nanog mailing list archives
Re: IPv4 ANYCAST setup
From: Randy Bush <randy () psg com>
Date: Tue, 30 Mar 2010 17:43:25 +0900
I have talked to multiple security officers (who are generally not really knowledgeable on networks) who had 53/tcp blocked and none have yet agreed to change it.patience. when things really start to break, and the finger of fate points at them, clue may arise.36 days until all root servers have DNSSEC data, at which point large replies become normal.
are end user tools, i.e. a web click a button, available so they can test if they are behind a clueless security id10t? is there good simple end user docco they are somewhat likely to find when things break for them? i.e. what can we do to maximize the odds that the victim will quickly find the perp, as opposed to calling our our tech support lines? randy
Current thread:
- Re: IPv4 ANYCAST setup, (continued)
- Re: IPv4 ANYCAST setup Valdis . Kletnieks (Mar 26)
- Re: IPv4 ANYCAST setup Mark Andrews (Mar 26)
- Re: IPv4 ANYCAST setup Jeroen Massar (Mar 26)
- Re: IPv4 ANYCAST setup Owen DeLong (Mar 26)
- Re: IPv4 ANYCAST setup Joe Abley (Mar 26)
- Re: IPv4 ANYCAST setup Owen DeLong (Mar 26)
- Re: IPv4 ANYCAST setup Joe Abley (Mar 26)
- Re: IPv4 ANYCAST setup Kevin Oberman (Mar 29)
- Re: IPv4 ANYCAST setup Randy Bush (Mar 29)
- Re: IPv4 ANYCAST setup Tony Finch (Mar 30)
- Re: IPv4 ANYCAST setup Randy Bush (Mar 30)
- DNSSEC deployment testing and awareness (Was: Re: IPv4 ANYCAST setup) Phil Regnauld (Mar 30)
- Re: DNSSEC deployment testing and awareness (Was: Re: IPv4 ANYCAST setup) Robert Kisteleki (Mar 30)
- Re: DNSSEC deployment testing and awareness (Was: Re: IPv4 ANYCAST setup) Phil Regnauld (Mar 30)
- Re: DNSSEC deployment testing and awareness Florian Weimer (Mar 30)
- Re: IPv4 ANYCAST setup bmanning (Mar 30)
- Re: IPv4 ANYCAST setup Valdis . Kletnieks (Mar 30)
- Re: IPv4 ANYCAST setup Phil Regnauld (Mar 30)
- Re: IPv4 ANYCAST setup Jens Link (Mar 30)
- Re: IPv4 ANYCAST setup Tony Finch (Mar 30)
- Re: IPv4 ANYCAST setup Joe Greco (Mar 30)