Re: RFC 1918 network range choices

On Thu, Oct 05, 2017 at 03:04:42PM -0400, valdis.kletni...@vt.edu wrote: > Can't speak t the ASICs, but CIDR existed, even if your vendor was behind the > times and still calling stuff class A/B/C. (Such nonsense persisted well into > this century). Check the dates... The concept of using a

Re: Incoming SMTP in the year 2017 and absence of DKIM

As I see it, the problem isn't with DKIM, it's with the implementation of DMARC and other such filters. Almost all of them TEST THE WRONG FROM ADDRESS. They compare the Author's address (the header From: line) instead of the Sender's address, (the SMTP Mail From: transaction or Sender: header

Re: Suggestions for a more privacy conscious email provider

On Wed, Dec 06, 2017 at 04:26:00PM -0500, Rich Kulawiec wrote: > On Wed, Dec 06, 2017 at 12:29:30PM -0500, Gordon Ewasiuk via NANOG wrote: > > and an online form where you can report EC2 abusers: > > https://aws.amazon.com/forms/report-abuse > > 1. Used it (and the abuse@ address). Either (a) no

Re: Whois vs GDPR, latest news

An article in The Register on the current status of Whois and the GDPR. https://www.theregister.co.uk/2018/05/16/whois_privacy_shambles/

Re: Email security: PGP/GPG & S/MIME vulnerability drop imminent

On Tue, May 15, 2018 at 05:34:31AM -0400, Rich Kulawiec wrote: > On Mon, May 14, 2018 at 01:47:50PM +0530, Suresh Ramasubramanian wrote: > > TL;DR = Don't use HTML email [snip] > > That's enough right there. HTML markup in email is used exclusively > by three kinds of people: (1) ignorant

Whois vs GDPR, latest news

A draft of the new ICANN Whois policy was published a few days ago. https://www.icann.org/en/system/files/files/proposed-gtld-registration-data-temp-specs-14may18-en.pdf >From that document: "This Temporary Specification for gTLD Registration Data (Temporary Specification) establishes temporary

Re: What are people using for IPAM these days?

On Tue, Jun 12, 2018 at 06:29:12PM -0500, Bryan Holloway wrote: > On 6/12/18 1:52 PM, Chris Adams wrote: > > Once upon a time, Randy Bush said: > >>> If you start with Excel, down Will It Scale Road, you will be sorry, > >>> so very sorry. Especially when it comes to v6. > >> > >> emacs! > > >

Re: What are people using for IPAM these days?

On Wed, Jun 13, 2018 at 11:25:47AM -0700, Randy Bush wrote: > emacs! > >>> vim! > >> ed! > > TECO! > cat > >>> IBM 029. > >> Youngster. IBM 026. > > Infants! Hollerith (IBM Type 1). I still own it. > > but i actually do use emacs For IP address management, I use a

NTIA: Should the IANA Stewardship Transition be "unwound?"

The US NTIA (National Telecommunications and Information Administration) has published an inquiry as to whether its transfer of stewardship of IANA to ICANN in 2016 should be "unwound." They are requesting comments from interested parties to be sent to them by early July. Quoting _The Register_:

Re: Looking for a contact with clue at Choopa/Reliablesite network engineering

The most recent contact I have had with Vultr (parent of Choopa) is Richard Simpliciano , who a week ago signed his note as "network administrator". He was checking with me as to whether a customer of theirs was authorized to have Vultr announce one of our prefixes, so he

Re: 48vDC Output UPS

On Fri, Dec 29, 2017 at 04:58:02PM -0800, Lewis,Mitchell T. wrote: > Greetings again, > I have been looking for a Rack Mount UPS that accepts AC power input but has > 48vdc output(telco voltage). Anyone have any recommendations? > Regards, > Mitchell T. Lewis > [ mailto:mle...@techcompute.net

