From nico.otroletravaladna en gmail.com  Mon Oct 16 20:14:17 2017
From: nico.otroletravaladna en gmail.com (Nico Ras)
Date: Mon, 16 Oct 2017 20:14:17 -0300
Subject: [Lista ArNOG] Telecentro
Message-ID: <353F58AC-24DE-4FA9-945A-7149B4111BA0@gmail.com>

Murió?Alguien sabe que paso?

From ncort3s en gmail.com  Tue Oct 17 04:03:29 2017
From: ncort3s en gmail.com (Nicolas Cortes)
Date: Tue, 17 Oct 2017 07:03:29 +0000
Subject: [Lista ArNOG] Fwd: [lacnog] Bye Bye WPA2 ! (una nota corta de su
	chair..)
In-Reply-To: <CAOBNHyfqzXTi+Ub0_z3LvXeMjob0Ks98+cUT167VMtg=tKb8uA@mail.gmail.com>
References: <CAOBNHyfqzXTi+Ub0_z3LvXeMjob0Ks98+cUT167VMtg=tKb8uA@mail.gmail.com>
Message-ID: <CAK7AuPf-xg4xwbHkSQd+iMEcodTWuGEm3JCQ463xunr=LVcGEw@mail.gmail.com>

FYI

---------- Forwarded message ---------
From: Rogerio Mariano <rsouza.rjo en gmail.com>
Date: Mon, Oct 16, 2017 at 23:13
Subject: [lacnog] Bye Bye WPA2 ! (una nota corta de su chair..)
To: Latin America and Caribbean Region Network Operators Group <
lacnog en lacnic.net>




https://www.krackattacks.com/
_______________________________________________
LACNOG mailing list
LACNOG en lacnic.net
https://mail.lacnic.net/mailman/listinfo/lacnog
Cancelar suscripcion: https://mail.lacnic.net/mailman/options/lacnog
------------ próxima parte ------------
Se ha borrado un adjunto en formato HTML...
URL: <http://mailmancabase.interdotnet.com.ar/pipermail/lista/attachments/20171017/b43f94c5/attachment.html>

From fsoto en fi.uba.ar  Tue Oct 17 09:29:35 2017
From: fsoto en fi.uba.ar (Fernando R. Soto)
Date: Tue, 17 Oct 2017 09:29:35 -0300
Subject: [Lista ArNOG] Telecentro
In-Reply-To: <353F58AC-24DE-4FA9-945A-7149B4111BA0@gmail.com>
References: <353F58AC-24DE-4FA9-945A-7149B4111BA0@gmail.com>
Message-ID: <000001d34743$97dde900$c799bb00$@fi.uba.ar>

Me sumo a la consulta.
Se cayo en todos lados el servicio?


-----Mensaje original-----
De: lista-bounces en arnog.com.ar [mailto:lista-bounces en arnog.com.ar] En nombre
de Nico Ras
Enviado el: lunes, 16 de octubre de 2017 8:14 p.m.
Para: lista en arnog.com.ar
Asunto: [Lista ArNOG] Telecentro

Murió?Alguien sabe que paso?
_______________________________________________
Lista mailing list
Lista en arnog.com.ar
http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista


From max.a.villalba.galeano en gmail.com  Tue Oct 17 09:54:26 2017
From: max.a.villalba.galeano en gmail.com (Maximiliano Ariel Villalba Galeano)
Date: Tue, 17 Oct 2017 08:54:26 -0400
Subject: [Lista ArNOG] Fwd: [lacnog] Bye Bye WPA2 ! (una nota corta de
	su chair..)
In-Reply-To: <CAK7AuPf-xg4xwbHkSQd+iMEcodTWuGEm3JCQ463xunr=LVcGEw@mail.gmail.com>
References: <CAOBNHyfqzXTi+Ub0_z3LvXeMjob0Ks98+cUT167VMtg=tKb8uA@mail.gmail.com>
	<CAK7AuPf-xg4xwbHkSQd+iMEcodTWuGEm3JCQ463xunr=LVcGEw@mail.gmail.com>
Message-ID: <CAFEzcLZ-13pGqa=LLf5Z6TNdniqmD-2ebeqTX+W5XQ2EjAApcw@mail.gmail.com>

https://www.kb.cert.org/vuls/byvendor?searchview&Query=FIELD+Reference=228519&SearchOrder=4

Listado de equipos afectados.

2017-10-17 3:03 GMT-04:00 Nicolas Cortes <ncort3s en gmail.com>:

> FYI
>
> ---------- Forwarded message ---------
> From: Rogerio Mariano <rsouza.rjo en gmail.com>
> Date: Mon, Oct 16, 2017 at 23:13
> Subject: [lacnog] Bye Bye WPA2 ! (una nota corta de su chair..)
> To: Latin America and Caribbean Region Network Operators Group <
> lacnog en lacnic.net>
>
>
>
>
> https://www.krackattacks.com/
> _______________________________________________
> LACNOG mailing list
> LACNOG en lacnic.net
> https://mail.lacnic.net/mailman/listinfo/lacnog
> Cancelar suscripcion: https://mail.lacnic.net/mailman/options/lacnog
>
> _______________________________________________
> Lista mailing list
> Lista en arnog.com.ar
> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>
>
------------ próxima parte ------------
Se ha borrado un adjunto en formato HTML...
URL: <http://mailmancabase.interdotnet.com.ar/pipermail/lista/attachments/20171017/e0af7522/attachment.html>

From mauriciojavier76 en gmail.com  Tue Oct 17 10:46:49 2017
From: mauriciojavier76 en gmail.com (mauricio weinzierl)
Date: Tue, 17 Oct 2017 10:46:49 -0300
Subject: [Lista ArNOG] Telecentro
In-Reply-To: <000001d34743$97dde900$c799bb00$@fi.uba.ar>
References: <353F58AC-24DE-4FA9-945A-7149B4111BA0@gmail.com>
	<000001d34743$97dde900$c799bb00$@fi.uba.ar>
Message-ID: <CAJVM41YB4f+9yUomK3uLCy1q0q96nuLwR+doOCtpvoGZ2VKs8Q@mail.gmail.com>

Gral rodriguez on line

El 17 oct. 2017 09:29, "Fernando R. Soto" <fsoto en fi.uba.ar> escribió:

> Me sumo a la consulta.
> Se cayo en todos lados el servicio?
>
>
> -----Mensaje original-----
> De: lista-bounces en arnog.com.ar [mailto:lista-bounces en arnog.com.ar] En
> nombre
> de Nico Ras
> Enviado el: lunes, 16 de octubre de 2017 8:14 p.m.
> Para: lista en arnog.com.ar
> Asunto: [Lista ArNOG] Telecentro
>
> Murió?Alguien sabe que paso?
> _______________________________________________
> Lista mailing list
> Lista en arnog.com.ar
> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>
> _______________________________________________
> Lista mailing list
> Lista en arnog.com.ar
> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>
------------ próxima parte ------------
Se ha borrado un adjunto en formato HTML...
URL: <http://mailmancabase.interdotnet.com.ar/pipermail/lista/attachments/20171017/3baeb082/attachment.html>

From nico.otroletravaladna en gmail.com  Tue Oct 17 12:15:26 2017
From: nico.otroletravaladna en gmail.com (Nico Ras)
Date: Tue, 17 Oct 2017 12:15:26 -0300
Subject: [Lista ArNOG] Telecentro
In-Reply-To: <000001d34743$97dde900$c799bb00$@fi.uba.ar>
References: <353F58AC-24DE-4FA9-945A-7149B4111BA0@gmail.com>
	<000001d34743$97dde900$c799bb00$@fi.uba.ar>
Message-ID: <8C9BD2DF-6D46-4063-B8DA-1DF35B4E7B87@gmail.com>

Fue un incendió creo.

El 17 oct. 2017, a la(s) 9:29 a. m., Fernando R. Soto <fsoto en fi.uba.ar> escribió:

> Me sumo a la consulta.
> Se cayo en todos lados el servicio?
> 
> 
> -----Mensaje original-----
> De: lista-bounces en arnog.com.ar [mailto:lista-bounces en arnog.com.ar] En nombre
> de Nico Ras
> Enviado el: lunes, 16 de octubre de 2017 8:14 p.m.
> Para: lista en arnog.com.ar
> Asunto: [Lista ArNOG] Telecentro
> 
> Murió?Alguien sabe que paso?
> _______________________________________________
> Lista mailing list
> Lista en arnog.com.ar
> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
> 
> _______________________________________________
> Lista mailing list
> Lista en arnog.com.ar
> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista

From diegolombardo1980 en hotmail.com  Tue Oct 17 12:28:19 2017
From: diegolombardo1980 en hotmail.com (diego lombardo)
Date: Tue, 17 Oct 2017 15:28:19 +0000
Subject: [Lista ArNOG] Telecentro
In-Reply-To: <000001d34743$97dde900$c799bb00$@fi.uba.ar>
References: <353F58AC-24DE-4FA9-945A-7149B4111BA0@gmail.com>,
	<000001d34743$97dde900$c799bb00$@fi.uba.ar>
Message-ID: <BN6PR03MB2753EF29D78C5EBB59900D8EBB4C0@BN6PR03MB2753.namprd03.prod.outlook.com>

Si otra vez se incendió el cabezal en ruta 3 .

________________________________
From: lista-bounces en arnog.com.ar <lista-bounces en arnog.com.ar> on behalf of Fernando R. Soto <fsoto en fi.uba.ar>
Sent: Tuesday, October 17, 2017 9:29:35 AM
To: lista en arnog.com.ar
Subject: Re: [Lista ArNOG] Telecentro

Me sumo a la consulta.
Se cayo en todos lados el servicio?


-----Mensaje original-----
De: lista-bounces en arnog.com.ar [mailto:lista-bounces en arnog.com.ar] En nombre
de Nico Ras
Enviado el: lunes, 16 de octubre de 2017 8:14 p.m.
Para: lista en arnog.com.ar
Asunto: [Lista ArNOG] Telecentro

Murió?Alguien sabe que paso?
_______________________________________________
Lista mailing list
Lista en arnog.com.ar
http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista

_______________________________________________
Lista mailing list
Lista en arnog.com.ar
http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
------------ próxima parte ------------
Se ha borrado un adjunto en formato HTML...
URL: <http://mailmancabase.interdotnet.com.ar/pipermail/lista/attachments/20171017/48ec2e15/attachment.html>

From diegolombardo1980 en hotmail.com  Tue Oct 17 12:28:26 2017
From: diegolombardo1980 en hotmail.com (diego lombardo)
Date: Tue, 17 Oct 2017 15:28:26 +0000
Subject: [Lista ArNOG] Telecentro
In-Reply-To: <000001d34743$97dde900$c799bb00$@fi.uba.ar>
References: <353F58AC-24DE-4FA9-945A-7149B4111BA0@gmail.com>,
	<000001d34743$97dde900$c799bb00$@fi.uba.ar>
Message-ID: <BN6PR03MB2753480C2D2A06F81A62F7B8BB4C0@BN6PR03MB2753.namprd03.prod.outlook.com>

Si otra vez se incendió el cabezal en ruta 3 .

