Hi everyone,
In the last couple of days, NLNOG RING admins and the NLNOG board have
received a number of questions about the new Hurricane Electric
supertraceroute tool (hosted on bgp.he.net) using NLNOG RING nodes as a
datasource.
To our disappointment, Hurricane Electric has not asked permission for
or even announced the use of the NLNOG RING for this purpose before
releasing the tool.
A number of RING node owners have indicated that they're not happy with
their node being publicly accessible for this purpose, on a website
hosted by a third party. This conflicts with the philosophy that the
RING is built on mutual trust and managed as a community.
As NLNOG Board, we understand these concerns and have requested
Hurricane Electric to stop using NLNOG RING nodes this way. In addition,
the SSH keys identified as used for this purpose will be disabled by
NLNOG RING admins.
In general, NLNOG encourages people to use the NLNOG RING to provide
services for the good of the internet and especially RING owners. The
way this was done by Hurricane Electric violated the trust on which the
RING is built and the community spirit. We will try to see if there's a
way we can make an arrangement with Hurricane Electric to enable use of
RING nodes in a way that meets expectations of RING node owners, for
example by using an opt-in model.
Please don't hesistate to contact the board or the RING admin team if
you have any questions on this subject.
On behalf of the NLNOG Board,
Teun Vink
Good Morning NLNOG!
DENOG15 (19.-21.11.2023) in Berlin will be held in the Estrel Congress Center (Sonnenallee 225, 12057 Berlin). Like every year, we are happy to invite all our neighboring friends and colleagues from the NLNOG region! The agenda is fixed now, and we already opened workshop registrations.
Since there is limited space for all workshops, please register now to have a spot!
https://www.denog.de/de/meetings/denog15/workshop_registration.html
Ticket sales end on October 28th. If you haven't ordered your ticket until now, please do so at:
https://www.denog.de/de/meetings/denog15/tickets.html
We are excited about DENOG15 in November and look forward to seeing you all again.
For the Event Orga,
Stefan
In response to feedback from operational security communities,
CAIDA's source address validation measurement project
(https://spoofer.caida.org) is automatically generating monthly
reports of ASes originating prefixes in BGP for systems from which
we received packets with a spoofed source address.
We are publishing these reports to network and security operations
lists in order to ensure this information reaches operational
contacts in these ASes.
This report summarises tests conducted within nld.
Inferred improvements during Sep 2023:
ASN Name Fixed-By
212370 2023-09-15
Further information for the inferred remediation is available at:
https://spoofer.caida.org/remedy.php
Source Address Validation issues inferred during Sep 2023:
ASN Name First-Spoofed Last-Spoofed
20847 PREVIDER 2018-04-17 2023-09-28
213268 2020-12-07 2023-09-24
207176 OPENFIBER 2022-09-30 2023-09-27
12414 NL-SOLCON 2023-05-22 2023-09-04
28685 ASN-ROUTIT 2023-08-23 2023-09-28
61254 ITSUPPORT 2023-09-14 2023-09-29
64404 EVENTINFRA 2023-09-26 2023-09-26
Further information for these tests where we received spoofed
packets is available at:
https://spoofer.caida.org/recent_tests.php?country_include=nld&no_block=1
Please send any feedback or suggestions to spoofer-info(a)caida.org
