Dear all, On Fri, Mar 09, 2012 at 08:46:15AM +0100, Shane Kerr wrote:

Question to the room - does anyone have a similar technology that works with IPv6? AFAIK both denyhosts and fail2ban only work for IPv4. :(

We recently started using sshguard [1] that creates firewall (iptables) rules for offending IPv4 and IPv6 addresses. It's included in Debian (and probably other Linux distributions too). [1] http://www.sshguard.net/ Regards, j. -- j.hofmüller http://users.mur.at/thesix/

Dear anonymous Internet person,

Why do people on this list keep trying to ridicule people who don't give their full identity? Is there something wrong with anonymous comments? I know I brought up a number of issues and many spend their time diverting attention from the issues I raised by trying to attack me personally (a common tactic used in politics but should not be acceptable for technical discussions) instead of addressing the issues at hand. Maybe all comments should be anonymous so we don't have to put up with the people who post just to run their ads in the signature? Thank You

When the commenter is anonymous, it's not possible to know what experience he or she may have. This means the comment is automatically rendered less authoritative than a comment from >someone who's known to have enough experience to have a considered view of the subject at hand.

What it means is that you look at the person rather than the comment. If Charles Manson were to wake up on Friday and say "it is Friday" some people would argue that is incorrect because it came from Charles Manson. For instance, from your use of the word "trolls" and your link to some childish cartoon that does not address the issue I can tell to disregard your comments without knowing anything more about you. Many of these abuse people have been acting that way for years and they would sit on a newsgroup all day and make these same stupid comments year after year after year.

Many of these abuse people have been acting that way for years and they would sit on a newsgroup all day and make these same stupid comments year after year after year.

As with most of the abuse that is still discussed here, the same stupid people keep abusing it. Lots of the people here keep slapping abusers for the same things others do, over and over and over again. If that abusive behavior doesn't change, expect to be slapped. Don't expect different treatment for the same behavior on your end. So deal with it in the matter as it is (anonymously) or get on with the subject and participate on the list under your own name, Proby. Erik Bais

Uhmm. Would you please describe what RIPE can do on this particular issue? We are unable to control all the botnets. The only way to secure your network is to secure the boxes with technical, not administrative way. 09.03.2012 20:17 пользователь "russ@consumer.net" <russ@consumer.net> написал:

The original question was answered and the answered raised another issue. this is a discussion list and the point is to have a discussion and different issues often get raised along the way.

As far as I can tell nobody on this list was anointed as the decider over what is abuse and what is not. Further, nobody has appointed a worldwide "spanking" authority as far as I know. Some people think otherwise and they go around (sometimes arbitrarily) disrupting Internet resources because of their own personal beliefs and point of view rather than the needs of the users of the system.

There's rather a big difference between access to bulk whois data of any sort for security or other "internet community" related, NON COMMERCIAL purposes, versus bulk whois data to run a commercial service. On Thu, Mar 29, 2012 at 5:40 PM, russ@consumer.net <russ@consumer.net>wrote:

The proposal about the 5 C's sounds good except you also have to include whois access policies. If you can't get to the data easily and be able to use it it is of no good. Right now there is a complicated patchwork of whois access policies. Most of them were made up by a small group of people who really don't consider all the issues.

-- Suresh Ramasubramanian (ops.lists@gmail.com)

Russ First of all the SOCA 5 Cs document has absolutely nothing to do with WHOIS access or display. It's to with whois data validation and verification. It's also not even about IP address space and was actually aimed at domain names. With regard to your comments I have never had any issue accessing any whois data for the RIPE region (or any other region for that matter) If law enforcement or anyone else who was not using the data for commercial gain was having issues then I'm sure that it would be addressed. Regards Michele On 29 Mar 2012, at 13:10, russ@consumer.net wrote:

The proposal about the 5 C's sounds good except you also have to include whois access policies. If you can't get to the data easily and be able to use it it is of no good. Right now there is a complicated patchwork of whois access policies. Most of them were made up by a small group of people who really don't consider all the issues.

The biggest problem here is that RIPE claims to have a legal decision about whois access but they won't release it publicly. Nobody has provided a reason why this legal opinin has not been released to the community.

People try to spend time attacking me and saying my comments are not constructive, etc. This is being done to divert attention from the fact that RIPE won't release the information to the community.

RIPE needs to release this legal opinion to the community. There is no excuse for withholding it.

Thnak You

Mr Michele Neylon Blacknight Solutions ♞ Hosting & Colocation, Brand Protection ICANN Accredited Registrar http://www.blacknight.com/ http://blog.blacknight.com/ http://blacknight.biz http://mneylon.tel Intl. +353 (0) 59 9183072 US: 213-233-1612 Locall: 1850 929 929 Facebook: http://fb.me/blacknight Twitter: http://twitter.com/mneylon ------------------------------- Blacknight Internet Solutions Ltd, Unit 12A,Barrowside Business Park,Sleaty Road,Graiguecullen,Carlow,Ireland Company No.: 370845

Russ Reading your emails makes me think of this: "I learned long ago, never to wrestle with a pig. You get dirty, and besides, the pig likes it." (George Bernard Shaw) On 29 Mar 2012, at 13:38, russ@consumer.net wrote:

May people are complaining about RIPE whois access

Who?

as well as access to many domain registrars

Who? If you're going to make claims then you need to be able to back them up with evidence.

. You are not the only person using the Internet but your attitude is common among self-proclaimed abuse experts.

What exactly is my supposed attitude? And I've never proclaimed myself to be anything - at least I don't recall doing so

The only thing that matters is their person experience and not the many millions of Internet users.

There's nothing to stop you, or anyone else, from joining ICANN working groups

You personally sit on some of these ICANN whois committees

No I don't I'm involved in several ICANN working groups, but I'm not involved in any dealing with WHOIS.

and it is clear you are not considering all the relevant issues (see my ICANN comments to the whois and fake renewal committees

I did and they were completely irrelevant, as you used the ICANN public comments to complain about something related to your experiences with RIPE.

). The point is that a small group of people with limited experience sit on all these committees

Really? Is that based on fact or just your opinion?

and most users are locked out of the process

How are people "locked out"? When was the last time you tried to join an ICANN working group?

and people like you go around ridiculing people

That's borderline defamatory and if nothing else quite insulting

and trying to get them to drop out of the process.

Again - defamatory

The issue has not fully been addressed because RIPE will not release the legal opinions related to whois access (something you go out of your way to avoid addressing).

Last time I checked I don't work for RIPE

Thank You

Regards Michele Mr Michele Neylon Blacknight Solutions ♞ Hosting & Colocation, Brand Protection ICANN Accredited Registrar http://www.blacknight.com/ http://blog.blacknight.com/ http://blacknight.biz http://mneylon.tel Intl. +353 (0) 59 9183072 US: 213-233-1612 Locall: 1850 929 929 Facebook: http://fb.me/blacknight Twitter: http://twitter.com/mneylon ------------------------------- Blacknight Internet Solutions Ltd, Unit 12A,Barrowside Business Park,Sleaty Road,Graiguecullen,Carlow,Ireland Company No.: 370845

BTW - I was on an ICANN committe some years ago. I was on the Intellectual Property Constituency for short time many years ago. I was the only non-lawyer (my degrees are in physics and com sci) in the group and I gave them some needed technical information and I saw intellectual property issues from a different perspective than what I had seen before. thank you