John Kristoff

@jtk@infosec.exchange
1,014 Followers
557 Following
2.1K Posts
UIC PhD candidate | https://Dataplane.org | Netscout. Internet infrastructure (#BGP, #DNS) and #infosec. Bit mechanic. Also: #Blues / tfr / #fedi22
Homepagehttps://dataplane.org/jtk
John Kristoff1d ago

When you're trying to get #Google to help them fix a problem they have in relaying an email to a list (they are forwarding as if it they are originating your non-GMail email, thus incurring an SPF failure) their helpful support team to the rescue (see image attached).

FYI... the second thing they want is a screen cap of the client SMTP config.

Very temped to send a screenshot with some pretty obnoxious NSFW images and profanity-laden text in the test email.

John Kristoff1d ago

Weekend Reads

* A look at GeoIP
https://www.potaroo.net/ispcol/2025-12/geoip.html
* Tor network pentest report
https://blog.torproject.org/code-audit-network-health-tools/TTP-code-audit-network-health-report.pdf
* RPKI publication practices
https://arxiv.org/abs/2512.16369
* World's hottest data centers
https://restofworld.org/2025/data-center-heat-map/
* Measuring people to government paths
https://arxiv.org/abs/2512.13994

#GeoIP #Tor #RPKI #DataCenters #BGP

ISP Column - December 2025

John Kristoff3d ago

Mozilla specifying valid upstreams with ASPA object

https://console.rpki-client.org/rpki.ripe.net/repository/DEFAULT/39/675399-81be-4fec-9f86-55131cc1efea/1/PpC-jCzEwXeURniqNoGbKQGbl80.asa.html

#RPKI
https://social.bgp.tools/@newaspa/statuses/01KCQEE3HXZVG58CWW4YRQPAKT

John Kristoff3d ago

Linux kernel tooling update message included an unsurprising, but noteworthy lament about the state of #SMTP:

"We're increasingly having to deal with the degradation of the SMTP support by
all commercial companies: [...]"

https://lore.kernel.org/all/20251209-roaring-hidden-alligator-068eea@lemur/

kernel.org tooling update - Konstantin Ryabitsev

John Kristoff5d ago
Dataplane.org5d ago

The Internet Last Week

* SplinterCon
https://splintercon.net/paris/
* ARIN accidental reallocation
https://www.arin.net/announcements/20251212/
https://lists.nanog.org/archives/list/nanog@lists.nanog.org/thread/5MCMSACQADNXE65BTK34MQ3PXY4PDETF/
* Azure US government service failures
https://azure.status.microsoft/status/history/?trackingId=ML7_-DWG
* Zayo IX change on Quad9 service effects
https://uptime.quad9.net/incidents/t562nwzcrw09

#SpliterCon #ARIN #Azure #Zayo #Quad9 #Outages

Paris - SplinterCon

As national and regional efforts around digital sovereignty gain momentum, SplinterCon Paris will bring together technologists, researchers, and policymakers to consider what resilient, interconnected digital societies require today and in the future.

SplinterCon
John Kristoff5d ago
Systems Approach5d ago
With IPv6 turning 30 this month(!) it seemed like a good time to talk about second system syndrome: https://systemsapproach.org/2025/12/15/second-system-syndrome/
Second-System Syndrome - Systems Approach

The technical challenges of building a “bigger and better” second system as a follow-on to a successful, but simple, first system

Systems Approach
John Kristoff5d ago
Monday jam: Medeski Scofield Martin & Wood | Little Walter Rides Again | https://song.link/s/6i7EEIVQyaXhdydCwmBMMj #jazz
Little Walter Rides Again by Medeski Scofield Martin & Wood, Medeski, Martin & Wood

Listen now on your favorite streaming service. Powered by Songlink/Odesli, an on-demand, customizable smart link service to help you share songs, albums, podcasts and more.

Songlink/Odesli
John KristoffDec 13
merrychristmas, separation of church and state be damned
https://mastodon.social/@botgov/115713162753161483
John KristoffDec 12
Dj PorCus - WillDec 11

Hey Fedi,

I'll reduce my load at my job and will be available max 70% for a work as a:

(Sr.) Network engineer, knows ISPs, IXPs, people/NOGs around, the systems/infra needed for all that. I've been around the industry for ~20 years and would rather work for an entity with ethics.

I'm based in CH, could work anywhere in Europe, or remote. I'm ok traveling, will avoid US for now ;)

Any help, boosts, pointers would be greatly appreciated. Feel free to DM!

#fedihire #getfedihired #jobsearch

John KristoffDec 12

Weekend Reads

* Is this an AI bubble?
https://www.oaktreecapital.com/insights/memo/is-it-a-bubble
* Internet Protocol Journal
https://ipj.dreamhosters.com/wp-content/uploads/2025/12/283-ipj.pdf
* Cloud colocation attacks
https://arxiv.org/abs/2512.10361
* ISP tier classification problems
https://tier1-analysis.53bits.co.uk/
* Wikipedia IPv6 client addressing history
https://arxiv.org/abs/2512.08808

#AI #IPJ #Cloud #BGP #IPv6

Is It a Bubble?

In his latest memo, Howard Marks explores if there is a bubble in AI, identifying uncertainty, parallels to past bubbles, AI's vast potential, and emphasizing the importance of prudence.

Oaktree Capital