Re: Waste will kill ipv6 too

On Sat, Dec 30, 2017 at 02:46:49AM +, Gary Buhrmaster wrote: > (the time has finally arrived) > Obligatory xkcd ref: https://xkcd.com/865/ Just how many nanobots can dance on the head of a pin? - Brian

Re: Blockchain and Networking

It seems to me that at the current moment in the evolution of bitcoin, the only way to make money from it is to sell the equipment to mine coins, as the chances of ever making any money from mining coins yourself are vanishingly small. And then only if you get your electricity and cooling for

Re: California fires: smart speakers and emergency alerts

I can see my way clear to supporting this bill ONLY if it ALSO proposes to enhance the liabilities for officials of agencies who issue a false or disproportionate alert. - Brian On Thu, Jul 26, 2018 at 12:11:36PM -0400, Sean Donelan wrote: > Also shouldn't be a surprise. Senator Schatz

Re: unwise filtering policy on abuse mailboxes

On Tue, Jul 24, 2018 at 04:19:22PM -0700, Dan Hollis wrote: > can we please just stop this nonsense? > > ip under your direct control originates sewage. you should accept reports > as-is. > > requiring victims of your sewage to go through special contortions to > report it to you is not

Re: (perhaps off topic, but) Microwave Towers

> > I find myself driving down Route 66. On our way through Arizona, I was > > surprised by what look like a lot of old-style microwave links. They > > pretty much follow the East-West rail line - where I'd expect there's a lot > > of fiber buried. Could they be a legacy of the Southern

FSEC.OR.KR

Does anyone have a working contact email address for i...@fsec.or.kr? >From time to time we receive a security complaint from them, usually involving an IP address on our network that we know is not in use. They claim to represent the Financial Security Institute(FSI) of Korea, and usually say

Re: Yet another Quadruple DNS?

On Tue, Apr 03, 2018 at 12:09:27PM +0200, Stephane Bortzmeyer wrote: > On Tue, Apr 03, 2018 at 03:01:19AM -0700, > Brian Kantor <br...@ampr.org> wrote > a message of 12 lines which said: > > > > That would be a terrible violation of network neutrality. I hope

Re: Yet another Quadruple DNS?

On Tue, Apr 03, 2018 at 11:54:36AM +0200, Stephane Bortzmeyer wrote: > On Sun, Apr 01, 2018 at 02:03:41PM -0600, > Paul Ebersman wrote > > As long as ISPs don't actually disallow running of recursive servers > > That would be a terrible violation of network neutrality.

Re: Are any of you starting to get AI robocalls?

On Thu, Apr 05, 2018 at 10:20:29AM -0400, William Herrin wrote: > For example, Vonage implementing Simultaneous Ring, you want to see > the original caller id on your cell phone, not your vonage number even > though Vonage is bridging the call to your cell phone. > > More, the PBX may have trunks

Is WHOIS going to go away?

There is concern that the WHOIS database service will be in violation of the new European GDPR which takes effect May 25th, and may have to shut down. http://www.theregister.co.uk/2018/04/14/whois_icann_gdpr_europe/

Re: Is WHOIS going to go away?

Steve, I believe you are mistaken as to current law in the USA: The Supreme Court has ruled repeatedly that the right to anonymous free speech is protected by the First Amendment. A frequently cited 1995 Supreme Court ruling in McIntyre v. Ohio Elections Commission reads: Anonymity is a shield

Re: Is WHOIS going to go away?

Steve, I think you should re-examine the early history of the USA. Anonymous pamphleteering was the origin of our rebellion against England, with Benjamin Franklin and many of the other founding fathers publishing without their identities being registered anywhere. The Federalist Papers which

Re: Yet another Quadruple DNS?

On Mon, Apr 02, 2018 at 09:07:07AM +, Baldur Norddahl wrote: > The problem I see here is the five year research term after which they may > or may not revoke the use of the prefix. > > This is harmful. Such services should be stable. If you are going to let > cloudflare run this service, it

Re: Yet another Quadruple DNS?

