
> hours. As far as that tweet is concerned, it???s pending for 16 days
> because they have been blo
On Mon, Apr 13, 2020 at 07:55:37PM +0530, Kushal R. wrote:
> We understand these reports and deal with them as per our policies and
> timelines but this constant spamming by them from various channels is not
> appreciated.
Quoting from: https://twitter.com/RiskIQ_IRT/status/1249696689985740800
On Wed, Mar 25, 2020 at 08:13:58PM -0400, Chuck Anderson wrote:
> Let's start a public blacklist, sort of like a RBL reputation block
> list or 800notes.com, but for companies to "never to do business with"
> for spamming.
So it shall be done. Nominations accepted at:
nanog-spamm...@fire
On Mon, Mar 30, 2020 at 06:30:16AM -0500, Joe Greco wrote:
> Actual text traffic has been slowly dying off for years as webforums
> have matured and become a better choice of technology for nontechnical
> end users on high speed Internet connections.
My view is that the move to web forums is a hug
On Wed, Mar 25, 2020 at 05:27:41PM +, Nick Hilliard wrote:
> nntp is a non-scalable protocol which broke under its own weight. Threaded
> news-readers are a great way of catching up with large mailing lists if
> you're prepared to put in the effort to create a bidirectional gateway. But
> that
On Wed, Mar 25, 2020 at 09:59:53AM -0600, Grant Taylor via NANOG wrote:
> Something that might make you groan even more than NNTP is UUCP. UUCP
> doesn't even have the system-to-system (real time) requirement that NNTP
> has. It's quite possible to copy UUCP "Bag" files to removable media and
> u
One of the tools that we've had for a very long time but which is
often overlooked is NNTP. It's an excellent way to move information
around under exactly these circumstances: low bandwidth, lossy
connections -- and intermittent connectivity, limited resources, etc.
Nearly any laptop/desktop has
It's here: http://www.firemountain.net/covid19.html
There's now a link to Job Snijders' "Internet Operations During
Pandemics" PDF, better coverage of mapping/tracking, links to
every US state's public health agency, links to Canada and Mexico's
CDC-equivalents, etc. I also fixed the character en
On Sat, Mar 21, 2020 at 04:42:51AM +0200, Mark Tinka wrote:
> All I'm saying is at the moment, there is no empirical information to
> suggest that Netflix will break what's left of the Internet. Nor is
> there any empirical information suggesting that singling them out will
> help keep it going.
M
On Fri, Mar 20, 2020 at 10:00:15AM -0500, Mike Hammett wrote:
> Because they're trying to be a responsible Internet citizen instead of just
> telling everyone else to bugger off.
>
>
> Perhaps if more entities tried to be responsible instead of entitled, the
> Internet wouldn't be as bad as it
On Wed, Mar 18, 2020 at 03:43:37AM -0600, Keith Medcalf wrote:
> So you failed because you did not require the person making the decision
> to take responsibility for their decision. That is, your organization
> has a severely flawed process wherein the "R" for making the decision is
> not the sam
On Tue, Mar 17, 2020 at 11:35:59AM -0700, Owen DeLong wrote:
> Anything in the healthcare vertical that is outside of the medical
> providers control/ownership is a result of the medical provider
> buying into that model on some level. STOP DOING THAT. (How am I
> suddenly reminded of the old adag
On Tue, Mar 17, 2020 at 08:38:28AM -0700, Mike Bolitho wrote:
> Anybody who works in the healthcare vertical will tell you just how
> bad medical devices are to work with from an IT perspective.
Medical devices are appallingly bad to work with from an IT perspective.
They're designed and built to
On Sat, Mar 14, 2020 at 05:17:01PM -0400, b...@theworld.com wrote:
>
> On March 14, 2020 at 14:49 r...@gsp.org (Rich Kulawiec) wrote:
> >
> > 2. Find all the phone chargers, laptop chargers, USB sticks, cables,
> > everything. If you're not already obsessive abou
On Sat, Mar 14, 2020 at 11:01:48AM -0700, Mike Bolitho wrote:
> Third, the trouble we had was a third party service having congestion
> issues.