________________________________
From: lista-bounces en arnog.com.ar <lista-bounces en arnog.com.ar> on behalf of Fernando R. Soto <fsoto en fi.uba.ar>
Sent: Tuesday, October 17, 2017 9:29:35 AM
To: lista en arnog.com.ar
Subject: Re: [Lista ArNOG] Telecentro

Me sumo a la consulta.
Se cayo en todos lados el servicio?


-----Mensaje original-----
De: lista-bounces en arnog.com.ar [mailto:lista-bounces en arnog.com.ar] En nombre
de Nico Ras
Enviado el: lunes, 16 de octubre de 2017 8:14 p.m.
Para: lista en arnog.com.ar
Asunto: [Lista ArNOG] Telecentro

Murió?Alguien sabe que paso?
_______________________________________________
Lista mailing list
Lista en arnog.com.ar
http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista

_______________________________________________
Lista mailing list
Lista en arnog.com.ar
http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
------------ próxima parte ------------
Se ha borrado un adjunto en formato HTML...
URL: <http://mailmancabase.interdotnet.com.ar/pipermail/lista/attachments/20171017/95b4fef8/attachment.html>

From ventas en impulsarinternet.com.ar  Tue Oct 17 14:17:14 2017
From: ventas en impulsarinternet.com.ar (Ventas Impulsar)
Date: Tue, 17 Oct 2017 14:17:14 -0300
Subject: [Lista ArNOG] Notice of Infringement from
In-Reply-To: <BN6PR03MB2753480C2D2A06F81A62F7B8BB4C0@BN6PR03MB2753.namprd03.prod.outlook.com>
References: <353F58AC-24DE-4FA9-945A-7149B4111BA0@gmail.com>,
	<000001d34743$97dde900$c799bb00$@fi.uba.ar>
	<BN6PR03MB2753480C2D2A06F81A62F7B8BB4C0@BN6PR03MB2753.namprd03.prod.outlook.com>
Message-ID: <008101d3476b$d0331dc0$70995940$@com.ar>

Buenas tardes,

Es la primera vez que me llega un mensaje de estetipo, como se procede?
Desde ya muchas gracias.

 

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA1

 

To:  <mailto:ventas en IMPULSARINTERNET.COM.AR> ventas en IMPULSARINTERNET.COM.AR

 

DATE: 2017-10-16

 

CASE ID: 764dc0b83d870e944909

 

Dear Impulsar Internet:

 

We are contacting you on behalf of The Cartoon Network, Inc. with location
at:

 

The Cartoon Network, Inc.

1050 Techwood Drive, NW

Atlanta GA 30318

 

Under penalty of perjury we assert that IP-Echelon Pty. Ltd. is authorized
to act on behalf of The Cartoon Network, Inc., who is the copyright owner
and/or owner of exclusive rights in such content identified below.

 

We have become aware that an individual has utilized the IP address
168.194.216.196 at the recorded date and time below to download, host,
and/or facilitate the downloading and/or streaming of video content that is
exclusively owned by The Cartoon Network, Inc.. Such unauthorized
distribution of The Cartoon Network, Inc. content without the express
written authorization of The Cartoon Network, Inc. constitutes copyright
infringement. This conduct may also violate the laws of other countries,
international law, and/or treaty obligations.

 

We have a good faith belief that the use of the copyrighted material
identified below is not authorized by The Cartoon Network, Inc., its agent,
or the law.

 

The title in question: Rick and Morty

 

As the owner of the IP address, we request that you immediately assist in
removing and disabling access to the infringing material from your network.
Additionally we request that you contact the subscriber who has engaged in
the conduct described above and take further steps to prevent the subscriber
from unauthorized future use and sharing of The Cartoon Network, Inc.
content.

 

We state, under penalty of perjury, that the information in this
notification is accurate and that we are authorized to act on behalf of the
owner of the exclusive right that is allegedly infringed herein.

 

Nothing in this notice shall operate as a waiver of any rights, claims, or
remedies available to The Cartoon Network, Inc. with respect to the
infringement alleged herein. All such rights, claims, and remedies are
hereby expressly reserved.

 

We appreciate your attention to and cooperation with this notice. Please
provide a prompt response specifying actions you have taken to resolve this
matter.

 

Do not hesitate to contact me with any questions. You may reach me via email
at  <mailto:p2p en copyright.ip-echelon.com> p2p en copyright.ip-echelon.com.

 

Regards,

 

Adrian Leatherland

CEO

IP-Echelon

Email:  <mailto:p2p en copyright.ip-echelon.com> p2p en copyright.ip-echelon.com

Address: 7083 Hollywood Blvd., Los Angeles, CA 90028, United States

 

- ------------- Infringement Details ----------------------------------

Title:        Rick and Morty

Timestamp:    2017-10-11T15:09:22Z

IP Address:   xxx.xxx.xxx.xxx

Port:         2536

Type:         BitTorrent

Torrent Hash: f4b98f523d40c6bce32c45ff837822a6a41c2f2e

Filename:     Rick.and.Morty.S03E09.HDTV.x264-BATV[rarbg]

Filesize:     122 MB

- ---------------------------------------------------------------------

------------ próxima parte ------------
Se ha borrado un adjunto en formato HTML...
URL: <http://mailmancabase.interdotnet.com.ar/pipermail/lista/attachments/20171017/5d2ada90/attachment-0001.html>

From nicolauisp en gmail.com  Tue Oct 17 16:09:45 2017
From: nicolauisp en gmail.com (Hernan Nicolau)
Date: Tue, 17 Oct 2017 16:09:45 -0300
Subject: [Lista ArNOG] Notice of Infringement from
In-Reply-To: <008101d3476b$d0331dc0$70995940$@com.ar>
References: <353F58AC-24DE-4FA9-945A-7149B4111BA0@gmail.com>
	<000001d34743$97dde900$c799bb00$@fi.uba.ar>
	<BN6PR03MB2753480C2D2A06F81A62F7B8BB4C0@BN6PR03MB2753.namprd03.prod.outlook.com>
	<008101d3476b$d0331dc0$70995940$@com.ar>
Message-ID: <b1e56f41-d68b-4468-9bf3-5624b7716675@gmail.com>

Me sumo con la consulta, recibo cerca de una docena de estos mensajes 
por semana, tiempo atras los respondía, pero no había feedback, como son 
tantos, los desestimo directamente, pero puede crecer en algun problema 
el día de mañana, en muchos casos tengo ips nateadas y no conozco quien 
este haciendo o hizo esa esa descarga.

Saludos!


Hernan Nicolau
Integral Comunicaciones SRL


El 17/10/2017 a las 02:17 p.m., Ventas Impulsar escribió:
>
> Buenas tardes,
>
> Es la primera vez que me llega un mensaje de estetipo, como se 
> procede? Desde ya muchas gracias.
>
> -----BEGIN PGP SIGNED MESSAGE-----
>
> Hash: SHA1
>
> To: ventas en IMPULSARINTERNET.COM.AR <mailto:ventas en IMPULSARINTERNET.COM.AR>
>
> DATE: 2017-10-16
>
> CASE ID: 764dc0b83d870e944909
>
> Dear Impulsar Internet:
>
> We are contacting you on behalf of The Cartoon Network, Inc. with 
> location at:
>
> The Cartoon Network, Inc.
>
> 1050 Techwood Drive, NW
>
> Atlanta GA 30318
>
> Under penalty of perjury we assert that IP-Echelon Pty. Ltd. is 
> authorized to act on behalf of The Cartoon Network, Inc., who is the 
> copyright owner and/or owner of exclusive rights in such content 
> identified below.
>
> We have become aware that an individual has utilized the IP address 
> 168.194.216.196 at the recorded date and time below to download, host, 
> and/or facilitate the downloading and/or streaming of video content 
> that is exclusively owned by The Cartoon Network, Inc.. Such 
> unauthorized distribution of The Cartoon Network, Inc. content without 
> the express written authorization of The Cartoon Network, Inc. 
> constitutes copyright infringement. This conduct may also violate the 
> laws of other countries, international law, and/or treaty obligations.
>
> We have a good faith belief that the use of the copyrighted material 
> identified below is not authorized by The Cartoon Network, Inc., its 
> agent, or the law.
>
> The title in question: Rick and Morty
>
> As the owner of the IP address, we request that you immediately assist 
> in removing and disabling access to the infringing material from your 
> network. Additionally we request that you contact the subscriber who 
> has engaged in the conduct described above and take further steps to 
> prevent the subscriber from unauthorized future use and sharing of The 
> Cartoon Network, Inc. content.
>
> We state, under penalty of perjury, that the information in this 
> notification is accurate and that we are authorized to act on behalf 
> of the owner of the exclusive right that is allegedly infringed herein.
>
> Nothing in this notice shall operate as a waiver of any rights, 
> claims, or remedies available to The Cartoon Network, Inc. with 
> respect to the infringement alleged herein. All such rights, claims, 
> and remedies are hereby expressly reserved.
>
> We appreciate your attention to and cooperation with this notice. 
> Please provide a prompt response specifying actions you have taken to 
> resolve this matter.
>
> Do not hesitate to contact me with any questions. You may reach me via 
> email at p2p en copyright.ip-echelon.com 
> <mailto:p2p en copyright.ip-echelon.com>.
>
> Regards,
>
> Adrian Leatherland
>
> CEO
>
> IP-Echelon
>
> Email: p2p en copyright.ip-echelon.com <mailto:p2p en copyright.ip-echelon.com>
>
> Address: 7083 Hollywood Blvd., Los Angeles, CA 90028, United States
>
> - ------------- Infringement Details ----------------------------------
>
> Title:        Rick and Morty
>
> Timestamp: 2017-10-11T15:09:22Z
>
> IP Address: xxx.xxx.xxx.xxx
>
> Port:         2536
>
> Type: BitTorrent
>
> Torrent Hash: f4b98f523d40c6bce32c45ff837822a6a41c2f2e
>
> Filename: Rick.and.Morty.S03E09.HDTV.x264-BATV[rarbg]
>
> Filesize:     122 MB
>
> - ---------------------------------------------------------------------
>
>
>
> _______________________________________________
> Lista mailing list
> Lista en arnog.com.ar
> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista



---
El software de antivirus Avast ha analizado este correo electrónico en busca de virus.
https://www.avast.com/antivirus
------------ próxima parte ------------
Se ha borrado un adjunto en formato HTML...
URL: <http://mailmancabase.interdotnet.com.ar/pipermail/lista/attachments/20171017/b035ac38/attachment.html>

From ivanfortunesky en gmail.com  Tue Oct 17 16:33:29 2017
From: ivanfortunesky en gmail.com (Ivan Fortunesky)
Date: Tue, 17 Oct 2017 16:33:29 -0300
Subject: [Lista ArNOG] Notice of Infringement from
In-Reply-To: <b1e56f41-d68b-4468-9bf3-5624b7716675@gmail.com>
References: <353F58AC-24DE-4FA9-945A-7149B4111BA0@gmail.com>
	<000001d34743$97dde900$c799bb00$@fi.uba.ar>
	<BN6PR03MB2753480C2D2A06F81A62F7B8BB4C0@BN6PR03MB2753.namprd03.prod.outlook.com>
	<008101d3476b$d0331dc0$70995940$@com.ar>
	<b1e56f41-d68b-4468-9bf3-5624b7716675@gmail.com>
Message-ID: <CACacAkrd5spEfiMKUQr3NwtfbNBgzPnykvKC=6-68m9-N-Mhaw@mail.gmail.com>

Estimados,
                  El informe indica que desde esa IP se está hosteando
contenido protegido por copyright.
Debería notificarse al cliente que la utilizó pero no más que eso.
Particularmente los marco como spam.

