Job SnijdersAnimation of RPKI manifest issuances throughout the day. Reissuance makes the thingies ploink to the right
| Homepage | https://dataplane.org/jtk |
John Kristoff
@jtk@infosec.exchange
- 981 Followers
- 522 Following
- 1.8K Posts
UIC PhD candidate | https://Dataplane.org | Netscout. Internet infrastructure (#BGP, #DNS) and #infosec. Bit mechanic. Also: #Blues / tfr / #fedi22
Anurag BhatiaCheckout my latest #blog post on - "Can we detect submarine cable cuts from BGP routing table?" - https://anuragbhatia.com/post/2025/09/detecting-submarine-cuts-from-bgp-routing-table/
David BelsonMy latest post for the Cloudflare Blog:
Introducing new regional Internet traffic and Certificate Transparency insights on Cloudflare Radar
(via https://mastofeed.org)
Introducing new regional Internet traffic and Certificate Transparency insights on Cloudflare Radar
Cloudflare Radar offers two new features: regional Internet traffic visibility for a more local perspective on trends and disruptions, and a new dashboard bringing insights into Certificate Transparency, the ecosystem which ensures that all website certificates are publicly visible & auditable.
Weekend Reads
* Monitoring AS-SETs
https://blog.cloudflare.com/monitoring-as-sets-and-why-they-matter/
* IX LAN broadcast traffic
https://blog.benjojo.co.uk/post/ixp-bad-broadcast-packets-interesting
* Cryptocurrency mania as groupthink insight
https://www-users.cse.umn.edu/~odlyzko/doc/cryptomania.pdf
* Analyzing malicious websites with RIPE Atlas
https://blog.lacnic.net/en/analyzing-malicious-websites-with-ripe-atlas/
* Multi-algorithm DNSSEC validation edge cases
https://www.sidnlabs.nl/en/news-and-blogs/internship-report-edge-cases-in-dnssec-validation-with-multiple-algorithms
Monitoring AS-SETs and why they matter
AS-SETs, for better or worse, are critical data sources that help build BGP route filters across the Internet. Because these AS-SET objects are based solely on trust, they can be misused. We will cover some of the reasons why operators need to monitor the AS-SET memberships for their ASN, and now Cloudflare Radar can help.
ColoCrossing, now HostPapa, (#AS36352) is starting to provide #IPv6 assignments and connectivity to dedicated servers in their Buffalo location. Other locations and VMs purportedly coming soon.
This is kind of a big deal in some circles, because they are one of the oldest, biggest, and last hold-outs in the, let me put it gently, low-cost #hosting provider market .
I think it is fair to say, no serious U.S. hosting provider lacks v6. You might not consider them serious, but there all sorts of ways to argue a point with a sentence that begins with: "When ColoCrossing supports IPv6..."
facebookexternalhit/1.1 Facebot Twitterbot/1.0
If you see that in a user agent string in your web logs, someone at or behind the source address has probably shared the URL in an Apple iMessage as a result of the link preview function.
Enabling Lockdown Mode on the iPhone should prevent that that preview fetch.
Apropos to my recent blog post on SSH server host key reuse at LightNode (brand of Kaupo), this prefix was found to have many reused keys.
https://social.bgp.tools/@transfers/statuses/01K5WRXSBHYPYBEBZE65TDMHZ2
https://social.bgp.tools/@transfers/statuses/01K5WRXSBHYPYBEBZE65TDMHZ2
Look carefully at this page:
https://radar.cloudflare.com/as200373
Another 16k of that coming?
https://social.bgp.tools/@transfers/statuses/01K5X37C77S37DHW8ZYT72VM1K
Cautiously optimistic:
"We welcome the election of the members of the AFRINIC Board as a positive step forward that brings increased stability and resiliency to the global Internet Number Registry System [...]"
https://www.nro.net/nro-ec-correspondence-to-mauritius-government-on/
New blog post: Journeys in Hosting 1/x - Precomputed SSH Host Keys
https://dataplane.org/jtk/blog/2025/09/hosting-stories-1/