This is a tiny sample of what's coming. We're all about to be tested
in a major way, and lots of latent problems are about to become real,
pressing prob
On Thu, Feb 27, 2020 at 12:25:27AM +, Mark Rousell wrote:
> This (or what it appears to be) is happening on an increasing number of
> mail lists. It's not many but it's there I don't know who is behind it
> or why, but it's an increasing annoyance.
There is a partial fix for this, at least for
On Thu, Feb 06, 2020 at 09:08:35AM +0100, Pierfrancesco Caci wrote:
> You would sound much more credible if you'd step down the high horse and
> stop insulting the very same people you're supposed to work with.
You're concerned with policing his tone instead of dealing with the
massive security fa
On Tue, Jan 07, 2020 at 04:54:22PM -0600, Mike Hammett wrote:
> That said, if there's a stern warning about Cogent abusing the system,
> maybe their customers finding out is a good thing for the overall
> community. ;-)
And that is what I would suggest: reply to all queries with a notice
that expl
And this is why, despite all the disdainful remarks labeling such
things as "antiquated", mailing lists and Usenet newsgroups are vastly
superior to web sites/message boards/et.al. when it comes to facilitating
many-to-many communications between people. Why? Well, there are many
reasons, but o
[ Re-sent with proper headers. My apologies for the typo'd previous version. ]
On Thu, Dec 19, 2019 at 11:34:48AM -0800, William Herrin wrote:
> I don't want to start an arms race with the spam callers, I want to
> end it. That means: jump directly to something they can't easily
> defeat.
It is
Bcc:
Subject: Re: FCC proposes $10 Million fine for spoofed robocalls
Reply-To:
In-Reply-To:
On Thu, Dec 19, 2019 at 11:34:48AM -0800, William Herrin wrote:
> I don't want to start an arms race with the spam callers, I want to
> end it. That means: jump directly to something they can't easily
- Forwarded message from Russ Allbery -
> From: Russ Allbery
> Date: Tue, 26 Nov 2019 20:56:23 -0800
> Subject: Brian Kantor has died
>
> Slashdot reported, via a contributor from the 44Net amateur radio mailing
> list, that Brian Kantor died suddenly in his home last week.
>
> https:/
On Fri, Nov 08, 2019 at 01:43:41PM -0500, Mark Stevens wrote:
> Reading Syniverse's cause of trouble (lame excuse) tells me their data
> handling processes are poor and seemingly shady since I do not buy reason
> for the trouble.
Agreed. So how many other messages have been delayed, lost, forward
On Sat, Nov 02, 2019 at 09:18:36AM -0700, Mike Bolitho wrote:
> The very fact that there are
> AWS/Azure/Google Cloud data centers located around the globe makes anything
> hosted there even more resilient, not less (and for the most part, I still
> prefer on prem DC so I'm not even pushing "To the
[ Again, just commenting on one point. ]
On Thu, Oct 24, 2019 at 01:21:12PM -0700, Mark Milhollan wrote:
> My experience says that: their system has learned that your system(s)
> continued to send messages that their user (yes you, but they don't know
> that) did not want, i.e., you left it marked
[ I'm just going to focus on one point. ]
On Wed, Oct 23, 2019 at 06:18:46PM -0600, Constantine A. Murenin wrote:
> it is revealed that Postmaster Tools cannot tell me anything at all, with
> all tabs and screens being 100% blank, allegedly because I'm not actually a
> mass email sender (I don't s
I'm guessing -- because spammer Ben Reynolds (breyno...@cytranet.com)
wrote to me about voice/data services -- that it's possible they've
been scraping addresses from here.
---rsk
On Tue, Oct 08, 2019 at 10:03:16AM -0700, William Herrin wrote:
> Limiting the server banner so it doesn't tell an adversary the exact
> OS-specific binary you're using has a near-zero cost and forces an
> adversary to expend more effort searching for a vulnerability.
Why would they bother perform
On Tue, Oct 08, 2019 at 01:35:16PM +0100, Mike Meredith via NANOG wrote:
> You've ignored step 1 - identifying critical information that needs
> protecting. It makes sense to protect information that needs protecting and
> don't lose sleep over information that doesn't need protecting. Not many of
On Mon, Oct 07, 2019 at 05:28:08PM -0700, Matt Corallo wrote:
> Is it time to have ARIN add a ???abuse contact available only after
> captcha??? option?
