Re: Perhaps it's time to think about enhancements to the NANOG list...?

2021-03-20 Thread Rich Kulawiec
On Sat, Mar 20, 2021 at 12:46:57PM -0600, David Siegel wrote: > The board has been thinking about enhancements to the NANOG list for a > couple of years now, with the goal of creating a modern interface that the > younger generation of engineers will be more comfortable using. This isn't a valid

Re: Perhaps it's time to think about enhancements to the NANOG list...?

2021-03-20 Thread Rich Kulawiec
On Thu, Mar 18, 2021 at 03:28:31PM -0700, Matthew Petach wrote: > If only we had some way to segregate out different topics > of interest or disinterest, so that people who weren't interested > in questions about bandwidth availability could unsubscribe > from those topics, and only subscribe to

Re: OVH datacenter SBG2 in Strasbourg on fire ????

2021-03-12 Thread Rich Kulawiec
On Fri, Mar 12, 2021 at 02:46:51PM +, David Hubbard wrote: > After sending them abuse reports for years with only an increase in > malicious traffic, I have no expectation of anything they do getting > better or being for the benefit of the internet as a whole. This is a shared experience.

Re: OVH datacenter SBG2 in Strasbourg on fire ????

2021-03-10 Thread Rich Kulawiec
If you give people the means to hurt you, and they do it, and you take no action except to continue giving them the means to hurt you, and they take no action except to keep hurting you, then one of the ways you can describe the situation is "it isn't

Re: Texas internet connectivity declining due to blackouts

2021-02-23 Thread Rich Kulawiec
On Mon, Feb 22, 2021 at 08:44:32PM +0200, Saku Ytti wrote: > On Mon, 22 Feb 2021 at 20:28, Rich Kulawiec wrote: > > > right: artificial sweeteners are safe, WMDs were in Iraq, and Anna Nicole > > Hope you meant to write 'unsafe', as the conspiracy theory is that >

Re: Texas internet connectivity declining due to blackouts

2021-02-22 Thread Rich Kulawiec
On Mon, Feb 22, 2021 at 05:48:06PM +, Mel Beckman wrote: > Sorry Global Warmists, Right. Sure. Also, the earth is 6,000 years old (and flat), the moon landings were faked, creationism is real, dinosaurs and humans co-existed, vaccines cause autism, Elvis is alive, and...how does that line

Re: Texas internet connectivity declining due to blackouts

2021-02-22 Thread Rich Kulawiec
On Wed, Feb 17, 2021 at 10:34:35AM -0800, Sabri Berisha wrote: > With apologies to those on the list who still use mutt/pine etc. 1. "still"? Competent professionals with security awareness use text-only email clients as a matter of basic self-defense. I trust it's obvious why those of us who

Re: Texas internet connectivity declining due to blackouts

2021-02-22 Thread Rich Kulawiec
On Tue, Feb 16, 2021 at 12:23:22PM +, Bret Clark wrote: > Texas doesn't generally experience this type of extreme cold. That was then; this is now. As scientist Jeff Masters put it most of a decade ago: The atmosphere I grew up with no longer exists. My new motto with

Re: Famous operational issues

2021-02-16 Thread Rich Kulawiec
On Tue, Feb 16, 2021 at 01:37:35PM -0600, John Kristoff wrote: > Which examples would make up your top three? Morris worm, November 1988. Much confusion and eventually the realization the John Brunner had called it from 13 years out ("The Shockwave Rider", 1975). But sloppy coding meant it could

Re: Texas internet connectivity declining due to blackouts

2021-02-16 Thread Rich Kulawiec
On Tue, Feb 16, 2021 at 04:17:15AM +, Robert Jacobs wrote: > How about letting us Texans have more natural gas power plants or even > let the gas be delivered to the plants we have so they can provide more > power in an emergency. Did not help that 20% of our power is now wind > which of

Re: Past policies versus present and future uses

2021-01-26 Thread Rich Kulawiec
On Mon, Jan 25, 2021 at 11:26:51AM -0500, Rob McEwen wrote: > Is DDoS-Guard without blame? Probably not, but them hosting some occasional > criminals is NOT UNLIKE EVERY OTHER GLOBAL NETWORK! You might wish to scroll back up to the message I sent here on January 21 with the Subject "DDOS-Guard"

Re: opportunistic email encryption by the MTA (not MUA)

2021-01-16 Thread Rich Kulawiec
While I agree pretty much entirely with everything you've expressed, there is another force in the world quietly chugging away to make sure that email privacy remains largely hypothetical...and that is: cloud computing. A lot of people have outsourced their mail service to cloud operations, so

Re: Looking for hosted SMTP service for small ISP

2021-01-14 Thread Rich Kulawiec
On Thu, Jan 14, 2021 at 03:45:06PM -0700, Grant Taylor via NANOG wrote: > Be mindful that there is and has been a concerted effort to block parts of > SendGrid. There's even a relatively new RBL -- which started because of > SendGrid -- specifically for blocking some of their worse customers.