Saludos cordiales
El 17/10/2017 16:19, "Hernan Nicolau" <nicolauisp en gmail.com> escribió:

> Me sumo con la consulta, recibo cerca de una docena de estos mensajes por
> semana, tiempo atras los respondía, pero no había feedback, como son
> tantos, los desestimo directamente, pero puede crecer en algun problema el
> día de mañana, en muchos casos tengo ips nateadas y no conozco quien este
> haciendo o hizo esa esa descarga.
>
> Saludos!
>
>
> Hernan Nicolau
> Integral Comunicaciones SRL
>
> El 17/10/2017 a las 02:17 p.m., Ventas Impulsar escribió:
>
> Buenas tardes,
>
> Es la primera vez que me llega un mensaje de estetipo, como se procede?
> Desde ya muchas gracias.
>
>
>
> -----BEGIN PGP SIGNED MESSAGE-----
>
> Hash: SHA1
>
>
>
> To: ventas en IMPULSARINTERNET.COM.AR
>
>
>
> DATE: 2017-10-16
>
>
>
> CASE ID: 764dc0b83d870e944909
>
>
>
> Dear Impulsar Internet:
>
>
>
> We are contacting you on behalf of The Cartoon Network, Inc. with location
> at:
>
>
>
> The Cartoon Network, Inc.
>
> 1050 Techwood Drive, NW
>
> Atlanta GA 30318
>
>
>
> Under penalty of perjury we assert that IP-Echelon Pty. Ltd. is authorized
> to act on behalf of The Cartoon Network, Inc., who is the copyright owner
> and/or owner of exclusive rights in such content identified below.
>
>
>
> We have become aware that an individual has utilized the IP address
> 168.194.216.196 at the recorded date and time below to download, host,
> and/or facilitate the downloading and/or streaming of video content that is
> exclusively owned by The Cartoon Network, Inc.. Such unauthorized
> distribution of The Cartoon Network, Inc. content without the express
> written authorization of The Cartoon Network, Inc. constitutes copyright
> infringement. This conduct may also violate the laws of other countries,
> international law, and/or treaty obligations.
>
>
>
> We have a good faith belief that the use of the copyrighted material
> identified below is not authorized by The Cartoon Network, Inc., its agent,
> or the law.
>
>
>
> The title in question: Rick and Morty
>
>
>
> As the owner of the IP address, we request that you immediately assist in
> removing and disabling access to the infringing material from your network.
> Additionally we request that you contact the subscriber who has engaged in
> the conduct described above and take further steps to prevent the
> subscriber from unauthorized future use and sharing of The Cartoon Network,
> Inc. content.
>
>
>
> We state, under penalty of perjury, that the information in this
> notification is accurate and that we are authorized to act on behalf of the
> owner of the exclusive right that is allegedly infringed herein.
>
>
>
> Nothing in this notice shall operate as a waiver of any rights, claims, or
> remedies available to The Cartoon Network, Inc. with respect to the
> infringement alleged herein. All such rights, claims, and remedies are
> hereby expressly reserved.
>
>
>
> We appreciate your attention to and cooperation with this notice. Please
> provide a prompt response specifying actions you have taken to resolve this
> matter.
>
>
>
> Do not hesitate to contact me with any questions. You may reach me via
> email at p2p en copyright.ip-echelon.com.
>
>
>
> Regards,
>
>
>
> Adrian Leatherland
>
> CEO
>
> IP-Echelon
>
> Email: p2p en copyright.ip-echelon.com
>
> Address: 7083 Hollywood Blvd., Los Angeles, CA 90028, United States
>
>
>
> - ------------- Infringement Details ----------------------------------
>
> Title:        Rick and Morty
>
> Timestamp:    2017-10-11T15:09:22Z
>
> IP Address:   xxx.xxx.xxx.xxx
>
> Port:         2536
>
> Type:         BitTorrent
>
> Torrent Hash: f4b98f523d40c6bce32c45ff837822a6a41c2f2e
>
> Filename:     Rick.and.Morty.S03E09.HDTV.x264-BATV[rarbg]
>
> Filesize:     122 MB
>
> - ---------------------------------------------------------------------
>
>
> _______________________________________________
> Lista mailing listLista en arnog.com.arhttp://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>
>
>
> _______________________________________________
> Lista mailing list
> Lista en arnog.com.ar
> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>
>
------------ próxima parte ------------
Se ha borrado un adjunto en formato HTML...
URL: <http://mailmancabase.interdotnet.com.ar/pipermail/lista/attachments/20171017/cbd36c1c/attachment-0001.html>

From dfernandez en researchsrl.com.ar  Tue Oct 17 18:00:06 2017
From: dfernandez en researchsrl.com.ar (Dario Fernandez)
Date: Tue, 17 Oct 2017 18:00:06 -0300
Subject: [Lista ArNOG] Notice of Infringement from
In-Reply-To: <CACacAkrd5spEfiMKUQr3NwtfbNBgzPnykvKC=6-68m9-N-Mhaw@mail.gmail.com>
References: <353F58AC-24DE-4FA9-945A-7149B4111BA0@gmail.com>
	<000001d34743$97dde900$c799bb00$@fi.uba.ar>
	<BN6PR03MB2753480C2D2A06F81A62F7B8BB4C0@BN6PR03MB2753.namprd03.prod.outlook.com>
	<008101d3476b$d0331dc0$70995940$@com.ar>
	<b1e56f41-d68b-4468-9bf3-5624b7716675@gmail.com>
	<CACacAkrd5spEfiMKUQr3NwtfbNBgzPnykvKC=6-68m9-N-Mhaw@mail.gmail.com>
Message-ID: <CABQ9e=TS5VGGoDoPKgiG=yeWfJiBiARNtdOk9=ohw=XqMoPsKw@mail.gmail.com>

Efectivamente, te avisa que desde una IP de tu rango se ha cursado tráfico
de un archivo protegido por copyright.
También te informan desde que IP, puerto y protocolo.
Lo más lógico es notificar al cliente que utilizó la IP, de esta manera el
cliente va a recibir el reclamo, no pasa de allí.
Otra opción es bloquear el puerto desde esa IP, pero como suelen utilizar
puertos aleatorios no va a servir de mucho.
Si tenes control del CPE y podes bloquear protocolos / puertos, podrías
manejarlo por ese lado.
Y como dijo Ivan, no se si a spam, pero por lo menos a una lista de "ver en
otro momento".... ;-)




*Lic. Darío FernándezResearch SRL*


*Coord. Técnico IXP Posadas - CABASE(0376) 154619600 (Personal)(0376)
154254938 (Claro) Av. Tomas Guido 4435 - Posadas - Misiones*

2017-10-17 16:33 GMT-03:00 Ivan Fortunesky <ivanfortunesky en gmail.com>:

> Estimados,
>                   El informe indica que desde esa IP se está hosteando
> contenido protegido por copyright.
> Debería notificarse al cliente que la utilizó pero no más que eso.
> Particularmente los marco como spam.
>
> Saludos cordiales
> El 17/10/2017 16:19, "Hernan Nicolau" <nicolauisp en gmail.com> escribió:
>
>> Me sumo con la consulta, recibo cerca de una docena de estos mensajes por
>> semana, tiempo atras los respondía, pero no había feedback, como son
>> tantos, los desestimo directamente, pero puede crecer en algun problema el
>> día de mañana, en muchos casos tengo ips nateadas y no conozco quien este
>> haciendo o hizo esa esa descarga.
>>
>> Saludos!
>>
>>
>> Hernan Nicolau
>> Integral Comunicaciones SRL
>>
>> El 17/10/2017 a las 02:17 p.m., Ventas Impulsar escribió:
>>
>> Buenas tardes,
>>
>> Es la primera vez que me llega un mensaje de estetipo, como se procede?
>> Desde ya muchas gracias.
>>
>>
>>
>> -----BEGIN PGP SIGNED MESSAGE-----
>>
>> Hash: SHA1
>>
>>
>>
>> To: ventas en IMPULSARINTERNET.COM.AR
>>
>>
>>
>> DATE: 2017-10-16
>>
>>
>>
>> CASE ID: 764dc0b83d870e944909
>>
>>
>>
>> Dear Impulsar Internet:
>>
>>
>>
>> We are contacting you on behalf of The Cartoon Network, Inc. with
>> location at:
>>
>>
>>
>> The Cartoon Network, Inc.
>>
>> 1050 Techwood Drive, NW
>>
>> Atlanta GA 30318
>>
>>
>>
>> Under penalty of perjury we assert that IP-Echelon Pty. Ltd. is
>> authorized to act on behalf of The Cartoon Network, Inc., who is the
>> copyright owner and/or owner of exclusive rights in such content identified
>> below.
>>
>>
>>
>> We have become aware that an individual has utilized the IP address
>> 168.194.216.196 at the recorded date and time below to download, host,
>> and/or facilitate the downloading and/or streaming of video content that is
>> exclusively owned by The Cartoon Network, Inc.. Such unauthorized
>> distribution of The Cartoon Network, Inc. content without the express
>> written authorization of The Cartoon Network, Inc. constitutes copyright
>> infringement. This conduct may also violate the laws of other countries,
>> international law, and/or treaty obligations.
>>
>>
>>
>> We have a good faith belief that the use of the copyrighted material
>> identified below is not authorized by The Cartoon Network, Inc., its agent,
>> or the law.
>>
>>
>>
>> The title in question: Rick and Morty
>>
>>
>>
>> As the owner of the IP address, we request that you immediately assist in
>> removing and disabling access to the infringing material from your network.
>> Additionally we request that you contact the subscriber who has engaged in
>> the conduct described above and take further steps to prevent the
>> subscriber from unauthorized future use and sharing of The Cartoon Network,
>> Inc. content.
>>
>>
>>
>> We state, under penalty of perjury, that the information in this
>> notification is accurate and that we are authorized to act on behalf of the
>> owner of the exclusive right that is allegedly infringed herein.
>>
>>
>>
>> Nothing in this notice shall operate as a waiver of any rights, claims,
>> or remedies available to The Cartoon Network, Inc. with respect to the
>> infringement alleged herein. All such rights, claims, and remedies are
>> hereby expressly reserved.
>>
>>
>>
>> We appreciate your attention to and cooperation with this notice. Please
>> provide a prompt response specifying actions you have taken to resolve this
>> matter.
>>
>>
>>
>> Do not hesitate to contact me with any questions. You may reach me via
>> email at p2p en copyright.ip-echelon.com.
>>
>>
>>
>> Regards,
>>
>>
>>
>> Adrian Leatherland
>>
>> CEO
>>
>> IP-Echelon
>>
>> Email: p2p en copyright.ip-echelon.com
>>
>> Address: 7083 Hollywood Blvd., Los Angeles, CA 90028, United States
>>
>>
>>
>> - ------------- Infringement Details ----------------------------------
>>
>> Title:        Rick and Morty
>>
>> Timestamp:    2017-10-11T15:09:22Z
>>
>> IP Address:   xxx.xxx.xxx.xxx
>>
>> Port:         2536
>>
>> Type:         BitTorrent
>>
>> Torrent Hash: f4b98f523d40c6bce32c45ff837822a6a41c2f2e
>>
>> Filename:     Rick.and.Morty.S03E09.HDTV.x264-BATV[rarbg]
>>
>> Filesize:     122 MB
>>
>> - ---------------------------------------------------------------------
>>
>>
>> _______________________________________________
>> Lista mailing listLista en arnog.com.arhttp://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>>
>>
>>
>> _______________________________________________
>> Lista mailing list
>> Lista en arnog.com.ar
>> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>>
>>
> _______________________________________________
> Lista mailing list
> Lista en arnog.com.ar
> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>
>
------------ próxima parte ------------
Se ha borrado un adjunto en formato HTML...
URL: <http://mailmancabase.interdotnet.com.ar/pipermail/lista/attachments/20171017/150f67a3/attachment.html>

