I think this sounds like a good idea as someone who is also very much interested in security.

However I think the implementation details should be discussed in the db-wg as opposed to the aa-wg.

-Cynthia

On Tue, Jun 7, 2022, 13:46 Gert Doering <gert@space.net> wrote:
Hi,

On Tue, Jun 07, 2022 at 12:36:10PM +0000, Ángel González Berdasco via anti-abuse-wg wrote:
> abuse-c: GROBECKER-ABUSE
>
> and the GROBECKER-ABUSE object:
> abuse-mailbox: general@abuse.grobecker.info
> abuse-mailbox-vulnerable: vulnerability-reports@abuse.grobecker.info
> abuse-mailbox-fraud: fraudabuses@abuse.grobecker.info
>
> where 'vulnerable', 'fraud', etc. are the machine readable tags defined
> in the RSIT for the values in the classification column.
[..]
> Does something like this seem sensible to others?

>From a LIR perspective, this sounds like an interesting and quite
workable idea (... it would need some easily-findable help texts that
explains what these terms stand for, and which one to use for what :-) ).

I think teaching this to CERTs would also be doable... ;-)

"whois" would need some help (as it today only returns one abuse e-mail),
but that's implementation....

$ whois 195.30.0.1
% Abuse contact for '195.30.0.0 - 195.30.0.255' is 'abuse@space.net'

Gert Doering
        -- NetMaster
--
have you enabled IPv6 on something today...?

SpaceNet AG                      Vorstand: Sebastian v. Bomhard, Michael Emmer
Joseph-Dollinger-Bogen 14        Aufsichtsratsvors.: A. Grundner-Culemann
D-80807 Muenchen                 HRB: 136055 (AG Muenchen)
Tel: +49 (0)89/32356-444         USt-IdNr.: DE813185279
--

To unsubscribe from this mailing list, get a password reminder, or change your subscription options, please visit: https://lists.ripe.net/mailman/listinfo/anti-abuse-wg