Mailing List Archive by Gossamer Threads http://www.gossamer-threads.com/lists/nanog/users/ en-us (c) Gossamer Threads Inc. All rights reserved. 17 May 2008 06:06:34 -0800 120 75 23 http://www.gossamer-threads.com/lists/nanog/users/ http://www.gossamer-threads.com/images/lists/rss_logo.jpg On Sat, 17 May 2008, Suresh Ramasubramanian wrote: > On Sat, May 17, 2008 at 12:47 PM, Matthew Moyle-Croft > <mmc@internode.com.au> wrote: >> If the w 17 May 2008 04:10:23 -0800 http://www.gossamer-threads.com/lists/nanog/users/105225 On Sat, May 17, 2008 at 11:12 AM, Suresh Ramasubramanian <ops.lists@gmail.com> wrote: > On Sat, May 17, 2008 at 12:47 PM, Matthew Moyle-Croft > <mmc@i 17 May 2008 04:08:30 -0800 http://www.gossamer-threads.com/lists/nanog/users/105224 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Suresh Ramasubramanian wrote: > On Sat, May 17, 2008 at 12:47 PM, Matthew Moyle-Croft > <mmc@internode. 17 May 2008 03:23:45 -0800 http://www.gossamer-threads.com/lists/nanog/users/105223 On Sat, May 17, 2008 at 12:47 PM, Matthew Moyle-Croft <mmc@internode.com.au> wrote: > If the way of running this isn't out in the wild and it's actual 17 May 2008 03:12:02 -0800 http://www.gossamer-threads.com/lists/nanog/users/105222 On Sat, 17 May 2008, Paul Wall wrote: > What if some good comes from this "root kit"? > > For instance, what if it lets us fix things like DOM on non- 17 May 2008 02:38:11 -0800 http://www.gossamer-threads.com/lists/nanog/users/105221 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 You certainly don't have to. However, as other folks have indicated here, that is the way that some 17 May 2008 02:31:31 -0800 http://www.gossamer-threads.com/lists/nanog/users/105220 On 17/05/2008, at 5:53 PM, Matthew Moyle-Croft wrote: > Nathan Ward wrote: >> If the foreign AS really wants to send you routes that way, they >> ca 17 May 2008 01:13:12 -0800 http://www.gossamer-threads.com/lists/nanog/users/105219 Simon Lockhart wrote: > > How long before we need to install Anti-virus / Anti-root-kit software on > our routers? > Nah - we'll just replace them 17 May 2008 00:50:51 -0800 http://www.gossamer-threads.com/lists/nanog/users/105218 On Sat May 17, 2008 at 04:47:02PM +0930, Matthew Moyle-Croft wrote: > Paul Wall wrote: > > What if some good comes from this "root kit"? > > > I'm 17 May 2008 00:34:52 -0800 http://www.gossamer-threads.com/lists/nanog/users/105217 Paul Wall wrote: > What if some good comes from this "root kit"? > I'm sure it'll be good for a number of security providers to hawk their wares. 17 May 2008 00:17:02 -0800 http://www.gossamer-threads.com/lists/nanog/users/105216 What if some good comes from this "root kit"? For instance, what if it lets us fix things like DOM on non-Cisco XENPAKs and SFPs? Or lets us un-crip 16 May 2008 23:57:08 -0800 http://www.gossamer-threads.com/lists/nanog/users/105215 Nathan Ward wrote: > If the foreign AS really wants to send you routes that way, they can > do it regardless of how you stop your advertisements bei 16 May 2008 22:53:02 -0800 http://www.gossamer-threads.com/lists/nanog/users/105214 On 17/05/2008, at 5:30 PM, Matthew Moyle-Croft wrote: >> If you really need to, you can get a similar effect by using >> ASPATH poisoning; just pre 16 May 2008 22:36:20 -0800 http://www.gossamer-threads.com/lists/nanog/users/105213 > If you really need to, you can get a similar effect by using ASPATH > poisoning; just prepend your AS paths with the ASes you don't want > those 16 May 2008 22:30:16 -0800 http://www.gossamer-threads.com/lists/nanog/users/105212 On 17/05/2008, at 5:05 PM, Matthew Moyle-Croft wrote: > Some MLPAs give you some control over routing (eg. don't send my > prefixes to ASxxxx), but a 16 May 2008 22:18:29 -0800 http://www.gossamer-threads.com/lists/nanog/users/105211 Kai Chen wrote: > >> There is the model where all partcipants peer through agency of 3rd party. >> That tends to be looked on as an extremely bad idea 16 May 2008 22:05:17 -0800 http://www.gossamer-threads.com/lists/nanog/users/105210 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -- Dragos Ruiu <dr@kyx.net> wrote: >The question this presentation begs for me... is how many of the 16 May 2008 21:00:00 -0800 http://www.gossamer-threads.com/lists/nanog/users/105208 IIRC, the toolkit(s) can only be installed once having priv 15 on the device. If this is the case, the practicality of this is...well...not that si 16 May 2008 20:57:34 -0800 http://www.gossamer-threads.com/lists/nanog/users/105209 The question this presentation begs for me... is how many of the folks on this list do integrity checking on their routers? You can no longer say t 16 May 2008 20:29:07 -0800 http://www.gossamer-threads.com/lists/nanog/users/105207 On 17/05/2008, at 3:52 AM, Kai Chen wrote: > Sure, two ASs may peer with each other at multiple locations, I do > want to > know in each of these pe 16 May 2008 20:07:20 -0800 http://www.gossamer-threads.com/lists/nanog/users/105206 On Fri, 16 May 2008, Paul Wall wrote: > Gadi, > > Please try to keep the self-promotion to a minimum, and come back when > you have meaningful data to 16 May 2008 18:19:20 -0800 http://www.gossamer-threads.com/lists/nanog/users/105205 Gadi, Please try to keep the self-promotion to a minimum, and come back when you have meaningful data to share with operators. Examples would includ 16 May 2008 18:13:46 -0800 http://www.gossamer-threads.com/lists/nanog/users/105204 Hi, On Sat, 17 May 2008 10:20:06 +0930 Mark Smith <nanog@85d5b20a518b8f6864949bd940457dc124746ddc.nosense.org> wrote: > On Wed, 07 May 2008 12:24:57 16 May 2008 18:12:05 -0800 http://www.gossamer-threads.com/lists/nanog/users/105203 At the upcoming EusecWest Sebastian Muniz will apparently unveil an IOS rootkit. skip below for the news item itself. We've had discussions on this 16 May 2008 18:06:29 -0800 http://www.gossamer-threads.com/lists/nanog/users/105202 Hello all, I have some equipment going into a Telco Co which only offers battery backup on it's DC power plant. Most of the equipment that is 16 May 2008 18:02:39 -0800 http://www.gossamer-threads.com/lists/nanog/users/105201