From ventas en impulsarinternet.com.ar  Tue Oct 17 19:06:37 2017
From: ventas en impulsarinternet.com.ar (Ventas Impulsar)
Date: Tue, 17 Oct 2017 19:06:37 -0300
Subject: [Lista ArNOG] Notice of Infringement from
In-Reply-To: <CABQ9e=TS5VGGoDoPKgiG=yeWfJiBiARNtdOk9=ohw=XqMoPsKw@mail.gmail.com>
References: <353F58AC-24DE-4FA9-945A-7149B4111BA0@gmail.com>	<000001d34743$97dde900$c799bb00$@fi.uba.ar>	<BN6PR03MB2753480C2D2A06F81A62F7B8BB4C0@BN6PR03MB2753.namprd03.prod.outlook.com>	<008101d3476b$d0331dc0$70995940$@com.ar>	<b1e56f41-d68b-4468-9bf3-5624b7716675@gmail.com>	<CACacAkrd5spEfiMKUQr3NwtfbNBgzPnykvKC=6-68m9-N-Mhaw@mail.gmail.com>
	<CABQ9e=TS5VGGoDoPKgiG=yeWfJiBiARNtdOk9=ohw=XqMoPsKw@mail.gmail.com>
Message-ID: <00e901d34794$3d075920$b7160b60$@com.ar>

Muchas gracias a todos por sus aportes, me dejan mas tranquilo.

Saludos

Allocati Santiago

 

De: lista-bounces en arnog.com.ar [mailto:lista-bounces en arnog.com.ar] En nombre de Dario Fernandez
Enviado el: Martes, 17 de Octubre de 2017 06:00 p.m.
Para: lista en arnog.com.ar
Asunto: Re: [Lista ArNOG] Notice of Infringement from

 

Efectivamente, te avisa que desde una IP de tu rango se ha cursado tráfico de un archivo protegido por copyright.

También te informan desde que IP, puerto y protocolo.

Lo más lógico es notificar al cliente que utilizó la IP, de esta manera el cliente va a recibir el reclamo, no pasa de allí.

Otra opción es bloquear el puerto desde esa IP, pero como suelen utilizar puertos aleatorios no va a servir de mucho.

Si tenes control del CPE y podes bloquear protocolos / puertos, podrías manejarlo por ese lado.

Y como dijo Ivan, no se si a spam, pero por lo menos a una lista de "ver en otro momento".... ;-)

 




Lic. Darío Fernández
Research SRL
Coord. Técnico IXP Posadas - CABASE
(0376) 154619600 (Personal)
(0376) 154254938 (Claro) 
Av. Tomas Guido 4435 - Posadas - Misiones

 

2017-10-17 16:33 GMT-03:00 Ivan Fortunesky <ivanfortunesky en gmail.com>:

Estimados, 
                  El informe indica que desde esa IP se está hosteando contenido protegido por copyright.
Debería notificarse al cliente que la utilizó pero no más que eso. 
Particularmente los marco como spam.

Saludos cordiales 

El 17/10/2017 16:19, "Hernan Nicolau" <nicolauisp en gmail.com> escribió:

Me sumo con la consulta, recibo cerca de una docena de estos mensajes por semana, tiempo atras los respondía, pero no había feedback, como son tantos, los desestimo directamente, pero puede crecer en algun problema el día de mañana, en muchos casos tengo ips nateadas y no conozco quien este haciendo o hizo esa esa descarga.

Saludos!

 

Hernan Nicolau
Integral Comunicaciones SRL

 

El 17/10/2017 a las 02:17 p.m., Ventas Impulsar escribió:

Buenas tardes,

Es la primera vez que me llega un mensaje de estetipo, como se procede? Desde ya muchas gracias.

 

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA1

 

To:  <mailto:ventas en IMPULSARINTERNET.COM.AR> ventas en IMPULSARINTERNET.COM.AR

 

DATE: 2017-10-16

 

CASE ID: 764dc0b83d870e944909

 

Dear Impulsar Internet:

 

We are contacting you on behalf of The Cartoon Network, Inc. with location at:

 

The Cartoon Network, Inc.

1050 Techwood Drive, NW

Atlanta GA 30318

 

Under penalty of perjury we assert that IP-Echelon Pty. Ltd. is authorized to act on behalf of The Cartoon Network, Inc., who is the copyright owner and/or owner of exclusive rights in such content identified below.

 

We have become aware that an individual has utilized the IP address 168.194.216.196 at the recorded date and time below to download, host, and/or facilitate the downloading and/or streaming of video content that is exclusively owned by The Cartoon Network, Inc.. Such unauthorized distribution of The Cartoon Network, Inc. content without the express written authorization of The Cartoon Network, Inc. constitutes copyright infringement. This conduct may also violate the laws of other countries, international law, and/or treaty obligations.

 

We have a good faith belief that the use of the copyrighted material identified below is not authorized by The Cartoon Network, Inc., its agent, or the law.

 

The title in question: Rick and Morty

 

As the owner of the IP address, we request that you immediately assist in removing and disabling access to the infringing material from your network. Additionally we request that you contact the subscriber who has engaged in the conduct described above and take further steps to prevent the subscriber from unauthorized future use and sharing of The Cartoon Network, Inc. content.

 

We state, under penalty of perjury, that the information in this notification is accurate and that we are authorized to act on behalf of the owner of the exclusive right that is allegedly infringed herein.

 

Nothing in this notice shall operate as a waiver of any rights, claims, or remedies available to The Cartoon Network, Inc. with respect to the infringement alleged herein. All such rights, claims, and remedies are hereby expressly reserved.

 

We appreciate your attention to and cooperation with this notice. Please provide a prompt response specifying actions you have taken to resolve this matter.

 

Do not hesitate to contact me with any questions. You may reach me via email at  <mailto:p2p en copyright.ip-echelon.com> p2p en copyright.ip-echelon.com.

 

Regards,

 

Adrian Leatherland

CEO

IP-Echelon

Email:  <mailto:p2p en copyright.ip-echelon.com> p2p en copyright.ip-echelon.com

Address: 7083 Hollywood Blvd., Los Angeles, CA 90028, United States

 

- ------------- Infringement Details ----------------------------------

Title:        Rick and Morty

Timestamp:    2017-10-11T15:09:22Z

IP Address:   xxx.xxx.xxx.xxx

Port:         2536

Type:         BitTorrent

Torrent Hash: f4b98f523d40c6bce32c45ff837822a6a41c2f2e

Filename:     Rick.and.Morty.S03E09.HDTV.x264-BATV[rarbg]

Filesize:     122 MB

- ---------------------------------------------------------------------

 

_______________________________________________
Lista mailing list
Lista en arnog.com.ar
http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista

 


_______________________________________________
Lista mailing list
Lista en arnog.com.ar
http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista


_______________________________________________
Lista mailing list
Lista en arnog.com.ar
http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista

 

------------ próxima parte ------------
Se ha borrado un adjunto en formato HTML...
URL: <http://mailmancabase.interdotnet.com.ar/pipermail/lista/attachments/20171017/0e5a00e2/attachment-0001.html>

From ariel en weher.net  Tue Oct 17 22:13:35 2017
From: ariel en weher.net (Ariel Weher)
Date: Tue, 17 Oct 2017 22:13:35 -0300
Subject: [Lista ArNOG] Notice of Infringement from
In-Reply-To: <00e901d34794$3d075920$b7160b60$@com.ar>
References: <353F58AC-24DE-4FA9-945A-7149B4111BA0@gmail.com>
	<000001d34743$97dde900$c799bb00$@fi.uba.ar>
	<BN6PR03MB2753480C2D2A06F81A62F7B8BB4C0@BN6PR03MB2753.namprd03.prod.outlook.com>
	<008101d3476b$d0331dc0$70995940$@com.ar>
	<b1e56f41-d68b-4468-9bf3-5624b7716675@gmail.com>
	<CACacAkrd5spEfiMKUQr3NwtfbNBgzPnykvKC=6-68m9-N-Mhaw@mail.gmail.com>
	<CABQ9e=TS5VGGoDoPKgiG=yeWfJiBiARNtdOk9=ohw=XqMoPsKw@mail.gmail.com>
	<00e901d34794$3d075920$b7160b60$@com.ar>
Message-ID: <CA+=gdqXOk5o++iWBWqNY-M6E9GvR+x2F7Q6TvSCk34T7km+vgg@mail.gmail.com>

Peguenle una mirada a esto:

https://abuse.io/

Llegado el caso podemos armar alguna implementación de prueba.

