[179375] in North American Network Operators' Group
RE: Cisco/Level3 takedown
daemon@ATHENA.MIT.EDU (Steve Mikulasik)
Thu Apr 9 16:07:45 2015
X-Original-To: nanog@nanog.org
From: Steve Mikulasik <Steve.Mikulasik@civeo.com>
To: Sameer Khosla <skhosla@neutraldata.com>, "nanog@nanog.org"
<nanog@nanog.org>
Date: Thu, 9 Apr 2015 16:06:17 +0000
In-Reply-To: <49A81EB09F493442B6D259E36251192C0171991E52@ndcc-exch1.neutraldata.com>
Errors-To: nanog-bounces@nanog.org
Seems like it this is pretty ineffective. The group already moved subnets o=
nce, they will likely do this again, all Cisco/L3 have done is slow them do=
wn a bit.=20
Stephen Mikulasik
-----Original Message-----
From: NANOG [mailto:nanog-bounces@nanog.org] On Behalf Of Sameer Khosla
Sent: Thursday, April 09, 2015 9:31 AM
To: nanog@nanog.org
Subject: Cisco/Level3 takedown
Was just reading http://blogs.cisco.com/security/talos/sshpsychos then chec=
king my routing tables.
Looks like the two /23's they mention are now being advertised as /24's, an=
d I'm also not sure why cisco published the ssh attack dictionary.
It seems to me that this is something that if they want to do, they should =
be working with entire service provider community, not just one provider.
Thanks
Sameer Khosla
Managing Director
Neutral Data Centers Corp.
Twitter: @skhoslaTO