Re: Re Parler

2021-01-14 Thread Rich Kulawiec
On Thu, Jan 14, 2021 at 11:01:19AM -0700, Keith Medcalf wrote: > This result will only come to pass if Parler wins their lawsuit (which is > likely) The first hearing in this case was held today. Per reporting by Katherine Long of the Seattle Times, during that hearing Parler's attorney:

Re: DoNotPay Spam?

2021-01-13 Thread Rich Kulawiec
On Wed, Jan 13, 2021 at 05:06:15PM -0500, Robert Webb wrote: > Anyone else getting spam from DoNotPay everytime they send an email to the > list? This is solvable by permanently blocking all traffic from Mailgun in your MTA. This should be a good start and may suffice: mailgun.info

Re: Parler

2021-01-10 Thread Rich Kulawiec
Given that people on Parler are currently discussing/planning attacks against Amazon/Google/Apple/etc.'s facilities and personnel, this seems wise. ---rsk

Re: WhatsApp's New Policy Has...

2021-01-09 Thread Rich Kulawiec
On Fri, Jan 08, 2021 at 01:31:56PM -0600, Dave Phelps wrote: > Keybase was purchased by Zoom ( > https://www.cnbc.com/2020/05/07/zoom-buys-keybase-in-first-deal-as-part-of-plan-to-fix-security.html). > >From what I've gathered, Zoom is too tight with, owned by, or run by China, > so I believe

Re: NDAA passed: Internet and Online Streaming Services Emergency Alert Study

2021-01-07 Thread Rich Kulawiec
On Thu, Jan 07, 2021 at 01:27:07AM +1300, Mark Foster wrote: > I respect this in principle, but hyperbole serves no-one - a smartphone > only creates a "morass of privacy/security issues" if you let it. You can't be serious. Have you paid *any* attention to what's been going on in this ecosystem

Re: NDAA passed: Internet and Online Streaming Services Emergency Alert Study

2021-01-06 Thread Rich Kulawiec
On Mon, Jan 04, 2021 at 09:08:06PM -0600, Billy Crook wrote: > Then again how many people would benefit from adding this to online > streaming, but don't already have cellphones that have emergency alert > popups that get their attention. The kind of people who don't have > smartphones are going

Re: NDAA passed: Internet and Online Streaming Services Emergency Alert Study

2021-01-03 Thread Rich Kulawiec
On Sun, Jan 03, 2021 at 03:26:07AM -0500, Valdis Kl??tnieks wrote: > Meanwhile, this causes yet another problem - if Hulu has to be able to > know what alerts should be piped down to my device, this now means that > every single police and public safety agency has to be able to send the > alerts

Re: NDAA passed: Internet and Online Streaming Services Emergency Alert Study

2021-01-02 Thread Rich Kulawiec
On Fri, Jan 01, 2021 at 05:07:22PM -0500, Sean Donelan wrote: > Not later than 180 days after the date of > enactment of this Act, and after providing public notice and > opportunity for comment, the Commission shall complete an > inquiry to examine the feasibility of updating the Emergency >

Re: Are the days of the showpiece NOC office display gone forever?

2020-12-30 Thread Rich Kulawiec
On Tue, Dec 22, 2020 at 10:41:43PM -0700, Wayne Bouchard wrote: > And if the last 15 years has shown us anything, it is that when you > can't get past the auto-attendant and talk to a real human, and if > that person can't talk to you like a person instead of reading scripts > at you, your stress

Re: "Hacking" these days - purpose?

2020-12-14 Thread Rich Kulawiec
On Mon, Dec 14, 2020 at 09:58:01AM -0500, Tom Beecher wrote: > Questionable cloud / VPS / hosting companies are great for spammers and > botnet C, but not so great for DDoS "ion cannons". You still need a large > volume of geographically diverse endpoints for those to be effective. To piggyback

Re: Weather Service faces Internet bandwidth shortage, proposes limiting key data

2020-12-10 Thread Rich Kulawiec
On Thu, Dec 10, 2020 at 09:48:25AM -0500, Jared Mauch wrote: > I miss weather underground before it became slow as molasses with > openstreetmap and other things. As do I, and the demise of uswx.com took away one of the alternatives. I spent some time earlier this year unsuccessfully trying to

Re: The Real AI Threat?