Abrazo

On Tue, Oct 17, 2017 at 7:06 PM, Ventas Impulsar <
ventas en impulsarinternet.com.ar> wrote:

> Muchas gracias a todos por sus aportes, me dejan mas tranquilo.
>
> Saludos
>
> Allocati Santiago
>
>
>
> *De:* lista-bounces en arnog.com.ar [mailto:lista-bounces en arnog.com.ar] *En
> nombre de *Dario Fernandez
> *Enviado el:* Martes, 17 de Octubre de 2017 06:00 p.m.
> *Para:* lista en arnog.com.ar
> *Asunto:* Re: [Lista ArNOG] Notice of Infringement from
>
>
>
> Efectivamente, te avisa que desde una IP de tu rango se ha cursado tráfico
> de un archivo protegido por copyright.
>
> También te informan desde que IP, puerto y protocolo.
>
> Lo más lógico es notificar al cliente que utilizó la IP, de esta manera el
> cliente va a recibir el reclamo, no pasa de allí.
>
> Otra opción es bloquear el puerto desde esa IP, pero como suelen utilizar
> puertos aleatorios no va a servir de mucho.
>
> Si tenes control del CPE y podes bloquear protocolos / puertos, podrías
> manejarlo por ese lado.
>
> Y como dijo Ivan, no se si a spam, pero por lo menos a una lista de "ver
> en otro momento".... ;-)
>
>
>
>
>
>
> *Lic. Darío Fernández Research SRL *
>
>
> *Coord. Técnico IXP Posadas - CABASE (0376) 154619600 (Personal) (0376)
> 154254938 (Claro) Av. Tomas Guido 4435 - Posadas - Misiones*
>
>
>
> 2017-10-17 16:33 GMT-03:00 Ivan Fortunesky <ivanfortunesky en gmail.com>:
>
> Estimados,
>                   El informe indica que desde esa IP se está hosteando
> contenido protegido por copyright.
> Debería notificarse al cliente que la utilizó pero no más que eso.
> Particularmente los marco como spam.
>
> Saludos cordiales
>
> El 17/10/2017 16:19, "Hernan Nicolau" <nicolauisp en gmail.com> escribió:
>
> Me sumo con la consulta, recibo cerca de una docena de estos mensajes por
> semana, tiempo atras los respondía, pero no había feedback, como son
> tantos, los desestimo directamente, pero puede crecer en algun problema el
> día de mañana, en muchos casos tengo ips nateadas y no conozco quien este
> haciendo o hizo esa esa descarga.
>
> Saludos!
>
>
>
> Hernan Nicolau
> Integral Comunicaciones SRL
>
>
>
> El 17/10/2017 a las 02:17 p.m., Ventas Impulsar escribió:
>
> Buenas tardes,
>
> Es la primera vez que me llega un mensaje de estetipo, como se procede?
> Desde ya muchas gracias.
>
>
>
> -----BEGIN PGP SIGNED MESSAGE-----
>
> Hash: SHA1
>
>
>
> To: ventas en IMPULSARINTERNET.COM.AR
>
>
>
> DATE: 2017-10-16
>
>
>
> CASE ID: 764dc0b83d870e944909
>
>
>
> Dear Impulsar Internet:
>
>
>
> We are contacting you on behalf of The Cartoon Network, Inc. with location
> at:
>
>
>
> The Cartoon Network, Inc.
>
> 1050 Techwood Drive, NW
>
> Atlanta GA 30318
>
>
>
> Under penalty of perjury we assert that IP-Echelon Pty. Ltd. is authorized
> to act on behalf of The Cartoon Network, Inc., who is the copyright owner
> and/or owner of exclusive rights in such content identified below.
>
>
>
> We have become aware that an individual has utilized the IP address
> 168.194.216.196 at the recorded date and time below to download, host,
> and/or facilitate the downloading and/or streaming of video content that is
> exclusively owned by The Cartoon Network, Inc.. Such unauthorized
> distribution of The Cartoon Network, Inc. content without the express
> written authorization of The Cartoon Network, Inc. constitutes copyright
> infringement. This conduct may also violate the laws of other countries,
> international law, and/or treaty obligations.
>
>
>
> We have a good faith belief that the use of the copyrighted material
> identified below is not authorized by The Cartoon Network, Inc., its agent,
> or the law.
>
>
>
> The title in question: Rick and Morty
>
>
>
> As the owner of the IP address, we request that you immediately assist in
> removing and disabling access to the infringing material from your network.
> Additionally we request that you contact the subscriber who has engaged in
> the conduct described above and take further steps to prevent the
> subscriber from unauthorized future use and sharing of The Cartoon Network,
> Inc. content.
>
>
>
> We state, under penalty of perjury, that the information in this
> notification is accurate and that we are authorized to act on behalf of the
> owner of the exclusive right that is allegedly infringed herein.
>
>
>
> Nothing in this notice shall operate as a waiver of any rights, claims, or
> remedies available to The Cartoon Network, Inc. with respect to the
> infringement alleged herein. All such rights, claims, and remedies are
> hereby expressly reserved.
>
>
>
> We appreciate your attention to and cooperation with this notice. Please
> provide a prompt response specifying actions you have taken to resolve this
> matter.
>
>
>
> Do not hesitate to contact me with any questions. You may reach me via
> email at p2p en copyright.ip-echelon.com.
>
>
>
> Regards,
>
>
>
> Adrian Leatherland
>
> CEO
>
> IP-Echelon
>
> Email: p2p en copyright.ip-echelon.com
>
> Address: 7083 Hollywood Blvd., Los Angeles, CA 90028, United States
>
>
>
> - ------------- Infringement Details ----------------------------------
>
> Title:        Rick and Morty
>
> Timestamp:    2017-10-11T15:09:22Z
>
> IP Address:   xxx.xxx.xxx.xxx
>
> Port:         2536
>
> Type:         BitTorrent
>
> Torrent Hash: f4b98f523d40c6bce32c45ff837822a6a41c2f2e
>
> Filename:     Rick.and.Morty.S03E09.HDTV.x264-BATV[rarbg]
>
> Filesize:     122 MB
>
> - ---------------------------------------------------------------------
>
>
>
> _______________________________________________
>
> Lista mailing list
>
> Lista en arnog.com.ar
>
> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>
>
>
>
> _______________________________________________
> Lista mailing list
> Lista en arnog.com.ar
> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>
>
> _______________________________________________
> Lista mailing list
> Lista en arnog.com.ar
> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>
>
>
> _______________________________________________
> Lista mailing list
> Lista en arnog.com.ar
> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>
>
------------ próxima parte ------------
Se ha borrado un adjunto en formato HTML...
URL: <http://mailmancabase.interdotnet.com.ar/pipermail/lista/attachments/20171017/7a263dea/attachment-0001.html>

From info en ivanchapero.com.ar  Wed Oct 18 00:21:53 2017
From: info en ivanchapero.com.ar (Ivan Chapero)
Date: Wed, 18 Oct 2017 00:21:53 -0300
Subject: [Lista ArNOG] Fwd: [lacnog] Bye Bye WPA2 ! (una nota corta de
	su chair..)
In-Reply-To: <CAFEzcLZ-13pGqa=LLf5Z6TNdniqmD-2ebeqTX+W5XQ2EjAApcw@mail.gmail.com>
References: <CAOBNHyfqzXTi+Ub0_z3LvXeMjob0Ks98+cUT167VMtg=tKb8uA@mail.gmail.com>
	<CAK7AuPf-xg4xwbHkSQd+iMEcodTWuGEm3JCQ463xunr=LVcGEw@mail.gmail.com>
	<CAFEzcLZ-13pGqa=LLf5Z6TNdniqmD-2ebeqTX+W5XQ2EjAApcw@mail.gmail.com>
Message-ID: <CAPQhFbdtKvJ7npJLi22E2tj5jSe37xe0TLpEG5a2T0G1kOCy8A@mail.gmail.com>

*Una aclaración importante. FYI:*

*------------------------------------------------*

*Clarification for the WPA2 Vulnerabilities:*
1. Please have a look at the article <https://www.krackattacks.com/> published
by Mathy Vanhoef and pay attention to the QA listed at the end:
*Q: What if there are no security updates for my router?*
*A:* Our main attack is against the 4-way handshake, and does not exploit
access points, but instead targets clients. So it might be that your router
does not require security updates. We strongly advise you to contact your
vendor for more details. In general though, you can try to mitigate attacks
against routers and access points by disabling client functionality (which
is for example used in repeater modes) and disabling 802.11r (fast
roaming). For ordinary home users, your priority should be updating clients
such as laptops and smartphones.

>From the QA, we can get clear that the vulnerabilities only targets the
devices act as Wi-Fi clients, including laptops, smartphones, range
extenders working in RE mode, routers/gateways working in RE/WDS/WISP mode.
Thus if you're using the following TP-Link products:
# All powerline adapters
# All mobile Wi-Fi products
# Routers and gateways working on default Router mode or Access Point mode
# Range extenders working in AP mode
You will not be affected by the WPA2 vulnerabilities. What you need to do
is updating your Wi-Fi clients.

2. Conditions of vulnerability occurrence:
# Physical limit: The attack only happens when an attacker is in physical
proximity to and within wireless range of your network.
# Time limit: The attack only happens when connecting or reconnecting to
Wi-Fi network.