On Thu, Mar 29, 2018 at 09:38:09AM -0400, Izaac wrote: > No, the real question is: why do you find it desirable to centralize a > distributed service? I believe that centralized DNS resolvers such as 8.8.8.8 are of benefit to those folks who can't run their own recursive resolver because of OS,

Re: Yet another Quadruple DNS?

On Thu, Mar 29, 2018 at 09:08:38AM -0500, Chris Adams wrote: > I've never really understood this - if you don't trust your ISP's DNS, > why would you trust them not to transparently intercept any well-known > third-party DNS? Of course they could. But it's testable; experiments show that they

Re: any contact at mycheckfree.com

As is often the case, the Lynx text-only browser will connect successfully when other browsers won't, and did enable me to navigate to the 'contact us' page. "For inquiries, please contact us at 800-564-9184. Support hours are from 8:00 A.M. to 9:00 P.M., ET, Monday through Friday, and from

Contact info for AS1880 - STUPI.SE (Svensk Teleutveckling & Produktinnovation)

Does anyone have contact info for the peering folks at AS1880, Svensk Teleutveckling & Produktinnovation in Sweden? They appear to be advertising a subnet of our network space without permission. Their WHOIS entry at RIPE does not list any contact email addresses. Any information would be

Re: Contact info for AS1880 - STUPI.SE (Svensk Teleutveckling & Produktinnovation)

Thank you all for your help. The matter has been satisfactorily resolved. - Brian On Sun, Mar 04, 2018 at 07:20:13PM -0800, Brian Kantor wrote: > Does anyone have contact info for the peering folks at > AS1880, Svensk Teleutveckling & Produktinnovation in Sweden? >

Re: Re: New Active Exploit: memcached on port 11211 UDP & TCP being exploited for reflection attacks

It seems to me that since peer pressure hasn't worked, it's time to resort to legal means. Have a talk with your own organization's lawyers, explain to them how much time and money those folks are costing your organization, and see if there isn't something you can do in the way of billing for the

Re: Oct. 3, 2018 EAS Presidential Alert test

On Oct 7, 2018, at 12:23 PM, b...@theworld.com wrote: > That was one advantage of the old air raid siren system, it was > difficult to ignore and required nothing special to receive (hearing > impaired excepted.) _Wired_ has an interesting history of the various networked and standalone national

Re: It's been 20 years today (Oct 16, UTC). Hard to believe.

How soon we forget! It was a telephone call to Jon (there was no email) in 1981 that got my group the network that I still manage. He was the editor for the three RFCs that have my name on them. I remember him as a brilliant, kindly, efficient, helpful, and dedicated giant of the early

Re: It's been 20 years today (Oct 16, UTC). Hard to believe.

On Tue, Oct 16, 2018 at 02:01:48PM -0400, Daniel Corbe wrote: > The one thing I remember about Postel, other than the fact that he had his > fingers in a lot of DNS pies, is be liberal about what you accept, be > conservative about what you send. It’s a notion that creates undo burden > on

Re: Oct. 3, 2018 EAS Presidential Alert test

Alert was received on two Tracfone (Verizon?) Android in San Diego. A few minutes later, cable (Spectrum/TimeWarner) music service was interrupted by the alert tones, then a voice announcement began but cut off mid-word and the music resumed less than 5 seconds into the announcement. No

Re: NANOG Security Track: Route Security

> To ensure unimpeded information sharing and discussion, the > Security Track will not be broadcast or recorded. I fail to understand how making the presentations secret from all except those attending in person promotes information sharing. Could whoever made this seemingly contradictory

Re: bloomberg on supermicro: sky is falling

On Wed, Oct 10, 2018 at 02:21:40PM +, Naslund, Steve wrote: > For example, with tokenization there is no reason at all for any > retailer to be storing your credit card data (card number, CVV, exp > date) at all (let alone unencrypted) but it keeps happening over > and over. It's been a while

Re: bloomberg on supermicro: sky is falling

I understand that in some countries the common practice is that the waiter or clerk brings the card terminal to you or you go to it at the cashier's desk, and you insert or swipe it, so the card never leaves your hand. And you have to enter the PIN as well. This seems notably more secure against

Re: Oct. 3, 2018 EAS Presidential Alert test

Many of those lightweight UPS units have a very small battery in them and are really designed to 1) carry the computer across a power flicker, or 2) provide a few minutes to shut down the computer in a controlled manner. Units with much bigger batteries to last a day are much more expensive and

Re: Top Posting Was: Re: plaintext email?