2020-12-10 Thread Rich Kulawiec
On Thu, Dec 10, 2020 at 12:34:33AM +, Mel Beckman wrote: > So don???t be fooled by Siri and Google voice response. There is no > intellect there, only pattern matching. Which we???ve been doing with > machines since the Jacquard Loom. On this particular point: many years ago, some of us at

Fwd: Weather Service faces Internet bandwidth shortage, proposes limiting key data

2020-12-10 Thread Rich Kulawiec
- Forwarded message from Dave Farber - > From: Dave Farber > Date: Thu, 10 Dec 2020 15:47:44 +0900 > Subject: [IP] Weather Service faces Internet bandwidth shortage, proposes > limiting key data > > Weather Service faces Internet bandwidth shortage, proposes limiting key data > The

Re: Technology risk without safeguards

2020-11-06 Thread Rich Kulawiec
/Friday afternoon On Thu, Nov 05, 2020 at 09:05:34AM -0800, William Herrin wrote: > Following staff home and picking them off with a rifle is so much > cheaper and carries a better probability of success. So does following them home and leaving them brand new unopened large bottles of Woodford

Re: Virginia voter registration down due to cable cut

2020-10-19 Thread Rich Kulawiec
On Sat, Oct 17, 2020 at 07:44:01PM -0400, Sean Donelan wrote: > In the USA, absent clear and convincing evidence otherwise, I expect any > outages will be due to the normal things that cause outages on election day. One of those things is the chronic underfunding of the systems/personnel

Re: Cogent emails

2020-09-22 Thread Rich Kulawiec
On Tue, Sep 22, 2020 at 07:58:42AM -0500, J. Hellenthal via NANOG wrote: > geeks@nanog works just fine Yes, it works just fine for *that* purpose. However, *this* has a different purpose: Shining a light on ambulance chasers - Noction

Re: Cogent emails

2020-09-22 Thread Rich Kulawiec
On Mon, Sep 21, 2020 at 06:30:24PM -0600, Grant Taylor via NANOG wrote: > Is this simply being aggregated by a NANOG member / subscriber and thus > something unofficial? That's exactly right. Whether NANOG itself ever wants to do anything with the results is entirely up to them. ---rsk

Re: Cogent emails

2020-09-21 Thread Rich Kulawiec
On Mon, Sep 14, 2020 at 12:45:32PM -0400, Dovid Bender wrote: > Is anyone starting to get the "cogent emails" again? Reminder: forwarding these sorts of things (with full headers please) to: nanog-spamm...@firemountain.net will cause them to be compiled into a list. ---rsk

Re: BGP route hijack by AS10990

2020-08-27 Thread Rich Kulawiec
On Mon, Aug 03, 2020 at 08:57:53AM -0400, Tom Beecher wrote: > Telia made a mistake. They owned it and will endeavor to do better. What > more can be asked? Figure out how that mistake happened -- what factors led to it? Then make changes so that it can't happen again, at least not in that

Re: (updated) COVID-19 fast/small resources page

2020-05-14 Thread Rich Kulawiec
Update on: On Mon, Mar 23, 2020 at 10:42:32PM -0400, Rich Kulawiec wrote: > It's here: http://www.firemountain.net/covid19.html I've been updating this every 24-48 hours. It now includes every applicable case/test tracker I'm aware of and links to quite a few articles and papers. (I may br

Re: Abuse Desks

2020-04-29 Thread Rich Kulawiec
On Tue, Apr 28, 2020 at 12:40:12PM -0400, Matt Corallo via NANOG wrote: > Please don't use this kind of crap to send automated "we received 3 login > attempts on our SSH box..wa" emails. > This is why folks don't have abuse contacts that are responsive to real > issues anymore. [ "you"

Re: mail admins?

2020-04-26 Thread Rich Kulawiec
On Thu, Apr 23, 2020 at 10:47:18AM -0700, William Herrin wrote: > One of the annoyances with both those guys and the swedish folks is > that they're not sending messages to the return path, they're > responding to the header from address. Mailman at NANOG never sees it. > It doesn't pass through

Re: mail admins?

2020-04-26 Thread Rich Kulawiec
On Thu, Apr 23, 2020 at 07:56:30PM -0700, Michael Thomas wrote: > $SHINYNEWSITE has only to entice you to enter your reused password which > comes out in the clear on the other side of that TLS connection.?? basically > password phishing. you can whine all you like about how stupid they are, but >

Re: mail admins?

