What if a regional Internet Registry organization lost its authority?
Hi, This mail is a follow-up to my previous email "What to do when "abuse" email address does not work?" -- a short summary below: I found some spams sent to my company came from an IP address under Telefonica Peru. I sent a complaint email to the e-address found in WHOIS database, but it turned out that the e-address was fake! With the help of people here, I managed to contact "hostmaster" of LACNIC who sent an email to someone of Telefonica Peru to request them to update their abuse email address. That email was sent more than two weeks ago. I have just checked but the abuse email address is still not up-to-date. I started to wonder the real authority of LACNIC over ISP. Can a regional Internet Registry organization like LACNIC apply sanction/punishment to ISP if they don't follow International standards? Personally, I hope the answer is "yes". But what if these organizations actually have no real authority? That means the Internet is one step forward to anarchy? Hmm, some matter of reflection for our future.
Hi, On Wed, Feb 06, 2019 at 12:46:40PM +0100, Badguys Killer wrote:
That means the Internet is one step forward to anarchy?
What do you mean with "one step forward"? Gert Doering -- NetMaster -- have you enabled IPv6 on something today...? SpaceNet AG Vorstand: Sebastian v. Bomhard, Michael Emmer Joseph-Dollinger-Bogen 14 Aufsichtsratsvors.: A. Grundner-Culemann D-80807 Muenchen HRB: 136055 (AG Muenchen) Tel: +49 (0)89/32356-444 USt-IdNr.: DE813185279
Hi, This is just an issue in LACNIC, in all the regions we have similar situations, and I believe that if there is a mandatory abuse email, and it is not up-to-date, then the LIR is not following the policies, and consequently it is not following the service contract, and could get their resources retired, because all the services contracts in all the RIRs, if I’m not mistaken, enforce following the policies. I’ve a policy proposal on this in several regions (coming on in RIPE as well, just need some time to clean it up). Here is the LACNIC version in English: https://politicas.lacnic.net/politicas/detail/id/LAC-2018-5?language=en In APNIC already reached consensus and is being implemented. Regards, Jordi De: anti-abuse-wg <anti-abuse-wg-bounces@ripe.net> en nombre de Badguys Killer <badguyskiller@gmail.com> Fecha: miércoles, 6 de febrero de 2019, 12:47 Para: <anti-abuse-wg@ripe.net> Asunto: [anti-abuse-wg] What if a regional Internet Registry organization lost its authority? Hi, This mail is a follow-up to my previous email "What to do when "abuse" email address does not work?" -- a short summary below: I found some spams sent to my company came from an IP address under Telefonica Peru. I sent a complaint email to the e-address found in WHOIS database, but it turned out that the e-address was fake! With the help of people here, I managed to contact "hostmaster" of LACNIC who sent an email to someone of Telefonica Peru to request them to update their abuse email address. That email was sent more than two weeks ago. I have just checked but the abuse email address is still not up-to-date. I started to wonder the real authority of LACNIC over ISP. Can a regional Internet Registry organization like LACNIC apply sanction/punishment to ISP if they don't follow International standards? Personally, I hope the answer is "yes". But what if these organizations actually have no real authority? That means the Internet is one step forward to anarchy? Hmm, some matter of reflection for our future. ********************************************** IPv4 is over Are you ready for the new Internet ? http://www.theipv6company.com The IPv6 Company This electronic message contains information which may be privileged or confidential. The information is intended to be for the exclusive use of the individual(s) named above and further non-explicilty authorized disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited and will be considered a criminal offense. If you are not the intended recipient be aware that any disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited, will be considered a criminal offense, so you must reply to the original sender to inform about this communication and delete it.
On Wed, 6 Feb 2019, JORDI PALET MARTINEZ via anti-abuse-wg wrote:
Hi,
This is just an issue in LACNIC, in all the regions we have similar situations, and I believe that if there is a mandatory abuse email, and it is not up-to-date, then the LIR is not following the policies, and consequently it is not following the service contract, and could get their resources retired, because all the services contracts in all the RIRs, if I?m not mistaken, enforce following the policies.
