abuse contact responsibilities
Hi all, I like to raise questions about what kind of responsibilities an abuse contact should have and look forward for comments or experiences you have with other providers. We currently have a case with a bigger hosting company (mostly doing serverhousing) from the RIPE region. They have one abuse contact with one single abuse mailaddress for all IPs and rather big netblocks used for serverhousing. We had to find out, that the only thing they do with incoming abuse reports, is to forward them to their customers which actually rent the equipment. The don't try to find the security hole themself, the don't block outgoing email from intruded and misused servers, they do nothing but this forwarding. Surely, the end customers are not familiar with intrusion detection, have no UNIX/Windows skills and have no background knowledge, they can mostly work a servers control panel, and that's it. The provider is surely to lazy to insert an abuse contact for every customer he has. So: - should an ISP not try to work out any abuse problem together with the customer, if the abuse contact address is his ? - should he not be forced to enter different abuse contacts to RIPEs DB, if he does not want to work the cases ? - is there already any kind of regulation, what an abuse contact has to do ? - if not, should there be one ? Kind regards, Frank -- PHADE Software - PowerWeb http://www.powerweb.de Inh. Dipl.-Inform. Frank Gadegast mailto:frank@powerweb.de Schinkelstrasse 17 fon: +49 33200 52920 14558 Nuthetal OT Rehbruecke, Germany fax: +49 33200 52921 ======================================================================
Hi Frank, On Apr 27, 2013, at 3:17 am, Frank Gadegast <ripe-anti-spam-wg@powerweb.de> wrote: […]
I like to raise questions about what kind of responsibilities an abuse contact should have and look forward for comments or experiences you have with other providers.
Can you please define what you mean by responsibilities? Are you referring to some kind of contractually enforced minimum requirements or are you thinking of something closer to industry best practices? Thanks, Leo
Leo Vegoda wrote:
Hi Frank,
Hi Leo,
On Apr 27, 2013, at 3:17 am, Frank Gadegast<ripe-anti-spam-wg@powerweb.de> wrote:
[…]
I like to raise questions about what kind of responsibilities an abuse contact should have and look forward for comments or experiences you have with other providers.
Can you please define what you mean by responsibilities? Are you referring to some kind of contractually enforced minimum requirements or are you thinking of something closer to industry best practices?
Actually both and more :o) Soon all netblocks will have an abuse address, but now its time to ask whats happening after everybody could get abuse reports. What do ISPs on this list do with abuse reports they receive ? What is their experience with other ISPs not on this list when they are reporting abuse to those ? What actions are covered by current RIPE regulations (I guess simply none, just asking this to be sure) ? Are there any regulations in other countries already covering any kind of abuse action ? Is there any kind of discussion between RIPE and legal entities in specific countries or the industry to force any kind of abuse action ? What do all of you LIKE as regulations (addresses need to be valid, addresses should be able to receive mail (no mailbox full errors aso)) ? Should it be the NCCs job to deal with complaints about not working abuse addresses ? An example: we already collect a list of abuse ignorant ISPs and their abuse addresses, simply because its not worth delivering abuse reports to addresses that always fail ... Kind regards, Frank
Thanks,
Leo
-- Mit freundlichen Gruessen, -- PHADE Software - PowerWeb http://www.powerweb.de Inh. Dipl.-Inform. Frank Gadegast mailto:frank@powerweb.de Schinkelstrasse 17 fon: +49 33200 52920 14558 Nuthetal OT Rehbruecke, Germany fax: +49 33200 52921 ======================================================================
On Saturday 27 April 2013 12.17, Frank Gadegast wrote:
Hi all,
I like to raise questions about what kind of responsibilities an abuse contact should have and look forward for comments or experiences you have with other providers.
We currently have a case with a bigger hosting company (mostly doing serverhousing) from the RIPE region. They have one abuse contact with one single abuse mailaddress for all IPs and rather big netblocks used for serverhousing.
What provider is this ? Why do you hide their name ? <snip>
Kind regards, Frank -- PHADE Software - PowerWeb http://www.powerweb.de Inh. Dipl.-Inform. Frank Gadegast mailto:frank@powerweb.de Schinkelstrasse 17 fon: +49 33200 52920 14558 Nuthetal OT Rehbruecke, Germany fax: +49 33200 52921 ======================================================================
-- Peter Håkanson There's never money to do it right, but always money to do it again ... and again ... and again ... and again. ( Det är billigare att göra rätt. Det är dyrt att laga fel. )
participants (3)
-
Frank Gadegast -
Leo Vegoda -
peter h