> > Why must there be a hard rule about top posting? It is my belief that whether to 'top post' or 'bottom post' may largely depend on the characteristics of the medium. In USENET, bottom posting was preferred because messages often arrived out of order, and occasionally did not arrive at all,

Re: plaintext email?

On Tue, Jan 15, 2019 at 02:23:48PM -0500, valdis.kletni...@vt.edu wrote: > Without reading further... which of your recent postings is this a reply to? > Obviously you already know, because you said you don't need to see the > text to know the context... Gentlemen, this is getting petty. Perhaps

Re: plaintext email?

On Mon, Jan 14, 2019 at 12:12:34PM -0500, Christopher Morrow wrote: > Isn't the underlying assumption with non-plaintext that: "I know what will > work better for you than you do" I suspect that the increasing use of very long lines in the expectation that the recipient's mail client will wrap

Re: How to choose a transit provider?

On Fri, Dec 14, 2018 at 04:07:08PM +, David Guo via NANOG wrote: > First of all, sign NDA if possible, then ask the following questions: Why in heaven's name would you *want* to sign an NDA? Aren't you better off without one? - Brian

Re: How to choose a transit provider?

On Fri, Dec 14, 2018 at 03:26:56PM -0200, Mehmet Akcin wrote: > Probably you also have never got the best possible pricing ;-) Ugh. Requiring an NDA to get best pricing is a business practice that makes me feel I need to wash my hands after dealing with them. - Brian

Re: Proofpoint Mail Delivery Issues

On Thu, Jan 10, 2019 at 10:01:07AM -0600, Mike Hammett wrote: > There is a mailing list dedicated to email system operators. > - > Mike Hammett > Intelligent Computing Solutions > Midwest Internet Exchange > The Brothers WISP Would you have subscription information for that mailing

Re: Announcing: "dumpsterfire", the mailing list for IoT security/privacy issues

On Fri, Jan 11, 2019 at 10:30:57AM -0600, Mike Hammett wrote: > No HTTPS?!?! Where are the tar and feathers??!?!! > > This isn't something that needs HTTPS. > - > Mike Hammett > Intelligent Computing Solutions True, but our browser overlords would condemn it because they seem to believe

Re: (Netflix/GlobalConnect a/s) Scheduled Open Connect Appliance upgrade is starting

On Sun, Jan 13, 2019 at 07:02:43PM -0800, James Downs wrote: > Now if only we could get everyone to stop top-posting. The only way you'll get people to stop top-posting is to get them to stop including every d*mn message in the thread in every posting. With all that cr*p in there, any response

Re: (Netflix/GlobalConnect a/s) Scheduled Open Connect Appliance upgrade is starting

On Sun, Jan 13, 2019 at 11:24:56PM -0500, valdis.kletni...@vt.edu wrote: > The September That Never Ended was so long ago that pretty much > everybody from before that event is now well into "get off my lawn" > territory. Yes, I'm afraid we are. But I think it's more "get off my net".

Re: yet another round of SMTP Over TLS on Port 26 - Implicit TLS Proposal [Feedback Request]

>From this point forward, all mail containing the phrase "TLS on port 26" in the Subject line will be shunted into my junk mail box, unread, because I do not wish to see any more correspondence on this matter. 'procmail' is my friend. - Brian On Sun, Jan 13, 2019 at 03:20:26AM +0530,

Re: plaintext email?