2017-10-17 9:54 GMT-03:00 Maximiliano Ariel Villalba Galeano <
max.a.villalba.galeano en gmail.com>:

> https://www.kb.cert.org/vuls/byvendor?searchview&Query=
> FIELD+Reference=228519&SearchOrder=4
>
> Listado de equipos afectados.
>
> 2017-10-17 3:03 GMT-04:00 Nicolas Cortes <ncort3s en gmail.com>:
>
>> FYI
>>
>> ---------- Forwarded message ---------
>> From: Rogerio Mariano <rsouza.rjo en gmail.com>
>> Date: Mon, Oct 16, 2017 at 23:13
>> Subject: [lacnog] Bye Bye WPA2 ! (una nota corta de su chair..)
>> To: Latin America and Caribbean Region Network Operators Group <
>> lacnog en lacnic.net>
>>
>>
>>
>>
>> https://www.krackattacks.com/
>> _______________________________________________
>> LACNOG mailing list
>> LACNOG en lacnic.net
>> https://mail.lacnic.net/mailman/listinfo/lacnog
>> Cancelar suscripcion: https://mail.lacnic.net/mailman/options/lacnog
>>
>> _______________________________________________
>> Lista mailing list
>> Lista en arnog.com.ar
>> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>>
>>
>
> _______________________________________________
> Lista mailing list
> Lista en arnog.com.ar
> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>
>


-- 

*Ivan ChaperoÁrea Técnica y Soporte*
Fijo: 03464-470280 (interno 535) | Móvil:  03464-155-20282  | Skype ID:
ivanchapero
--
GoDATA Banda Ancha - CABLETEL S.A. | Av. 9 de Julio 1163 - 2183 - Arequito
- Santa Fe - Argentina
------------ próxima parte ------------
Se ha borrado un adjunto en formato HTML...
URL: <http://mailmancabase.interdotnet.com.ar/pipermail/lista/attachments/20171018/6d3a63ce/attachment.html>

From ariel.pconline en gmail.com  Wed Oct 18 08:38:47 2017
From: ariel.pconline en gmail.com (ariel perez)
Date: Wed, 18 Oct 2017 08:38:47 -0300
Subject: [Lista ArNOG] RouterOS a 64bits
In-Reply-To: <C0E7D7A9-8A4C-4289-AC72-F551CA9CAE91@privatel.com.ar>
References: <038601d34534$5f19ab10$1d4d0130$@fi.uba.ar>
	<C0E7D7A9-8A4C-4289-AC72-F551CA9CAE91@privatel.com.ar>
Message-ID: <CAOuEA76zz07+E8ST3ysZfMPdEj0+nqO1FV=vO46cC-xnNTHFww@mail.gmail.com>

fibercop sos un desatre 24 hs sin servicio

El 14/10/2017 19:38, "Nicolas Korten - Privatel SRL" <
nicolas.korten en privatel.com.ar> escribió:

> Buenas,
>
> he visto route servers llenar 64GB levantando peers bgp con muchas rutas y
> sus filtros (pero no era routeros)
> Pero para la mayoria de los casos no vas a necesitar tanto ram.
> Pero por ahi si trae mejoras pasar a 64 bits para operaciones logicas
> hechas en cpu.
>
> Saludos!!
>
> On October 14, 2017 6:35:34 PM GMT-03:00, "Fernando R. Soto" <
> fsoto en fi.uba.ar> wrote:
>>
>> El otro descubrí este articulo para pasar el RouterOS a 64bits
>>
>> http://srijit.com/how-to-run-mikrotik-64-bit-routeros-on-your-pc/
>>
>>
>>
>>
>>
>> Se les ocurre alguna aplicación de networking donde necesite utilizar
>> tanta memoria RAM?
>>
>>
>>
>>
>>
>> Slds.
>>
>>
>>
>> [image: http://srijit.com/wp-content/uploads/2017/03/Screenshot_29.jpg]
>>
>>
>>
>> Slds.
>>
>>
> --
> Dipl.-Ing. Nicolas Korten
> Gerencia
>
> Privatel S.R.L. | Rivadavia 571 | R8400ICE San Carlos de Bariloche |
> Argentina
> http://privatel.com.ar | Phone +54 2944 421793 |
> nicolas.korten en privatel.com.ar
>
> _______________________________________________
> Lista mailing list
> Lista en arnog.com.ar
> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>
>
------------ próxima parte ------------
Se ha borrado un adjunto en formato HTML...
URL: <http://mailmancabase.interdotnet.com.ar/pipermail/lista/attachments/20171018/2e044059/attachment.html>

From ftorres en itc.com.ar  Wed Oct 18 08:45:07 2017
From: ftorres en itc.com.ar (Federico D. Torres)
Date: Wed, 18 Oct 2017 08:45:07 -0300 (ART)
Subject: [Lista ArNOG] RouterOS a 64bits
In-Reply-To: <CAOuEA76zz07+E8ST3ysZfMPdEj0+nqO1FV=vO46cC-xnNTHFww@mail.gmail.com>
References: <038601d34534$5f19ab10$1d4d0130$@fi.uba.ar>
	<C0E7D7A9-8A4C-4289-AC72-F551CA9CAE91@privatel.com.ar>
	<CAOuEA76zz07+E8ST3ysZfMPdEj0+nqO1FV=vO46cC-xnNTHFww@mail.gmail.com>
Message-ID: <712079469.10412159.1508327107217.JavaMail.zimbra@itc.com.ar>

Perdón, pero ¿qué tiene que ver Fibercorp con "RouterOS a 64bits", y con Arnog? 

Sería una lástima que una lista tan interesante como esta se ensucie de off-topics. 
F. 


----- Mensaje original -----

De: "ariel perez" <ariel.pconline en gmail.com> 
Para: lista en arnog.com.ar 
Enviados: Miércoles, 18 de Octubre 2017 8:38:47 
Asunto: Re: [Lista ArNOG] RouterOS a 64bits 

fibercop sos un desatre 24 hs sin servicio 

El 14/10/2017 19:38, "Nicolas Korten - Privatel SRL" < nicolas.korten en privatel.com.ar > escribió: 



Buenas, 

he visto route servers llenar 64GB levantando peers bgp con muchas rutas y sus filtros (pero no era routeros) 
Pero para la mayoria de los casos no vas a necesitar tanto ram. 
Pero por ahi si trae mejoras pasar a 64 bits para operaciones logicas hechas en cpu. 

Saludos!! 

On October 14, 2017 6:35:34 PM GMT-03:00, "Fernando R. Soto" < fsoto en fi.uba.ar > wrote: 
<blockquote>



El otro descubrí este articulo para pasar el RouterOS a 64bits 





http://srijit.com/how-to-run-mikrotik-64-bit-routeros-on-your-pc/ 

















Se les ocurre alguna aplicación de networking donde necesite utilizar tanta memoria RAM? 

















Slds. 























Slds. 








-- 
Dipl.-Ing. Nicolas Korten 
Gerencia 

Privatel S.R.L. | Rivadavia 571 | R8400ICE San Carlos de Bariloche | Argentina 
http://privatel.com.ar | Phone +54 2944 421793 | nicolas.korten en privatel.com.ar 

_______________________________________________ 
Lista mailing list 
Lista en arnog.com.ar 
http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista 


</blockquote>


_______________________________________________ 
Lista mailing list 
Lista en arnog.com.ar 
http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista 

------------ próxima parte ------------
Se ha borrado un adjunto en formato HTML...
URL: <http://mailmancabase.interdotnet.com.ar/pipermail/lista/attachments/20171018/0095fa52/attachment-0001.html>
------------ próxima parte ------------
A non-text attachment was scrubbed...
Name: itc_pie_email_federico_torres_original_2015_05_14-01.jpg
Type: image/jpeg
Size: 52446 bytes
Desc: no disponible
URL: <http://mailmancabase.interdotnet.com.ar/pipermail/lista/attachments/20171018/0095fa52/attachment-0001.jpg>

From julio1970m en gmail.com  Wed Oct 18 13:03:56 2017
From: julio1970m en gmail.com (Julio Ricardo)
Date: Wed, 18 Oct 2017 13:03:56 -0300
Subject: [Lista ArNOG] Vulnerabilidad Wi-Fi WPA2 / Update de seguridad
	equipos Unifi Ubiquiti
Message-ID: <CAAY809BO0+SRj6r-eu89NKypJhGWw6BbnmAurGXQDuvNUn7+3w@mail.gmail.com>

http://www.laufquen.com.ar/importante-unifi-vulnerabilidad-wpa2/
------------ próxima parte ------------
Se ha borrado un adjunto en formato HTML...
URL: <http://mailmancabase.interdotnet.com.ar/pipermail/lista/attachments/20171018/6f1a92f5/attachment.html>

From carlosm3011 en gmail.com  Wed Oct 18 14:45:05 2017
From: carlosm3011 en gmail.com (Carlos M. Martinez)
Date: Wed, 18 Oct 2017 14:45:05 -0300
Subject: [Lista ArNOG] [lacnog] Bye Bye WPA2 ! (una nota corta de su
 chair..)
In-Reply-To: <CAPQhFbdtKvJ7npJLi22E2tj5jSe37xe0TLpEG5a2T0G1kOCy8A@mail.gmail.com>
References: <CAOBNHyfqzXTi+Ub0_z3LvXeMjob0Ks98+cUT167VMtg=tKb8uA@mail.gmail.com>
	<CAK7AuPf-xg4xwbHkSQd+iMEcodTWuGEm3JCQ463xunr=LVcGEw@mail.gmail.com>
	<CAFEzcLZ-13pGqa=LLf5Z6TNdniqmD-2ebeqTX+W5XQ2EjAApcw@mail.gmail.com>
	<CAPQhFbdtKvJ7npJLi22E2tj5jSe37xe0TLpEG5a2T0G1kOCy8A@mail.gmail.com>
Message-ID: <31DE13E1-ED3B-4398-9F7F-74C48FAD733E@gmail.com>

Este es un excelente ejemplo de por que debemos hacer defensa en capas.

Aquello de ?que me importa el dnssec si igual uso https, o que me 
importa el ipsec si igual uso wpa2? claramente no se sostiene.

Necesitamos de la seguridad en todas las capas y en todos los elementos 
de la arquitectura de red.

s2

Carlos

On 18 Oct 2017, at 0:21, Ivan Chapero wrote:

