swinog June 2006

swinog@lists.swinog.ch

19 participants
16 discussions

by Michel Renfer

Hi All! Finecom Telecommunications has a new job position in the network engineering team. We will bring: - Workplace in Biel (Directly at the central railway station) - Job inside a small team - etc :-) You should bring: - Good cisco know-how and operational experience - Familar with technologies like IP, OSPF, BGP4, MPLS, DOCSIS - Language: German / English / French For more informations or further questions please contact me offlist (michel.renfer(a)finecom.ch). cheers, mike

16 years, 7 months

RE: [swinog] Reading list as RSS feed

by Glogger Steven

well, i think RSS is quite a standard and there are possibilities to provide the swinog mailinglist also as RSS feed.. but anyway, a forum/blog is the wrong way... mail should be still the way of communication for swinog members ,-) -steven > -----Original Message----- > From: swinog-bounces(a)lists.swinog.ch > [mailto:swinog-bounces@lists.swinog.ch] On Behalf Of Xaver Aerni > Sent: Wednesday, May 31, 2006 11:23 AM > To: swinog(a)swinog.ch > Subject: Re: [swinog] Reading list as RSS feed > > think to install an RSS Client is in different offices is a > Problem. If we make a change is a Forum (or new called Blogg) > the beter idea. But you must check what is in the future the > best way. I think some people uesing Handshields or Mobiles > for reading the list... > I don't konw if in future are RSS Reader avable for this products. > > Greetings > Xaver > ----- Original Message ----- > From: "Tonnerre LOMBARD" <tonnerre(a)bsdprojects.net> > To: "Glogger Steven" <S.Glogger(a)cybernet.ch> > Cc: <swinog(a)swinog.ch> > Sent: Wednesday, May 31, 2006 9:38 AM > Subject: Re: [swinog] Reading list as RSS feed > > > > _______________________________________________ > > swinog mailing list > > swinog(a)lists.swinog.ch > > http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog > > > > _______________________________________________ > swinog mailing list > swinog(a)lists.swinog.ch > http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog >

16 years, 8 months

gprs01.swisscom-mobile.ch whitelisting / dsbl

by Olivier Mueller

Hello, On some mail servers under my (co-)responsability, the DSBL blacklist is used on smtp-server level to try to fight a little bit against spam. Problem: some customers online via gprs are unable to send mails over these servers, because their external visible IP adress (gprs01.swisscom-mobile.ch: 193.247.250.1) is blacklisted on several lists: http://www.robtex.com/rbls/193.247.250.1.html http://dsbl.org/listing?193.247.250.1 We asked swisscom why they don't try to get away from these lists, but the answer is that we should rather whitelist them: "Die grösseren Schweizer Internet Service Anbieter haben sich vielmehr darauf geeinigt, die IP Nummern von Zugangsanbietern wie Swisscom Mobile auf ihre WhiteList zu nehmen."... Do you think it's the correct way to react? :) Delisting from dsbl.org wouldn't work anyway, at least until abuse or postmaster adresses are created: >Final-Recipient: rfc822;abuse(a)swisscom-mobile.ch >Action: failed >Final-Recipient: rfc822;postmaster(a)swisscom-mobile.ch >Action: failed General question: are you (the postmasters around) using blacklists like dsbl or spamhaus directely on smtp-level (directely rejecting the mails from listed IP's) or only after (like in spamassassin & co.) ? regards, Olivier -- _______________________________________________________ Olivier Müller - PGP key ID: 0x0E84D2EA - Switzerland

16 years, 8 months

Job: UNIX Administrator, Schlieren/ZH

by Stanislav Sinyagin

hi all, We're looking for an experienced UNIX Administrator/Support engineer. The tasks include to maintain internet and network applications on approximately 20 servers, install and maintain new servers, and to provide 2nd and 3d level support to our customers. The candidate should be able to show a good knowledge of general Unix administration. Experience with Solaris and Linux is welcome, but is not a requirement. Knowledge of network applications and protocols, such as email, web, dns, etc. is necessary. Perl and bourne shell scripting experience is desired. Knowledge of IP routing and switching basics is a plus too. The candidate will have to work autonomously, find the answers and solutions on his(her) own, be ready to work under pressure and under time constraints. The requirement is a Swiss or EU citizenship and fluent German and English. Fluent French is a plus. The office is located in Schlieren, in approximately 30 minutes from Zurich HB, or 5 minutes by bus from Zurich-Altstetten station. Please feel free to contact me, as given below. Regards, Stanislav Stanislav Sinyagin Senior System Engineer CCIE #5478 GPS Technik AG Zuercherstrasse 139 CH-8952 Schlieren Switzerland Tel : +41 (0)44 732 99 53 Fax : +41 (0)44 731 18 40 Mobile: +41 (0)79 407 02 24 mail : s.sinyagin(a)gpstechnik.ch www : http://www.gpstechnik.ch