No. Captchas are a worst practice and should never be used.
---rsk
On Mon, Oct 07, 2019 at 04:42:11PM +0200, Stephane Bortzmeyer wrote:
> Otherwise, an impressive amount of WTF. My favorite: "while
> communication by servers ___on the ground___ might take hundreds of
> milliseconds, in the cloud the same operation may take only one
> millisecond from one machine t
On Mon, Aug 12, 2019 at 04:11:00PM -0400, Ross Tajvar wrote:
> Seems like submitting a fraud request to ARIN is more effective than
> writing a novel and sending it to NANOG, and doesn't require the latter...
But if he didn't fully document his assertion(s), then he would be faced
with a plethora
On Sun, Aug 04, 2019 at 12:12:48AM -0700, Stephen Satchell wrote:
> "The rules" have been around for years, and are codified in the RFCs
> that are widely published and available to all at zero cost. (That
> wasn't always true, as it wasn't until the DDN Protocol Handbook volumes
> were published
On Thu, Aug 01, 2019 at 12:54:07AM +0300, Scott Christopher wrote:
> Rich Kulawiec wrote:
>
> > On Wed, Jul 31, 2019 at 11:13:48PM +0300, Scott Christopher wrote:
> > > Because it will get spammed if publicly listed in WHOIS.
> >
> > Yes. It will. Are you
On Wed, Jul 31, 2019 at 11:13:48PM +0300, Scott Christopher wrote:
> Because it will get spammed if publicly listed in WHOIS.
Yes. It will. Are you telling us that Amazon, with its enormous financial
and personnel resources, doesn't have ANYBODY on staff who knows how to
properly manage an abuse
Yes, this is egregious, but on the other hand even when the abuse
reporting mechanisms are working my experience has been that they
emit no response (other than -- maybe -- boilerplate) and take no
action, so it's not terribly surprising.
---rsk
On Wed, Jul 17, 2019 at 05:54:49PM -0700, Randy Bush wrote:
> do folk use `netstat -s` to help diagnose on routers/switches?
I (mostly) use it on firewalls, but yes, it's something I turn
to fairly often (along with other incantations of netstat, plus
lsof and other tools).
---rsk
On Thu, Jul 18, 2019 at 12:45:25PM -0600, Ken Gilmour wrote:
> I have evidence and can't contact anyone due to
> the lack of an appropriate form and the fact that the security@ email
> address doesn't work.
Of course I'm not surprised that the ignorant newbies running Twitter
can't manage this: wh
On Mon, Jul 08, 2019 at 06:54:51PM -0600, Keith Medcalf wrote:
> This is because DKIM was a solution to a problem that did not exist.
This is correct. We have always known the IP address of the connecting
MTA, therefore we have always known the network it resides in, therefore
we have always know
On Mon, Jun 24, 2019 at 09:39:13PM -0400, Ross Tajvar wrote:
> A technical one - see below from CF's blog post:
> "It is unfortunate that while we tried both e-mail and phone calls to reach
> out to Verizon, at the time of writing this article (over 8 hours after the
> incident), we have not heard
On Fri, Jun 21, 2019 at 05:13:35PM -0700, Ronald F. Guilmette wrote:
> Is there anybody on this list who keeps firewall logs and who
> DOESN'T have numerous hits recorded therein from one or more
> of the following IP addresses?
Well, I *did*, but having noticed their activities and grown tired of
This is probably best asked on the mailop list (where some Google
personnel hang out): subscribe via mailop-requ...@mailop.org.
---rsk
On Fri, May 31, 2019 at 01:17:19PM +, Richard wrote:
> When I have looked into this type of issue for my unique addressing
> some did trace back to back-end db hacks (e.g., adobe), but I found
> that the most likely culprit was the 3rd-party bulk mailer that
> handled the organization's marketi
On Fri, May 24, 2019 at 06:34:25PM +0300, Scott Christopher wrote:
> https://marc.info/?l=nanog&r=1&w=2 and https://lists.gt.net/nanog/
> mangle email addresses in the headers but do nothing about email addresses
> that are quoted / attributed in the body.