> *Una aclaración importante. FYI:*
>
> *------------------------------------------------*
>
> *Clarification for the WPA2 Vulnerabilities:*
> 1. Please have a look at the article <https://www.krackattacks.com/> 
> published
> by Mathy Vanhoef and pay attention to the QA listed at the end:
> *Q: What if there are no security updates for my router?*
> *A:* Our main attack is against the 4-way handshake, and does not 
> exploit
> access points, but instead targets clients. So it might be that your 
> router
> does not require security updates. We strongly advise you to contact 
> your
> vendor for more details. In general though, you can try to mitigate 
> attacks
> against routers and access points by disabling client functionality 
> (which
> is for example used in repeater modes) and disabling 802.11r (fast
> roaming). For ordinary home users, your priority should be updating 
> clients
> such as laptops and smartphones.
>
> From the QA, we can get clear that the vulnerabilities only targets 
> the
> devices act as Wi-Fi clients, including laptops, smartphones, range
> extenders working in RE mode, routers/gateways working in RE/WDS/WISP 
> mode.
> Thus if you're using the following TP-Link products:
> # All powerline adapters
> # All mobile Wi-Fi products
> # Routers and gateways working on default Router mode or Access Point 
> mode
> # Range extenders working in AP mode
> You will not be affected by the WPA2 vulnerabilities. What you need to 
> do
> is updating your Wi-Fi clients.
>
> 2. Conditions of vulnerability occurrence:
> # Physical limit: The attack only happens when an attacker is in 
> physical
> proximity to and within wireless range of your network.
> # Time limit: The attack only happens when connecting or reconnecting 
> to
> Wi-Fi network.
>
> 2017-10-17 9:54 GMT-03:00 Maximiliano Ariel Villalba Galeano <
> max.a.villalba.galeano en gmail.com>:
>
>> https://www.kb.cert.org/vuls/byvendor?searchview&Query=
>> FIELD+Reference=228519&SearchOrder=4
>>
>> Listado de equipos afectados.
>>
>> 2017-10-17 3:03 GMT-04:00 Nicolas Cortes <ncort3s en gmail.com>:
>>
>>> FYI
>>>
>>> ---------- Forwarded message ---------
>>> From: Rogerio Mariano <rsouza.rjo en gmail.com>
>>> Date: Mon, Oct 16, 2017 at 23:13
>>> Subject: [lacnog] Bye Bye WPA2 ! (una nota corta de su chair..)
>>> To: Latin America and Caribbean Region Network Operators Group <
>>> lacnog en lacnic.net>
>>>
>>>
>>>
>>>
>>> https://www.krackattacks.com/
>>> _______________________________________________
>>> LACNOG mailing list
>>> LACNOG en lacnic.net
>>> https://mail.lacnic.net/mailman/listinfo/lacnog
>>> Cancelar suscripcion: https://mail.lacnic.net/mailman/options/lacnog
>>>
>>> _______________________________________________
>>> Lista mailing list
>>> Lista en arnog.com.ar
>>> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>>>
>>>
>>
>> _______________________________________________
>> Lista mailing list
>> Lista en arnog.com.ar
>> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>>
>>
>
>
> -- 
>
> *Ivan ChaperoÁrea Técnica y Soporte*
> Fijo: 03464-470280 (interno 535) | Móvil:  03464-155-20282  | Skype 
> ID:
> ivanchapero
> --
> GoDATA Banda Ancha - CABLETEL S.A. | Av. 9 de Julio 1163 - 2183 - 
> Arequito
> - Santa Fe - Argentina


> _______________________________________________
> Lista mailing list
> Lista en arnog.com.ar
> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
------------ próxima parte ------------
Se ha borrado un adjunto en formato HTML...
URL: <http://mailmancabase.interdotnet.com.ar/pipermail/lista/attachments/20171018/3cbb593b/attachment.html>

From info en ivanchapero.com.ar  Thu Oct 19 09:54:50 2017
From: info en ivanchapero.com.ar (Ivan Chapero)
Date: Thu, 19 Oct 2017 09:54:50 -0300
Subject: [Lista ArNOG] [lacnog] Bye Bye WPA2 ! (una nota corta de su
	chair..)
In-Reply-To: <31DE13E1-ED3B-4398-9F7F-74C48FAD733E@gmail.com>
References: <CAOBNHyfqzXTi+Ub0_z3LvXeMjob0Ks98+cUT167VMtg=tKb8uA@mail.gmail.com>
	<CAK7AuPf-xg4xwbHkSQd+iMEcodTWuGEm3JCQ463xunr=LVcGEw@mail.gmail.com>
	<CAFEzcLZ-13pGqa=LLf5Z6TNdniqmD-2ebeqTX+W5XQ2EjAApcw@mail.gmail.com>
	<CAPQhFbdtKvJ7npJLi22E2tj5jSe37xe0TLpEG5a2T0G1kOCy8A@mail.gmail.com>
	<31DE13E1-ED3B-4398-9F7F-74C48FAD733E@gmail.com>
Message-ID: <CAPQhFbdGi38AscU0_9CRMcWsixpvPO=MzesUAfby-Z1Y-XofWA@mail.gmail.com>

Comparto Carlos,
pero esto escapa un poco de lo que el usuario pueda hacer "preventivamente"
dado que el protocolo vulnerado al estar presente en dispositivos algo más
embebidos, por ej un smartTV (ni que hablar algún IoT), no tenes la
interfaz de usuario suficiente para levantar VPNs o saber a ciencia cierta
si estas navegando por HTTPS.

Y lo peor que toda esa fragmentación de firmware/kernels/SO posiblemente
nunca reciban un parche.


2017-10-18 14:45 GMT-03:00 Carlos M. Martinez <carlosm3011 en gmail.com>:

> Este es un excelente ejemplo de por que debemos hacer defensa en capas.
>
> Aquello de ?que me importa el dnssec si igual uso https, o que me importa
> el ipsec si igual uso wpa2? claramente no se sostiene.
>
> Necesitamos de la seguridad en todas las capas y en todos los elementos de
> la arquitectura de red.
>
> s2
>
> Carlos
>
> On 18 Oct 2017, at 0:21, Ivan Chapero wrote:
>
> *Una aclaración importante. FYI:*
>
> *------------------------------------------------*
>
> *Clarification for the WPA2 Vulnerabilities:*
> 1. Please have a look at the article <https://www.krackattacks.com/> published
> by Mathy Vanhoef and pay attention to the QA listed at the end:
> *Q: What if there are no security updates for my router?*
> *A:* Our main attack is against the 4-way handshake, and does not exploit
> access points, but instead targets clients. So it might be that your
> router does not require security updates. We strongly advise you to
> contact your vendor for more details. In general though, you can try to
> mitigate attacks against routers and access points by disabling client
> functionality (which is for example used in repeater modes) and disabling
> 802.11r (fast roaming). For ordinary home users, your priority should be
> updating clients such as laptops and smartphones.
>
> From the QA, we can get clear that the vulnerabilities only targets the
> devices act as Wi-Fi clients, including laptops, smartphones, range
> extenders working in RE mode, routers/gateways working in RE/WDS/WISP mode.
> Thus if you're using the following TP-Link products:
> # All powerline adapters
> # All mobile Wi-Fi products
> # Routers and gateways working on default Router mode or Access Point mode
> # Range extenders working in AP mode
> You will not be affected by the WPA2 vulnerabilities. What you need to do
> is updating your Wi-Fi clients.
>
> 2. Conditions of vulnerability occurrence:
> # Physical limit: The attack only happens when an attacker is in physical
> proximity to and within wireless range of your network.
> # Time limit: The attack only happens when connecting or reconnecting to
> Wi-Fi network.
>
> 2017-10-17 9:54 GMT-03:00 Maximiliano Ariel Villalba Galeano <
> max.a.villalba.galeano en gmail.com>:
>
>> https://www.kb.cert.org/vuls/byvendor?searchview&Query=FIELD
>> +Reference=228519&SearchOrder=4
>>
>> Listado de equipos afectados.
>>
>> 2017-10-17 3:03 GMT-04:00 Nicolas Cortes <ncort3s en gmail.com>:
>>
>>> FYI
>>>
>>> ---------- Forwarded message ---------
>>> From: Rogerio Mariano <rsouza.rjo en gmail.com>
>>> Date: Mon, Oct 16, 2017 at 23:13
>>> Subject: [lacnog] Bye Bye WPA2 ! (una nota corta de su chair..)
>>> To: Latin America and Caribbean Region Network Operators Group <
>>> lacnog en lacnic.net>
>>>
>>>
>>>
>>>
>>> https://www.krackattacks.com/
>>> _______________________________________________
>>> LACNOG mailing list
>>> LACNOG en lacnic.net
>>> https://mail.lacnic.net/mailman/listinfo/lacnog
>>> Cancelar suscripcion: https://mail.lacnic.net/mailman/options/lacnog
>>>
>>> _______________________________________________
>>> Lista mailing list
>>> Lista en arnog.com.ar
>>> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>>>
>>>
>>
>> _______________________________________________
>> Lista mailing list
>> Lista en arnog.com.ar
>> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>>
>>
>
>
> --
>
> *Ivan ChaperoÁrea Técnica y Soporte*
> Fijo: 03464-470280 (interno 535) | Móvil:  03464-155-20282  | Skype ID:
> ivanchapero
> --
> GoDATA Banda Ancha - CABLETEL S.A. | Av. 9 de Julio 1163 - 2183 - Arequito
> - Santa Fe - Argentina
>
>
>
>
>
>
>
> _______________________________________________
> Lista mailing list
> Lista en arnog.com.ar
> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>
>
> _______________________________________________
> Lista mailing list
> Lista en arnog.com.ar
> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>
>


-- 

*Ivan ChaperoÁrea Técnica y Soporte*
Fijo: 03464-470280 (interno 535) | Móvil:  03464-155-20282  | Skype ID:
ivanchapero
--
GoDATA Banda Ancha - CABLETEL S.A. | Av. 9 de Julio 1163 - 2183 - Arequito
- Santa Fe - Argentina
------------ próxima parte ------------
Se ha borrado un adjunto en formato HTML...
URL: <http://mailmancabase.interdotnet.com.ar/pipermail/lista/attachments/20171019/c92f291f/attachment-0001.html>

From carlosm3011 en gmail.com  Fri Oct 20 22:09:16 2017
From: carlosm3011 en gmail.com (Carlos M. Martinez)
Date: Fri, 20 Oct 2017 22:09:16 -0300
Subject: [Lista ArNOG] [lacnog] Bye Bye WPA2 ! (una nota corta de su
 chair..)
In-Reply-To: <CAPQhFbdGi38AscU0_9CRMcWsixpvPO=MzesUAfby-Z1Y-XofWA@mail.gmail.com>
References: <CAOBNHyfqzXTi+Ub0_z3LvXeMjob0Ks98+cUT167VMtg=tKb8uA@mail.gmail.com>
	<CAK7AuPf-xg4xwbHkSQd+iMEcodTWuGEm3JCQ463xunr=LVcGEw@mail.gmail.com>
	<CAFEzcLZ-13pGqa=LLf5Z6TNdniqmD-2ebeqTX+W5XQ2EjAApcw@mail.gmail.com>
	<CAPQhFbdtKvJ7npJLi22E2tj5jSe37xe0TLpEG5a2T0G1kOCy8A@mail.gmail.com>
	<31DE13E1-ED3B-4398-9F7F-74C48FAD733E@gmail.com>
	<CAPQhFbdGi38AscU0_9CRMcWsixpvPO=MzesUAfby-Z1Y-XofWA@mail.gmail.com>
Message-ID: <C890BF48-2418-48AD-95D9-941A2BF2F588@gmail.com>

Hola!

Sin duda esta no es una situación ideal, pero si no tuviéramos defensa 
en capas claramente estaríamos peor.

Buen finde !