16 years, 8 months

Contact

by Nicolas Strina

-----BEGIN PGP SIGNED MESSAGE----- Hash: RIPEMD160 Hello, Any Dataway people around ? Please contact me offlist. Regards, Nicolas -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (FreeBSD) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFEoPruhVupqbmzoscRA96+AKCs7mB5Q0UnCz6tjLWeGpHeYoL18ACfeDvo M+Oxbe3VibFu+DEbDM4oHNc= =x/RG -----END PGP SIGNATURE-----

16 years, 8 months

xorp

by Richard Klingler

ehlo (o; Anybody of you using xorp in a production environment? Any figures regarding stability and resource usage on fbsd/netbsd platforms? cheers rick

16 years, 8 months

RFD: Filtering/Blacklisting AS9145 (EWETEL) Cause: Providing internet access to known spamer

by Benoit Panizzon

Dear colleagues In february this year we detected a lot of spam, being sent from dial-up accounts in the responsibility of AS9145. Those spam emails are sent from the well known swiss spamer 'Martin Fürst' who won't get internet-access at almost all ISP in Switzerland and many more in UK Germany and China. I had quite a few phone calls with EWETEL techs and finaly with their law responsible (Mr. Heder.) As I understood their policy does not allow them to block internet-access to the customer sending those spam mails. (Nor to reveal his identity which I never asked for... he is too well known). Today more spam-mails with typical 'Martin Fürst' signatures arrived to various spam-traps and customer addresses. Unfortunately right now I was not able to catch Mr. Heder, and on the support number they again didn't want to put me through to the abuse-desk responsible or to the management, ceo or cto of EWETEL. So I think time has come the ISP running mailservers affected by those spam-floods from EWETEL have to put up a bit more pressure. We are considering filtering AS9145 on our routers and to list the IP-ranges of AS9145 on the SWINOG Antispam Blacklists; if we still don't get the reply from EWETEL that this customer is definitively banned from their network within a few days. What are your opinions? Would other ISP join? Mit freundlichen Grüssen Benoit Panizzon -- I m p r o W a r e A G - System Services ______________________________________________________ Zurlindenstrasse 29 Tel +41 61 826 93 00 CH-4133 Pratteln Fax +41 61 826 93 01 Schweiz Web http://www.imp.ch ______________________________________________________

16 years, 8 months

RE: [swinog] RFD: Filtering/Blacklisting AS9145 (EWETEL) Cause:Providing internet access to known spamer

by Glogger Steven

hoi benoit well, i personally dont see a difference between fürst and any other korean, US or spanish spammer. so why should i block any other ISP's AS/traffic? the collateral damage might be too big and does not justify the filtering. anyway, i dont like spammer and i don't like fürst at all. i cannot understand the reasons of EWETEL to not react on it, because it's a normal abuse case where they risk to get on blacklists which can cause them more damage.. but anyway, thats their risk.... if you think to put the whole AS9145 to the swinog antispam list we might consider to not use anymore the list, because we're having then a sorbs-a-like effect which i dont like ... but i'm not the decision maker in our company, so this remains a personal view ;-) -steven

16 years, 9 months

Reset DSCP/IP-PREC field

by Marcel Leuenberger

HiYa! Just want to ask you if it is "allowed" to reset the IP-PRECEDENCE/DSCP-Field to Zero (or any other value) at the border of an ISP network? Means there is no problem if an IP-Transit provider reset the customers IP-PREC/DSCP field because INTERNET is best effort and therefore each ISP can do with the IP-PREC/DSCP whatever he want's because each ISP has it's own "QoS-Domain and rules"? For me resetting the IP-PREC/DSCP is a must concerning security and to declare Internet-Traffic as BE in internal networks. Or I am wrong and are there any existing rules in the "ISP" community relating modifying IP-PREC/DSCP? Are you resetting the IP-PREC/DSCP as well? Thanks and greetings, - Marcel

16 years, 9 months

Server space

by Richard Klingler

Good morning (o; As I decided to leave 4589 to give my family a higher priority as some might already know I'm looking for a small 1HU space for my tiny little server for my Linux/OSX/SIP and openrouter development stuff...average traffic well below 50kbits/sec... preferrably Zurich area... cheers rick ps: net-engineers can of course apply at 4589.ch.... but I'm not gonna comment on that or give any further information (o;

16 years, 9 months

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

swinog June 2006