In theory yes. But are you sure that really happens as a consequence of any policy non-compliance...? (i.e. revokation of resources, service contract termination)
I?ve a policy proposal on this in several regions (coming on in RIPE as well, just need some time to clean it up). Here is the LACNIC version in English:
https://politicas.lacnic.net/politicas/detail/id/LAC-2018-5?language=en
In APNIC already reached consensus and is being implemented.
Thanks for that work :-)) Regards, Carlos
Regards,
Jordi
De: anti-abuse-wg <anti-abuse-wg-bounces@ripe.net> en nombre de Badguys Killer <badguyskiller@gmail.com> Fecha: miércoles, 6 de febrero de 2019, 12:47 Para: <anti-abuse-wg@ripe.net> Asunto: [anti-abuse-wg] What if a regional Internet Registry organization lost its authority?
Hi,
This mail is a follow-up to my previous email "What to do when "abuse" email address does not work?" -- a short summary below:
I found some spams sent to my company came from an IP address under Telefonica Peru. I sent a complaint email to the e-address found in WHOIS database, but it turned out that the e-address was fake!
With the help of people here, I managed to contact "hostmaster" of LACNIC who sent an email to someone of Telefonica Peru to request them to update their abuse email address. That email was sent more than two weeks ago.
I have just checked but the abuse email address is still not up-to-date. I started to wonder the real authority of LACNIC over ISP.
Can a regional Internet Registry organization like LACNIC apply sanction/punishment to ISP if they don't follow International standards? Personally, I hope the answer is "yes".
But what if these organizations actually have no real authority? That means the Internet is one step forward to anarchy?
Hmm, some matter of reflection for our future.
********************************************** IPv4 is over Are you ready for the new Internet ? http://www.theipv6company.com The IPv6 Company
This electronic message contains information which may be privileged or confidential. The information is intended to be for the exclusive use of the individual(s) named above and further non-explicilty authorized disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited and will be considered a criminal offense. If you are not the intended recipient be aware that any disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited, will be considered a criminal offense, so you must reply to the original sender to inform about this communication and delete it.
Jordi There’s already a policy proposal to deal with this in the RIPE region which has been discussed on and off several times over the past 12+ months Regards Michele -- Mr Michele Neylon Blacknight Solutions Hosting, Colocation & Domains https://www.blacknight.com/ https://blacknight.blog/ Intl. +353 (0) 59 9183072 Direct Dial: +353 (0)59 9183090 Personal blog: https://michele.blog/ Some thoughts: https://ceo.hosting/ ------------------------------- Blacknight Internet Solutions Ltd, Unit 12A,Barrowside Business Park,Sleaty Road,Graiguecullen,Carlow,R93 X265,Ireland Company No.: 370845 From: anti-abuse-wg <anti-abuse-wg-bounces@ripe.net> on behalf of JORDI PALET MARTINEZ via anti-abuse-wg <anti-abuse-wg@ripe.net> Reply to: JORDI PALET MARTINEZ <jordi.palet@consulintel.es> Date: Wednesday 6 February 2019 at 12:04 To: "anti-abuse-wg@ripe.net" <anti-abuse-wg@ripe.net> Subject: Re: [anti-abuse-wg] What if a regional Internet Registry organization lost its authority? Hi, This is just an issue in LACNIC, in all the regions we have similar situations, and I believe that if there is a mandatory abuse email, and it is not up-to-date, then the LIR is not following the policies, and consequently it is not following the service contract, and could get their resources retired, because all the services contracts in all the RIRs, if I’m not mistaken, enforce following the policies. I’ve a policy proposal on this in several regions (coming on in RIPE as well, just need some time to clean it up). Here is the LACNIC version in English: https://politicas.lacnic.net/politicas/detail/id/LAC-2018-5?language=en In APNIC already reached consensus and is being implemented. Regards, Jordi De: anti-abuse-wg <anti-abuse-wg-bounces@ripe.net> en nombre de Badguys Killer <badguyskiller@gmail.com> Fecha: miércoles, 6 de febrero de 2019, 12:47 Para: <anti-abuse-wg@ripe.net> Asunto: [anti-abuse-wg] What