2020-04-23 Thread Rich Kulawiec
[ Bunch of replies to messages in thread bundled here. ] On Tue, Apr 21, 2020 at 06:28:48PM -0400, Bryan Fields wrote: > It's a mailman list, so nanog-ow...@nanog.org should work. If not reach out > to the communications committee. All mailing lists should support that, regardless of what's

Re: 24x7 vs 24x7x365 Re: Constant Abuse Reports / Borderline Spamming from RiskIQ

2020-04-17 Thread Rich Kulawiec
(since it's Friday and we're all stressed) I can't believe that out of everything I wrote that we're going to discuss the semantics of this, but then again: yes I can. I should have known. I should have known. I. Should. Have. Known. *bangs head on desk* *reaches for scotch* Alrighty then:

Re: Constant Abuse Reports / Borderline Spamming from RiskIQ

2020-04-17 Thread Rich Kulawiec
On Wed, Apr 15, 2020 at 11:33:58PM -0400, Ross Tajvar wrote: > Can you give some examples of the things you mention above? I'm not doing > much in terms of customer filtering and would be interested to hear what > others consider best practice. Sure. These are just examples and are by no means

Re: Constant Abuse Reports / Borderline Spamming from RiskIQ

2020-04-15 Thread Rich Kulawiec
On Mon, Apr 13, 2020 at 12:11:44PM -0700, Matt Corallo via NANOG wrote: > I don???t really get the point of bothering, then. AWS takes about > ~forever to respond to SES phishing reports, let alone hosting abuse, > and other, cheaper, hosts/mailers (OVH etc come up all the time) don???t > bother

Re: Constant Abuse Reports / Borderline Spamming from RiskIQ

2020-04-15 Thread Rich Kulawiec
[ Copied to Jonathan @ RiskIQ because I don't believed he's subscribed. ] On Mon, Apr 13, 2020 at 11:14:11PM +0530, Kushal R. wrote: > All abuse reports that we receive are dealt within 48 business > hours. As far as that tweet is concerned, it???s pending for 16 days > because they have been

Re: Constant Abuse Reports / Borderline Spamming from RiskIQ

2020-04-13 Thread Rich Kulawiec
On Mon, Apr 13, 2020 at 07:55:37PM +0530, Kushal R. wrote: > We understand these reports and deal with them as per our policies and > timelines but this constant spamming by them from various channels is not > appreciated. Quoting from: https://twitter.com/RiskIQ_IRT/status/1249696689985740800

Re: [EXT] Shining a light on ambulance chasers - Noction

2020-04-02 Thread Rich Kulawiec
On Wed, Mar 25, 2020 at 08:13:58PM -0400, Chuck Anderson wrote: > Let's start a public blacklist, sort of like a RBL reputation block > list or 800notes.com, but for companies to "never to do business with" > for spamming. So it shall be done. Nominations accepted at:

Re: free collaborative tools for low BW and losy connections

2020-03-30 Thread Rich Kulawiec
On Mon, Mar 30, 2020 at 06:30:16AM -0500, Joe Greco wrote: > Actual text traffic has been slowly dying off for years as webforums > have matured and become a better choice of technology for nontechnical > end users on high speed Internet connections. My view is that the move to web forums is a

Re: free collaborative tools for low BW and losy connections

2020-03-29 Thread Rich Kulawiec
On Wed, Mar 25, 2020 at 05:27:41PM +, Nick Hilliard wrote: > nntp is a non-scalable protocol which broke under its own weight. Threaded > news-readers are a great way of catching up with large mailing lists if > you're prepared to put in the effort to create a bidirectional gateway. But >

Re: free collaborative tools for low BW and losy connections

2020-03-25 Thread Rich Kulawiec
On Wed, Mar 25, 2020 at 09:59:53AM -0600, Grant Taylor via NANOG wrote: > Something that might make you groan even more than NNTP is UUCP. UUCP > doesn't even have the system-to-system (real time) requirement that NNTP > has. It's quite possible to copy UUCP "Bag" files to removable media and >

Re: free collaborative tools for low BW and losy connections

2020-03-25 Thread Rich Kulawiec
One of the tools that we've had for a very long time but which is often overlooked is NNTP. It's an excellent way to move information around under exactly these circumstances: low bandwidth, lossy connections -- and intermittent connectivity, limited resources, etc. Nearly any laptop/desktop

(updated) COVID-19 fast/small resources page

2020-03-23 Thread Rich Kulawiec
It's here: http://www.firemountain.net/covid19.html There's now a link to Job Snijders' "Internet Operations During Pandemics" PDF, better coverage of mapping/tracking, links to every US state's public health agency, links to Canada and Mexico's CDC-equivalents, etc. I also fixed the character

Re: COVID-19 vs. our Networks

2020-03-21 Thread Rich Kulawiec
On Sat, Mar 21, 2020 at 04:42:51AM +0200, Mark Tinka wrote: > All I'm saying is at the moment, there is no empirical information to > suggest that Netflix will break what's left of the Internet. Nor is > there any empirical information suggesting that singling them out will > help keep it going.