/Carlos

On 19 Oct 2017, at 9:54, Ivan Chapero wrote:

> Comparto Carlos,
> pero esto escapa un poco de lo que el usuario pueda hacer 
> "preventivamente"
> dado que el protocolo vulnerado al estar presente en dispositivos algo 
> más
> embebidos, por ej un smartTV (ni que hablar algún IoT), no tenes la
> interfaz de usuario suficiente para levantar VPNs o saber a ciencia 
> cierta
> si estas navegando por HTTPS.
>
> Y lo peor que toda esa fragmentación de firmware/kernels/SO 
> posiblemente
> nunca reciban un parche.
>
>
> 2017-10-18 14:45 GMT-03:00 Carlos M. Martinez <carlosm3011 en gmail.com>:
>
>> Este es un excelente ejemplo de por que debemos hacer defensa en 
>> capas.
>>
>> Aquello de ?que me importa el dnssec si igual uso https, o que me 
>> importa
>> el ipsec si igual uso wpa2? claramente no se sostiene.
>>
>> Necesitamos de la seguridad en todas las capas y en todos los 
>> elementos de
>> la arquitectura de red.
>>
>> s2
>>
>> Carlos
>>
>> On 18 Oct 2017, at 0:21, Ivan Chapero wrote:
>>
>> *Una aclaración importante. FYI:*
>>
>> *------------------------------------------------*
>>
>> *Clarification for the WPA2 Vulnerabilities:*
>> 1. Please have a look at the article <https://www.krackattacks.com/> 
>> published
>> by Mathy Vanhoef and pay attention to the QA listed at the end:
>> *Q: What if there are no security updates for my router?*
>> *A:* Our main attack is against the 4-way handshake, and does not 
>> exploit
>> access points, but instead targets clients. So it might be that your
>> router does not require security updates. We strongly advise you to
>> contact your vendor for more details. In general though, you can try 
>> to
>> mitigate attacks against routers and access points by disabling 
>> client
>> functionality (which is for example used in repeater modes) and 
>> disabling
>> 802.11r (fast roaming). For ordinary home users, your priority should 
>> be
>> updating clients such as laptops and smartphones.
>>
>> From the QA, we can get clear that the vulnerabilities only targets 
>> the
>> devices act as Wi-Fi clients, including laptops, smartphones, range
>> extenders working in RE mode, routers/gateways working in RE/WDS/WISP 
>> mode.
>> Thus if you're using the following TP-Link products:
>> # All powerline adapters
>> # All mobile Wi-Fi products
>> # Routers and gateways working on default Router mode or Access Point 
>> mode
>> # Range extenders working in AP mode
>> You will not be affected by the WPA2 vulnerabilities. What you need 
>> to do
>> is updating your Wi-Fi clients.
>>
>> 2. Conditions of vulnerability occurrence:
>> # Physical limit: The attack only happens when an attacker is in 
>> physical
>> proximity to and within wireless range of your network.
>> # Time limit: The attack only happens when connecting or reconnecting 
>> to
>> Wi-Fi network.
>>
>> 2017-10-17 9:54 GMT-03:00 Maximiliano Ariel Villalba Galeano <
>> max.a.villalba.galeano en gmail.com>:
>>
>>> https://www.kb.cert.org/vuls/byvendor?searchview&Query=FIELD
>>> +Reference=228519&SearchOrder=4
>>>
>>> Listado de equipos afectados.
>>>
>>> 2017-10-17 3:03 GMT-04:00 Nicolas Cortes <ncort3s en gmail.com>:
>>>
>>>> FYI
>>>>
>>>> ---------- Forwarded message ---------
>>>> From: Rogerio Mariano <rsouza.rjo en gmail.com>
>>>> Date: Mon, Oct 16, 2017 at 23:13
>>>> Subject: [lacnog] Bye Bye WPA2 ! (una nota corta de su chair..)
>>>> To: Latin America and Caribbean Region Network Operators Group <
>>>> lacnog en lacnic.net>
>>>>
>>>>
>>>>
>>>>
>>>> https://www.krackattacks.com/
>>>> _______________________________________________
>>>> LACNOG mailing list
>>>> LACNOG en lacnic.net
>>>> https://mail.lacnic.net/mailman/listinfo/lacnog
>>>> Cancelar suscripcion: 
>>>> https://mail.lacnic.net/mailman/options/lacnog
>>>>
>>>> _______________________________________________
>>>> Lista mailing list
>>>> Lista en arnog.com.ar
>>>> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>>>>
>>>>
>>>
>>> _______________________________________________
>>> Lista mailing list
>>> Lista en arnog.com.ar
>>> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>>>
>>>
>>
>>
>> --
>>
>> *Ivan ChaperoÁrea Técnica y Soporte*
>> Fijo: 03464-470280 (interno 535) | Móvil:  03464-155-20282  | Skype 
>> ID:
>> ivanchapero
>> --
>> GoDATA Banda Ancha - CABLETEL S.A. | Av. 9 de Julio 1163 - 2183 - 
>> Arequito
>> - Santa Fe - Argentina
>>
>>
>>
>>
>>
>>
>>
>> _______________________________________________
>> Lista mailing list
>> Lista en arnog.com.ar
>> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>>
>>
>> _______________________________________________
>> Lista mailing list
>> Lista en arnog.com.ar
>> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>>
>>
>
>
> -- 
>
> *Ivan ChaperoÁrea Técnica y Soporte*
> Fijo: 03464-470280 (interno 535) | Móvil:  03464-155-20282  | Skype 
> ID:
> ivanchapero
> --
> GoDATA Banda Ancha - CABLETEL S.A. | Av. 9 de Julio 1163 - 2183 - 
> Arequito
> - Santa Fe - Argentina


> _______________________________________________
> Lista mailing list
> Lista en arnog.com.ar
> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
------------ próxima parte ------------
Se ha borrado un adjunto en formato HTML...
URL: <http://mailmancabase.interdotnet.com.ar/pipermail/lista/attachments/20171020/46d029bb/attachment.html>

From iovoid4 en gmail.com  Tue Oct 17 15:25:51 2017
From: iovoid4 en gmail.com (iovoid)
Date: Tue, 17 Oct 2017 18:25:51 -0000
Subject: [Lista ArNOG] Notice of Infringement from
In-Reply-To: <008101d3476b$d0331dc0$70995940$@com.ar>
References: <353F58AC-24DE-4FA9-945A-7149B4111BA0@gmail.com>
	<000001d34743$97dde900$c799bb00$@fi.uba.ar>
	<BN6PR03MB2753480C2D2A06F81A62F7B8BB4C0@BN6PR03MB2753.namprd03.prod.outlook.com>
	<008101d3476b$d0331dc0$70995940$@com.ar>
Message-ID: <CAHuSb7Tya16mJ4egS8fPOSfrRU25+bfUc14Thhrz27qiozuM3A@mail.gmail.com>

Primero fijate que el mail no sea falso (que la firma PGP (en la parte de
abajo que no copiaste) sea correcta (https://www.ip-echelon.com/pgp-keys/),
y que el mail venga del dominio correcto)

Después (si es legitimo) contactas (lo reenvias) al cliente que tiene esa
IP (168.194.216.196) y/o bloqueas ese puerto, y respondes diciendo que
tomaste medidas al respecto

On Tue, Oct 17, 2017 at 2:17 PM, Ventas Impulsar <
ventas en impulsarinternet.com.ar> wrote:

> Buenas tardes,
>
> Es la primera vez que me llega un mensaje de estetipo, como se procede?
> Desde ya muchas gracias.
>
>
>
> -----BEGIN PGP SIGNED MESSAGE-----
>
> Hash: SHA1
>
>
>
> To: ventas en IMPULSARINTERNET.COM.AR
>
>
>
> DATE: 2017-10-16
>
>
>
> CASE ID: 764dc0b83d870e944909
>
>
>
> Dear Impulsar Internet:
>
>
>
> We are contacting you on behalf of The Cartoon Network, Inc. with location
> at:
>
>
>
> The Cartoon Network, Inc.
>
> 1050 Techwood Drive, NW
>
> Atlanta GA 30318
>
>
>
> Under penalty of perjury we assert that IP-Echelon Pty. Ltd. is authorized
> to act on behalf of The Cartoon Network, Inc., who is the copyright owner
> and/or owner of exclusive rights in such content identified below.
>
>
>
> We have become aware that an individual has utilized the IP address
> 168.194.216.196 at the recorded date and time below to download, host,
> and/or facilitate the downloading and/or streaming of video content that is
> exclusively owned by The Cartoon Network, Inc.. Such unauthorized
> distribution of The Cartoon Network, Inc. content without the express
> written authorization of The Cartoon Network, Inc. constitutes copyright
> infringement. This conduct may also violate the laws of other countries,
> international law, and/or treaty obligations.
>
>
>
> We have a good faith belief that the use of the copyrighted material
> identified below is not authorized by The Cartoon Network, Inc., its agent,
> or the law.
>
>
>
> The title in question: Rick and Morty
>
>
>
> As the owner of the IP address, we request that you immediately assist in
> removing and disabling access to the infringing material from your network.
> Additionally we request that you contact the subscriber who has engaged in
> the conduct described above and take further steps to prevent the
> subscriber from unauthorized future use and sharing of The Cartoon Network,
> Inc. content.
>
>
>
> We state, under penalty of perjury, that the information in this
> notification is accurate and that we are authorized to act on behalf of the
> owner of the exclusive right that is allegedly infringed herein.
>
>
>
> Nothing in this notice shall operate as a waiver of any rights, claims, or
> remedies available to The Cartoon Network, Inc. with respect to the
> infringement alleged herein. All such rights, claims, and remedies are
> hereby expressly reserved.
>
>
>
> We appreciate your attention to and cooperation with this notice. Please
> provide a prompt response specifying actions you have taken to resolve this
> matter.
>
>
>
> Do not hesitate to contact me with any questions. You may reach me via
> email at p2p en copyright.ip-echelon.com.
>
>
>
> Regards,
>
>
>
> Adrian Leatherland
>
> CEO
>
> IP-Echelon
>
> Email: p2p en copyright.ip-echelon.com
>
> Address: 7083 Hollywood Blvd., Los Angeles, CA 90028, United States
>
>
>
> - ------------- Infringement Details ----------------------------------
>
> Title:        Rick and Morty
>
> Timestamp:    2017-10-11T15:09:22Z
>
> IP Address:   xxx.xxx.xxx.xxx
>
> Port:         2536
>
> Type:         BitTorrent
>
> Torrent Hash: f4b98f523d40c6bce32c45ff837822a6a41c2f2e
>
> Filename:     Rick.and.Morty.S03E09.HDTV.x264-BATV[rarbg]
>
> Filesize:     122 MB
>
> - ---------------------------------------------------------------------
>
> _______________________________________________
> Lista mailing list
> Lista en arnog.com.ar
> http://mailmancabase.interdotnet.com.ar/mailman/listinfo/lista
>
>
------------ próxima parte ------------
Se ha borrado un adjunto en formato HTML...
URL: <http://mailmancabase.interdotnet.com.ar/pipermail/lista/attachments/20171017/edef6535/attachment.html>