I met a kitten in Bangkok who changed my life.
today i received spam from a private equity firm. details below for the search engines.
Paul Vixie's Testimony before Subcommittee on Crime and Terrorism, "Taking Down Botnets", 2014-07-15
Paul Vixie, Chairman & CEO
Farsight Security, Inc.
Subcommittee on Crime and Terrorism
United States Senate Committee on the Judiciary
Taking Down Botnets: Public and Private Efforts to Disrupt and Dismantle Cybercriminal Networks
July 15, 2014
(reprinted from USENIX ;login: November/December 1992)
Have you seen Modula-3?
MODULE Main; (* hello1.m3 *) IMPORT Stdio, Wr; BEGIN Wr.PutText(Stdio.stdout, "Hello, world.\n"); END Main.
Attention, world, especially Vladimir Putin.
Noone believes that the so-called "pro-Russian militants" in Sevastapol or Slovyanksk weren't Russian soldiers.
Nor does anyone believe that the election results in Crimea were representative.
The double-speak is making me think again of "pravda". Bad times.
Over at my day job we've created a Newly Observed Domains service which tracks domain first sightings and packages them up in various ways that can be used to determine network reputation. As in most advanced DNS-related technologies, my home and guests and family are
source address validation is one of the windmills i've tilted at the most. the problem is so bad that most people who hear about it simply can't believe that the internet could work at all if what i'm saying is true. bad news folks: what i'm saying is true. in addition to many speaking engagements where i have let large audiences in on what ought not be a secret, i've done some writing on the topic, and some technology development. references are below. i also spoke to a reporter on this topic recently, and summarized the story of source address validation as follows:
I long believed that I'd destroyed all copies of this, but a friend had it in hard copy and scanned it in. I think 13 years is long enough. Think of this as the unpublished conclusion from my Ph.D thesis.
Note, Paul Mockapetris wrote none of this, I had his name on it as part of the joke. Paul M convinced me not to submit this as an April 1 RFC that year, in fact.
An instant classic in 2001, and still true and relevant today, whatever year this might be.
Decades ago I worked with the team at MAPS (the world's first anti-spam company; "MAPS" is "SPAM" spelled backward, and we had it mean "Mail Abuse Prevention System") to work up a standard by which a given single e-mail message could be determined to be "spam" or not. This is because a lot of the people who wanted to send bulkish e-mail that nobody wanted to receive were just as cute as they could be about skirting definitions that involved streams of e-mail.
I published it at http://mail-abuse.org/standard.html and I referred to this online location in Chapter 10 of the Second Edition of Sendmail: Theory and Practice. Later we sold the MAPS company to Trend Micro to get money to pay lawyers. At some point Trend Micro redid their web site so that the Standard for spam is no longer at its historic location.