Re: COVID-19 vs. our Networks

2020-03-20 Thread Rich Kulawiec
On Fri, Mar 20, 2020 at 10:00:15AM -0500, Mike Hammett wrote: > Because they're trying to be a responsible Internet citizen instead of just > telling everyone else to bugger off. > > > Perhaps if more entities tried to be responsible instead of entitled, the > Internet wouldn't be as bad as

Re: COVID-19 vs. our Networks

2020-03-18 Thread Rich Kulawiec
On Wed, Mar 18, 2020 at 03:43:37AM -0600, Keith Medcalf wrote: > So you failed because you did not require the person making the decision > to take responsibility for their decision. That is, your organization > has a severely flawed process wherein the "R" for making the decision is > not the

Re: COVID-19 vs. our Networks

2020-03-17 Thread Rich Kulawiec
On Tue, Mar 17, 2020 at 11:35:59AM -0700, Owen DeLong wrote: > Anything in the healthcare vertical that is outside of the medical > providers control/ownership is a result of the medical provider > buying into that model on some level. STOP DOING THAT. (How am I > suddenly reminded of the old

Re: COVID-19 vs. our Networks

2020-03-17 Thread Rich Kulawiec
On Tue, Mar 17, 2020 at 08:38:28AM -0700, Mike Bolitho wrote: > Anybody who works in the healthcare vertical will tell you just how > bad medical devices are to work with from an IT perspective. Medical devices are appallingly bad to work with from an IT perspective. They're designed and built

Re: COVID-19 vs. our Networks

2020-03-14 Thread Rich Kulawiec
On Sat, Mar 14, 2020 at 05:17:01PM -0400, b...@theworld.com wrote: > > On March 14, 2020 at 14:49 r...@gsp.org (Rich Kulawiec) wrote: > > > > 2. Find all the phone chargers, laptop chargers, USB sticks, cables, > > everything. If you're not already obsessive about kee

Re: COVID-19 vs. our Networks

2020-03-14 Thread Rich Kulawiec
On Sat, Mar 14, 2020 at 11:01:48AM -0700, Mike Bolitho wrote: > Third, the trouble we had was a third party service having congestion > issues. This is a tiny sample of what's coming. We're all about to be tested in a major way, and lots of latent problems are about to become real, pressing

Re: idiot reponse

2020-02-27 Thread Rich Kulawiec
On Thu, Feb 27, 2020 at 12:25:27AM +, Mark Rousell wrote: > This (or what it appears to be) is happening on an increasing number of > mail lists. It's not many but it's there I don't know who is behind it > or why, but it's an increasing annoyance. There is a partial fix for this, at least

Re: Tell me about AS19111

2020-02-06 Thread Rich Kulawiec
On Thu, Feb 06, 2020 at 09:08:35AM +0100, Pierfrancesco Caci wrote: > You would sound much more credible if you'd step down the high horse and > stop insulting the very same people you're supposed to work with. You're concerned with policing his tone instead of dealing with the massive security

Re: FYI - Suspension of Cogent access to ARIN Whois

2020-01-07 Thread Rich Kulawiec
On Tue, Jan 07, 2020 at 04:54:22PM -0600, Mike Hammett wrote: > That said, if there's a stern warning about Cogent abusing the system, > maybe their customers finding out is a good thing for the overall > community. ;-) And that is what I would suggest: reply to all queries with a notice that

Re: Iran cuts 95% of Internet traffic

2019-12-29 Thread Rich Kulawiec
And this is why, despite all the disdainful remarks labeling such things as "antiquated", mailing lists and Usenet newsgroups are vastly superior to web sites/message boards/et.al. when it comes to facilitating many-to-many communications between people. Why? Well, there are many reasons, but

Re: FCC proposes $10 Million fine for spoofed robocalls

2019-12-19 Thread Rich Kulawiec
[ Re-sent with proper headers. My apologies for the typo'd previous version. ] On Thu, Dec 19, 2019 at 11:34:48AM -0800, William Herrin wrote: > I don't want to start an arms race with the spam callers, I want to > end it. That means: jump directly to something they can't easily > defeat. It is

[no subject]

2019-12-19 Thread Rich Kulawiec
Bcc: Subject: Re: FCC proposes $10 Million fine for spoofed robocalls Reply-To: In-Reply-To: On Thu, Dec 19, 2019 at 11:34:48AM -0800, William Herrin wrote: > I don't want to start an arms race with the spam callers, I want to > end it. That means: jump directly to something they can't easily

We've lost another innovator

2019-11-27 Thread Rich Kulawiec
- Forwarded message from Russ Allbery - > From: Russ Allbery > Date: Tue, 26 Nov 2019 20:56:23 -0800 > Subject: Brian Kantor has died > > Slashdot reported, via a contributor from the 44Net amateur radio mailing > list, that Brian Kantor died suddenly in his home last week. > >

Re: all major US carriers received text messages overnight that appear to have been sent around Valentine's Day 2019

2019-11-11 Thread Rich Kulawiec
On Fri, Nov 08, 2019 at 01:43:41PM -0500, Mark Stevens wrote: > Reading Syniverse's cause of trouble (lame excuse) tells me their data > handling processes are poor and seemingly shady since I do not buy reason > for the trouble. Agreed. So how many other messages have been delayed, lost,

Re: Russian government???s disconnection test

2019-11-05 Thread Rich Kulawiec
On Sat, Nov 02, 2019 at 09:18:36AM -0700, Mike Bolitho wrote: > The very fact that there are > AWS/Azure/Google Cloud data centers located around the globe makes anything > hosted there even more resilient, not less (and for the most part, I still > prefer on prem DC so I'm not even pushing "To

Re: Unable to email anyone from my primary domain name; thanks Google Mail and G Suite.

