Network Operations

SSHCure: SSH Intrusion Detection Using NetFlow and IPFIX

Luuk Hendriks

• 5 Jun 2014

• 4 min read

SSHCure is an Intrusion Detection System for SSH, developed at the University of Twente. It allows analysing large amounts of flow data and is the first IDS capable of identifying actual compromises. Being deployed in various networks, ranging from small Web-hosting companies to nation-wide backb…

4

2

Basic Evaluation of new IXP Peering Partners with RIPE Atlas and Zabbix

Daniel Gomez

• 26 May 2014

• 6 min read

In this article we explain how we used RIPE Atlas to evaluate new synaix's peering partners within an Internet Exchange Point and how this helped to improve our customer services.

0

4

Better Crypto - Applied Cryptography Hardening

Aaron Kaplan

• 22 May 2014

• 5 min read

This project aims at creating a simple, copy & paste-able HOWTO for secure crypto settings of the most common services (webservers, mail, ssh, etc.). It was presented at the recent RIPE 68 Meeting in Warsaw. For those of you who couldn't attend the meeting, here is summary of the talk.

4

2

Survey on Mitigation and Response of Network Attacks

Jessica Steinberger

• 21 May 2014

• 2 min read

Network-based attacks pose a strong threat to the Internet landscape. In my PhD I am investigating different approaches on attack mitigation and response. Yet, a clear understanding of how mitigation and response is performed in commercial networks is missing. Hence, this survey aims at gaining ins…

security

0

Sending and Receiving Emails over IPv6

Mirjam Kühne

• 10 Apr 2014

• 16 min read

The change to IPv6 creates new challenges to keep spam out of email. Because of the sheer size of the IPv6 space, it seems more efficient to build a domain-blocking and reputation system rather than an IP-blocking system. But how do we ensure emails over IPv6 have an authenticated domain?

ipv6

3

2

Report on IPv6 Security Test Methodology

Geert Jan de Groot

• 9 Apr 2014

• 3 min read

The Dutch Institute for Applied Scientific Research (TNO) and a number of Dutch security companies have recently published a report on IPv6 security test methodologies.

0

Modifications to the IP Analyser to Reflect New Policy

Alex Band

• 7 Apr 2014

• 5 min read

We are in the process of implementing the policy regarding Post Depletion Adjustment of Procedures (2013-03). In this article we will give an overview of the changes we are making to the IP Analyser web interface and API, so you can accommodate your scripts and workflow. We intend to implement thes…

ipv4
ipv6
tools
policy
+2
+1

0

BGP Leaks in Indonesia

Rene Wilhelm

• 4 Apr 2014

• 5 min read

In this article we are looking in some more detail at BGP leak in Indonesia and illustrate how RIPEstat visualisations can help to assess the impact.

0

Timeline for Phasing Out the Old TTM-based DNSMON

Romeo Zwart

• 3 Apr 2014

• 3 min read

The RIPE NCC announced a new version of DNSMON, available for testing by the public, in March 2014. We are now planning the removal of the old DNSMON.