There is zero, as in 0.0, point in mangl
On Fri, May 24, 2019 at 08:17:31AM -0700, Brian Kantor wrote:
> Anne, the way that such addresses are often harvested is that one of
> the spammers (or his agent) becomes a member of the list and simply
> records the addresses of persons posting to the list. They then
> get spammed.
I rather susp
On Mon, May 13, 2019 at 11:48:02PM -0500, frnk...@iname.com wrote:
> One of my takeaways from that article was that burying fiber underground
> could likely have avoided many/most of these fiber cuts, though I???m
> not familiar enough with the terrain to know how feasible that is.
I suspect that
On Wed, May 08, 2019 at 10:11:10AM -0400, Sean Donelan wrote:
> Many exercise designers could use help coming up with useful Internet
> disaster sub-plots. Bad enough to inject stress into the exercise, but not
> extinction.
>
> All ISP tech support agents are infected, and become brain eating zo
On Fri, Apr 26, 2019 at 06:31:08PM -0700, William Herrin wrote:
> On Fri, Apr 26, 2019 at 6:06 PM John Levine wrote:
>
> > I assumed that something this sleazy would be offshore, but their
> > terms of service say they're in Los Angeles.
> >
>
> They tricked you. [snip]
Also, unless I'm misread
On Fri, Apr 26, 2019 at 07:06:40PM +0300, T??ma Gavrichenkov wrote:
> Also, I've seen people who use the same password (sometimes with few easily
> reversible modifications) for virtually all the purposes, from the WiFi
> router up to their e-mail and banking accounts.
This is one of the many risk
On Wed, Apr 24, 2019 at 03:13:33PM +, Benjamin Sisco wrote:
> The bigger concern should be the cleartext portion of the subject.
Yes, and the availability of all this to anyone who hacks Comcast
customer support.
---rsk
On Thu, Apr 18, 2019 at 12:56:03PM +, Kain, Rebecca (.) wrote:
> I can???t believe p2p isn???t used more, even inside companies. It does have
> legit uses
It does, and some of the use cases for it are quite compelling. However,
there is often deep mistrust associated with it: years of propa
On Wed, Apr 17, 2019 at 09:02:52PM -0400, Sean Donelan wrote:
> The Special Counsel's report is expected to be posted [...]
Not quite. A *version* of the report that has been redacted by
the President's hand-picked obedient lackey will be posted.
I suspect that the full report will find its way
On Mon, Mar 18, 2019 at 05:02:38PM -0700, Ronald F. Guilmette wrote:
> I generated the following survey, on the fly, last night,
> based on a simple reverse DNS scan of the evidently relevant addrdess
> ranges:
>
> https://pastebin.com/raw/WtM0Y5yC
>
> As anyone who isn't as blind as a bat ca
On Tue, Mar 19, 2019 at 09:17:23AM -0700, Eric Kuhnke wrote:
> Absolutely unrelated to Ronald's original post, but it's ironic that the
> abuse@ address is itself heavily "abused", by commercial copyright
> enforcement companies which think it's a catch-all address for things which
> are not operat
On Tue, Mar 19, 2019 at 09:23:34AM -0400, Jeff McAdams wrote:
> We would prefer, but don't require, that you use the web form because that
> is integrated into the workflow of the groups that respond to those
> reports.
Why isn't abuse@ integrated into the workflow? It darn well should be,
(a)
> Just wait until your connected home speakers, smart smoke detector, smart
> refrigerator, smart tv, cell phone, IP streaming box, satellite receiver,
> cable box, home security panel and your Fitbit all go off warning you
> of the cancellation of an Amber alert at 1:30am, because the good folks
>
A side point:
On Sat, Mar 09, 2019 at 02:04:33PM -0500, Sean Donelan wrote:
> Wireless Emergency Alerts (WEA), i.e., mobile phone alerts, are less than 10
> years old. And mostly on the high-end expensive cell phones and the most
> expensive carriers. People on NANOG may use mostly expensive smart
On Mon, Mar 04, 2019 at 08:04:12AM +1100, Mark Andrews wrote:
> ICMP is NOT optional.
I've pointed folks at this for years:
ICMP Packet Filtering v1.2
http://www.cymru.com/Documents/icmp-messages.html
---rsk
1 - 100 of 451 matches
Mail list logo