2019-10-25 Thread Rich Kulawiec
[ Again, just commenting on one point. ] On Thu, Oct 24, 2019 at 01:21:12PM -0700, Mark Milhollan wrote: > My experience says that: their system has learned that your system(s) > continued to send messages that their user (yes you, but they don't know > that) did not want, i.e., you left it

Re: Unable to email anyone from my primary domain name; thanks Google Mail and G Suite.

2019-10-24 Thread Rich Kulawiec
[ I'm just going to focus on one point. ] On Wed, Oct 23, 2019 at 06:18:46PM -0600, Constantine A. Murenin wrote: > it is revealed that Postmaster Tools cannot tell me anything at all, with > all tabs and screens being 100% blank, allegedly because I'm not actually a > mass email sender (I don't

Is anybody else getting spam from cytranet.com?

2019-10-22 Thread Rich Kulawiec
I'm guessing -- because spammer Ben Reynolds (breyno...@cytranet.com) wrote to me about voice/data services -- that it's possible they've been scraping addresses from here. ---rsk

Re: Update to BCP-38?

2019-10-09 Thread Rich Kulawiec
On Tue, Oct 08, 2019 at 10:03:16AM -0700, William Herrin wrote: > Limiting the server banner so it doesn't tell an adversary the exact > OS-specific binary you're using has a near-zero cost and forces an > adversary to expend more effort searching for a vulnerability. Why would they bother

Re: Update to BCP-38?

2019-10-08 Thread Rich Kulawiec
On Tue, Oct 08, 2019 at 01:35:16PM +0100, Mike Meredith via NANOG wrote: > You've ignored step 1 - identifying critical information that needs > protecting. It makes sense to protect information that needs protecting and > don't lose sleep over information that doesn't need protecting. Not many of

Re: Automated Abuse Reports

2019-10-08 Thread Rich Kulawiec
On Mon, Oct 07, 2019 at 05:28:08PM -0700, Matt Corallo wrote: > Is it time to have ARIN add a ???abuse contact available only after > captcha??? option? No. Captchas are a worst practice and should never be used. ---rsk

Re: "Using Cloud Resources to Dramatically Improve Internet Routing"

2019-10-07 Thread Rich Kulawiec
On Mon, Oct 07, 2019 at 04:42:11PM +0200, Stephane Bortzmeyer wrote: > Otherwise, an impressive amount of WTF. My favorite: "while > communication by servers ___on the ground___ might take hundreds of > milliseconds, in the cloud the same operation may take only one > millisecond from one machine

Re: Corporate Identity Theft: Azuki, LLC -- AS13389, 216.179.128.0/17

2019-08-13 Thread Rich Kulawiec
On Mon, Aug 12, 2019 at 04:11:00PM -0400, Ross Tajvar wrote: > Seems like submitting a fraud request to ARIN is more effective than > writing a novel and sending it to NANOG, and doesn't require the latter... But if he didn't fully document his assertion(s), then he would be faced with a plethora

Re: User Unknown (WAS: really amazon?)

2019-08-12 Thread Rich Kulawiec
On Sun, Aug 04, 2019 at 12:12:48AM -0700, Stephen Satchell wrote: > "The rules" have been around for years, and are codified in the RFCs > that are widely published and available to all at zero cost. (That > wasn't always true, as it wasn't until the DDN Protocol Handbook volumes > were published

Re: really amazon?

2019-07-31 Thread Rich Kulawiec
On Thu, Aug 01, 2019 at 12:54:07AM +0300, Scott Christopher wrote: > Rich Kulawiec wrote: > > > On Wed, Jul 31, 2019 at 11:13:48PM +0300, Scott Christopher wrote: > > > Because it will get spammed if publicly listed in WHOIS. > > > > Yes. It will. Are you

Re: really amazon?

2019-07-31 Thread Rich Kulawiec
On Wed, Jul 31, 2019 at 11:13:48PM +0300, Scott Christopher wrote: > Because it will get spammed if publicly listed in WHOIS. Yes. It will. Are you telling us that Amazon, with its enormous financial and personnel resources, doesn't have ANYBODY on staff who knows how to properly manage an

Re: really amazon?