if a regional Internet Registry organization lost its authority? Hi, This mail is a follow-up to my previous email "What to do when "abuse" email address does not work?" -- a short summary below: I found some spams sent to my company came from an IP address under Telefonica Peru. I sent a complaint email to the e-address found in WHOIS database, but it turned out that the e-address was fake! With the help of people here, I managed to contact "hostmaster" of LACNIC who sent an email to someone of Telefonica Peru to request them to update their abuse email address. That email was sent more than two weeks ago. I have just checked but the abuse email address is still not up-to-date. I started to wonder the real authority of LACNIC over ISP. Can a regional Internet Registry organization like LACNIC apply sanction/punishment to ISP if they don't follow International standards? Personally, I hope the answer is "yes". But what if these organizations actually have no real authority? That means the Internet is one step forward to anarchy? Hmm, some matter of reflection for our future. ********************************************** IPv4 is over Are you ready for the new Internet ? http://www.theipv6company.com The IPv6 Company This electronic message contains information which may be privileged or confidential. The information is intended to be for the exclusive use of the individual(s) named above and further non-explicilty authorized disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited and will be considered a criminal offense. If you are not the intended recipient be aware that any disclosure, copying, distribution or use of the contents of this information, even if partially, including attached files, is strictly prohibited, will be considered a criminal offense, so you must reply to the original sender to inform about this communication and delete it.
Received in reply to attempted criminal breakin: ------------------------------------------------------------------ hqs-ipabuse@chinaunicom.cn (hqs-ipabuse@chinaunicom.cn) Remote Server returned '554 5.2.2 mailbox full' Original message: ------------------------- From: Jeffrey Race <jrace@attglobal.net> To: "hqs-ipabuse@chinaunicom.cn" <hqs-ipabuse@chinaunicom.cn> Date: Sun, 10 Feb 2019 19:08:57 -0500 Reply-To: Jeffrey Race <jrace@post.harvard.edu> Subject: Hacker from your address space Dear Abuse Manager, Your user at 112.85.42.87 is repeatedly attempting to hack into our VPN router. Please shut the 112.85.42.87 account and report to legal authorities. I attach extract of log. Please advise the result of your action. Kind regards, Dr. Jeffrey Race, President Cambridge Electronics Laboratories 20 Chester Street, Somerville MA 02144-3005 Tel +1 617 629-2805 Fax +1 617 623-1882 Avoid spinal damage from computer use! Read "Cripples by Thirty?" <http://www.camblab.com/nugget/nugget.htm>
On Wed, 6 Feb 2019, Badguys Killer wrote:
Hi,
This mail is a follow-up to my previous email "What to do when "abuse" email address does not work?" -- a short summary below: I found some spams sent to my company came from an IP address under Telefonica Peru. I sent a complaint email to the e-address found in WHOIS database, but it turned out that the e-address was fake!
We have been doing that on a daily basis (complaints) and several bounce, yes. I can look for stats to see roughly what is the bounce %.
With the help of people here, I managed to contact "hostmaster" of LACNIC who sent an email to someone of Telefonica Peru to request them to update their abuse email address. That email was sent more than two weeks ago.
I have just checked but the abuse email address is still not up-to-date. I started to wonder the real authority of LACNIC over ISP.
Can a regional Internet Registry organization like LACNIC apply sanction/punishment to ISP if they don't follow International standards? Personally, I hope the answer is "yes".
*If* they have that on their policy set. I'm unaware about that.
But what if these organizations actually have no real authority? That means the Internet is one step forward to anarchy?
Or two, or three :/
Hmm, some matter of reflection for our future.
Oddly enough i think a lot of people feel very comfortable with all this anarchy :/ Regards, Carlos
participants (6)
-
Badguys Killer -
Carlos Friaças -
Gert Doering -
Jeffrey Race -
JORDI PALET MARTINEZ -
Michele Neylon - Blacknight