On Sun, Jan 13, 2019 at 01:50:58PM -0600, Mike Hammett wrote: > People use plain-text e-mail on purpose? Are you trying to start another flame war? But to answer your question, yes. - Brian

Re: Stupid Question maybe?

/24 is certainly cleaner than 255.255.255.0. I seem to remember it was Phil Karn who in the early 80's suggested that expressing subnet masks as the number of bits from the top end of the address word was efficient, since subnet masks were always a series of ones followd by zeros with no

DNS Flag Day, Friday, Feb 1st, 2019

Quoting from the web site at https://dnsflagday.net/ What is happening? The current DNS is unnecessarily slow and suffers from inability to deploy new features. To remediate these problems, vendors of DNS software and also big public DNS providers are going to remove certain

Re: BGP Experiment

On Thu, Jan 24, 2019 at 03:49:46PM -, adamv0...@netconsultings.com wrote: > This actually makes me thing that it might be worthwhile including these > types of test to the regression testing suite. > So that every time we evaluate new code or vendor we don't only test for > functionality,

Re: BGP Experiment

On Sun, Jan 27, 2019 at 01:21:56PM -0500, William Allen Simpson wrote: > On 1/26/19 6:37 PM, Randy Bush wrote: > > to nick's point. as nick knows, i am a naggumite; one of my few > > disagreements with dr postel. but there is a difference between > > writing protocol specs/code, and with sending

Re: Power cut if temps are too high

. - Brian On Mon, May 27, 2019 at 06:10:49PM -0400, Brandon Ross wrote: > On Mon, 27 May 2019, Brian Kantor wrote: > > > A simple air conditioner thermostat wired to the EPO switch. > > For safety, wire two thermostats in series so BOTH have to trip > > before power is shut off. &

Re: Power cut if temps are too high

A simple air conditioner thermostat wired to the EPO switch. For safety, wire two thermostats in series so BOTH have to trip before power is shut off. Note that the EPO rarely does an orderly shutdown, but then this is a sort of an emergency. - Brian On Mon, May 27, 2019 at 02:00:39PM

Re: Spamming of NANOG list members

Anne, the way that such addresses are often harvested is that one of the spammers (or his agent) becomes a member of the list and simply records the addresses of persons posting to the list. They then get spammed. - Brian On Fri, May 24, 2019 at 09:07:28AM -0600, Anne P. Mitchell, Esq.

Re: Spamming of NANOG list members

An interesting development: my posting to this list a few minutes ago seems to have triggered an autoresponder asking me to confirm the issuance of a support ticket by Liquid Web, whoever they are. - Brian > > On Fri, May 24, 2019 at 08:17:31AM -0700, Brian Kantor wrote: >

Re: NTP for ASBRs?

On Wed, May 08, 2019 at 07:47:56PM -0500, Bryan Holloway wrote: > 100% true. But there is also a practical side to this ... > > When a NOC-ling, in their own local timezone, says, "hey, what happened > two hours ago?", they have to make a calculation. And that calculation > annoyingly depends

Re: 44.192.0.0/10 sale

Because questions have arisen here that are well answered by a short series of postings from the 44net mailing list, at the request of the author [Phil Karn] and others, I am reposting them here. - Brian From: Phil Karn Subject: [44net] 44.192.0.0/10 sale Hello all, I've not been

Re: Bgpmon alternatives?

On Sun, Jun 16, 2019 at 02:25:40AM -0700, Mike Leber wrote: > As a beta service you can try out rt-bgp.he.net. This is a real time > bgp monitoring service we are developing. It's interesting, but I don't see any way to do what I primarily use the existing BGPMon for: watch for hijacks. That

Re: Bgpmon alternatives?

main reasons for creating this service. > > Mike. > > On 6/16/19 2:48 AM, Brian Kantor wrote: > > On Sun, Jun 16, 2019 at 02:25:40AM -0700, Mike Leber wrote: > >> As a beta service you can try out rt-bgp.he.net. This is a real time > >> bgp monitoring service we a