2019-07-31 Thread Rich Kulawiec
Yes, this is egregious, but on the other hand even when the abuse reporting mechanisms are working my experience has been that they emit no response (other than -- maybe -- boilerplate) and take no action, so it's not terribly surprising. ---rsk

Re: netstat -s

2019-07-19 Thread Rich Kulawiec
On Wed, Jul 17, 2019 at 05:54:49PM -0700, Randy Bush wrote: > do folk use `netstat -s` to help diagnose on routers/switches? I (mostly) use it on firewalls, but yes, it's something I turn to fairly often (along with other incantations of netstat, plus lsof and other tools). ---rsk

Re: Twitter security team?

2019-07-18 Thread Rich Kulawiec
On Thu, Jul 18, 2019 at 12:45:25PM -0600, Ken Gilmour wrote: > I have evidence and can't contact anyone due to > the lack of an appropriate form and the fact that the security@ email > address doesn't work. Of course I'm not surprised that the ignorant newbies running Twitter can't manage this:

Re: SHAKEN/STIR Robocall Summit - July 11 2019 at FCC

2019-07-10 Thread Rich Kulawiec
On Mon, Jul 08, 2019 at 06:54:51PM -0600, Keith Medcalf wrote: > This is because DKIM was a solution to a problem that did not exist. This is correct. We have always known the IP address of the connecting MTA, therefore we have always known the network it resides in, therefore we have always

Re: CloudFlare issues?

2019-06-25 Thread Rich Kulawiec
On Mon, Jun 24, 2019 at 09:39:13PM -0400, Ross Tajvar wrote: > A technical one - see below from CF's blog post: > "It is unfortunate that while we tried both e-mail and phone calls to reach > out to Verizon, at the time of writing this article (over 8 hours after the > incident), we have not heard

Re: Russian Anal Probing + Malware

2019-06-23 Thread Rich Kulawiec
On Fri, Jun 21, 2019 at 05:13:35PM -0700, Ronald F. Guilmette wrote: > Is there anybody on this list who keeps firewall logs and who > DOESN'T have numerous hits recorded therein from one or more > of the following IP addresses? Well, I *did*, but having noticed their activities and grown tired

Re: Google Post Master experiences

2019-06-03 Thread Rich Kulawiec
This is probably best asked on the mailop list (where some Google personnel hang out): subscribe via mailop-requ...@mailop.org. ---rsk

Re: PSA: change your fedex.com account logins

2019-05-31 Thread Rich Kulawiec
On Fri, May 31, 2019 at 01:17:19PM +, Richard wrote: > When I have looked into this type of issue for my unique addressing > some did trace back to back-end db hacks (e.g., adobe), but I found > that the most likely culprit was the 3rd-party bulk mailer that > handled the organization's

Re: Spamming of NANOG list members

2019-05-24 Thread Rich Kulawiec
On Fri, May 24, 2019 at 06:34:25PM +0300, Scott Christopher wrote: > https://marc.info/?l=nanog=1=2 and https://lists.gt.net/nanog/ > mangle email addresses in the headers but do nothing about email addresses > that are quoted / attributed in the body. There is zero, as in 0.0, point in

Re: Spamming of NANOG list members

2019-05-24 Thread Rich Kulawiec
On Fri, May 24, 2019 at 08:17:31AM -0700, Brian Kantor wrote: > Anne, the way that such addresses are often harvested is that one of > the spammers (or his agent) becomes a member of the list and simply > records the addresses of persons posting to the list. They then > get spammed. I rather

Re: FCC Hurricane Michael after-action report

2019-05-14 Thread Rich Kulawiec
On Mon, May 13, 2019 at 11:48:02PM -0500, frnk...@iname.com wrote: > One of my takeaways from that article was that burying fiber underground > could likely have avoided many/most of these fiber cuts, though I???m > not familiar enough with the terrain to know how feasible that is. I suspect that

Re: EXERCISE: 2019 IAA Planetary Defence Conference - Day 5 Scenario

2019-05-08 Thread Rich Kulawiec
On Wed, May 08, 2019 at 10:11:10AM -0400, Sean Donelan wrote: > Many exercise designers could use help coming up with useful Internet > disaster sub-plots. Bad enough to inject stress into the exercise, but not > extinction. > > All ISP tech support agents are infected, and become brain eating

Re: Packetstream - how does this not violate just about every provider's ToS?

2019-04-27 Thread Rich Kulawiec
On Fri, Apr 26, 2019 at 06:31:08PM -0700, William Herrin wrote: > On Fri, Apr 26, 2019 at 6:06 PM John Levine wrote: > > > I assumed that something this sleazy would be offshore, but their > > terms of service say they're in Los Angeles. > > > > They tricked you. [snip] Also, unless I'm

Re: Comcast storing WiFi passwords in cleartext?

2019-04-26 Thread Rich Kulawiec
On Fri, Apr 26, 2019 at 07:06:40PM +0300, T??ma Gavrichenkov wrote: > Also, I've seen people who use the same password (sometimes with few easily > reversible modifications) for virtually all the purposes, from the WiFi > router up to their e-mail and banking accounts. This is one of the many

Re: Comcast storing WiFi passwords in cleartext?

2019-04-24 Thread Rich Kulawiec
On Wed, Apr 24, 2019 at 03:13:33PM +, Benjamin Sisco wrote: > The bigger concern should be the cleartext portion of the subject. Yes, and the availability of all this to anyone who hacks Comcast customer support. ---rsk

P2P [was: Special Counsel Office report web site]

2019-04-18 Thread Rich Kulawiec
On Thu, Apr 18, 2019 at 12:56:03PM +, Kain, Rebecca (.) wrote: > I can???t believe p2p isn???t used more, even inside companies. It does have > legit uses It does, and some of the use cases for it are quite compelling. However, there is often deep mistrust associated with it: years of

Re: Special Counsel Office report web site

2019-04-18 Thread Rich Kulawiec
On Wed, Apr 17, 2019 at 09:02:52PM -0400, Sean Donelan wrote: > The Special Counsel's report is expected to be posted [...] Not quite. A *version* of the report that has been redacted by the President's hand-picked obedient lackey will be posted. I suspect that the full report will find its way

Re: Contacts wanted: OVH, DigitalOcean, and Microsoft (Deutschland)

2019-03-27 Thread Rich Kulawiec
On Mon, Mar 18, 2019 at 05:02:38PM -0700, Ronald F. Guilmette wrote: > I generated the following survey, on the fly, last night, > based on a simple reverse DNS scan of the evidently relevant addrdess > ranges: > > https://pastebin.com/raw/WtM0Y5yC > > As anyone who isn't as blind as a bat

Re: Contacts wanted: OVH, DigitalOcean, and Microsoft (Deutschland)

2019-03-20 Thread Rich Kulawiec
On Tue, Mar 19, 2019 at 09:17:23AM -0700, Eric Kuhnke wrote: > Absolutely unrelated to Ronald's original post, but it's ironic that the > abuse@ address is itself heavily "abused", by commercial copyright > enforcement companies which think it's a catch-all address for things which > are not

Re: Contacts wanted: OVH, DigitalOcean, and Microsoft (Deutschland)

2019-03-19 Thread Rich Kulawiec
On Tue, Mar 19, 2019 at 09:23:34AM -0400, Jeff McAdams wrote: > We would prefer, but don't require, that you use the web form because that > is integrated into the workflow of the groups that respond to those > reports. Why isn't abuse@ integrated into the workflow? It darn well should be, (a)

Re: Should Netflix and Hulu give you emergency alerts?

2019-03-11 Thread Rich Kulawiec
> Just wait until your connected home speakers, smart smoke detector, smart > refrigerator, smart tv, cell phone, IP streaming box, satellite receiver, > cable box, home security panel and your Fitbit all go off warning you > of the cancellation of an Amber alert at 1:30am, because the good folks

Re: Should Netflix and Hulu give you emergency alerts?

2019-03-10 Thread Rich Kulawiec
A side point: On Sat, Mar 09, 2019 at 02:04:33PM -0500, Sean Donelan wrote: > Wireless Emergency Alerts (WEA), i.e., mobile phone alerts, are less than 10 > years old. And mostly on the high-end expensive cell phones and the most > expensive carriers. People on NANOG may use mostly expensive

Re: WIndows Updates Fail Via IPv6 - Update!

2019-03-05 Thread Rich Kulawiec
On Mon, Mar 04, 2019 at 08:04:12AM +1100, Mark Andrews wrote: > ICMP is NOT optional. I've pointed folks at this for years: ICMP Packet Filtering v1.2 http://www.cymru.com/Documents/icmp-messages.html ---rsk

Re: Announcing: "dumpsterfire", the mailing list for IoT security/privacy issues

2019-01-11 Thread Rich Kulawiec
On Thu, Jan 10, 2019 at 10:57:02AM -0600, J. Hellenthal via NANOG wrote: > Unfortunately I don???t see this as having very much connectivity where I am > at. It's not the best-connected or most powerful server, however it's been running a bunch of public/private mailing lists for many years and

Re: Announcing: "dumpsterfire", the mailing list for IoT security/privacy issues

2019-01-11 Thread Rich Kulawiec
On Fri, Jan 11, 2019 at 08:23:31AM -0800, Yang Yu wrote: > * no HTTPS HTTPS isn't needed for this application. I'll probably add it anyway when I have a chance, but there are other things ahead of it. > * archive is returning HTTP 403 That is exactly what you should expect to see when a

  1   2   3   4   5   >