Hi all, On 2004-04-06 17:23:53 +0100, Niall O'Reilly wrote: [...]

Three things are needed:

- The inetnum:, inet6num:, person:, role: and mntner: objects are

mntner objects are specifically for authorisation/authentication purposes in the whois database. I would not put "abuse-mailbox:" into mntner objects, as this is irrelevant to mntner object's purpose. Let's keep the functions of object types clean and distinct. For "inetnum:"s and "inet6num:"s, would it make sense to put "abuse-c:" which will reference to a person/role object by NIC handle, thus removing the need to bulk-update the inet(6)num objects when the abuse mailbox changes? Also, it might make sense to add "abuse-mailbox:" into the new organisation object, that will be put into production soon. [...]

abuse-mailbox-attribute = "abuse-mailbox:" [ hint-string ] RFC-2822-addr-spec [ RFC-2622-comment ]

We have RPSL-comments already (anything after a hash '#'). Would it make sense to use it rather than RFC-2622-comment? My 2 cents, -engin -- Engin Gunduz RIPE NCC Software Engineering Department

On 7 Apr 2004, at 17:43, Engin Gunduz wrote:

mntner objects are specifically for authorisation/authentication purposes in the whois database. I would not put "abuse-mailbox:" into mntner objects, as this is irrelevant to mntner object's purpose. Let's keep the functions of object types clean and distinct.

You're right, of course. This overloads the mntner. We deliberated carefully over this, and formed the view that potential for rapid deployment is a strong enough pragmatic reason for doing this.

For "inetnum:"s and "inet6num:"s, would it make sense to put "abuse-c:" which will reference to a person/role object by NIC handle, thus removing the need to bulk-update the inet(6)num objects when the abuse mailbox changes?

Perhaps. We reckoned that the burden of initially populating existing inet*num's with a new link attribute would be an obstacle to rapid deployment.

Also, it might make sense to add "abuse-mailbox:" into the new organisation object, that will be put into production soon.

Definitely (or, as we tend to say in this part of the world, with a connotation of extra enthusiasm, "defny!"). Niall

On 7 Apr 2004, at 18:39, Marco d'Itri wrote:

What is the point? IRT records already work this way.

No. They are _designed_ to work this way. Whether they ever will on a significant scale depends on deployment. The statistics which Marco Hogeloon presented at Anti-Spam-47 suggest to me that IRT is not being enthusiastically deployed. It would be interesting to see how those statistics are evolving [hint -- MarcoH, are you there?]. The proposal from Randy and me is intended to offer a pragmatic, lightweight, and easily deployed means to advertise abuse contacts. Best regards, Niall O'Reilly

Hi, On Thu, Apr 08, 2004 at 10:07:54AM +0200, Jeroen Massar wrote:

Did you request an IRT object for your organisation and implement it? It only took me a couple of hours as I mentioned some time ago.

If you have a PGP infrastructure in place (or you have only *one* person reading PGP-encrypted abuse e-mails) it's easy. We haven't setup an IRT object for us yet, because there is no key we can put into the "encryption:" field without breaking internal processes. Abuse handling does *sign* outgoing mails, but those are personal keys, not group keys. As abuse@space.net runs through a ticketing system that doesn't know PGP (yet, the next generation will), having a mandatory encryption: field here is a major obstacle - and putting personal mailboxes and keys into the irt: object is not overly useful. We'd be quite happy to implement a "lightweight abuse-contact reference" solution. Gert Doering -- NetMaster -- Total number of prefixes smaller than registry allocations: 60210 (58081) SpaceNet AG Mail: netmaster@Space.Net Joseph-Dollinger-Bogen 14 Tel : +49-89-32356-0 80807 Muenchen Fax : +49-89-32356-299

For some reason I have this vision of Bart at the blackboard, writing I must not use comments to convey semantic payload I must not use comments to convey semantic payload I must not use comments to convey semantic payload I must not use comments to convey semantic payload I must not use comments to convey semantic payload I must not use comments to convey semantic payload I must not use comments to convey sema On 8 Apr 2004, at 11:05, Jeroen Massar wrote:

email: spam@example.com # SPAM email: ddos@example.com # DDOS

Niall

For some reason I have this vision of Bart at the blackboard, writing

I must not use comments to convey semantic payload I must not use comments to convey semantic payload I must not use comments to convey semantic payload I must not use comments to convey semantic payload I must not use comments to convey semantic payload I must not use comments to convey semantic payload I must not use comments to convey sema

professor wirth was ever so much more succinct randy

On Apr 12, MarcoH <marcoh@marcoh.net> wrote:

So what's the chance people will actually introduce enough IRT objects to make it usefull to look for them and at the same time enough toolwriters with some decent knowledge about the database to find the correct e-mail attribute ? I'd say it will be much higher than for abuse-mailbox given that it does not require to update each and every inetnum object.

-- ciao, | Marco | [5681 genR.Kq.r6lpg]

On Apr 08, Jeroen Massar <jeroen@unfix.org> wrote:

And what reasons are there to assume that the new proposal will be deployed all of a sudden? I think it should be obvious that abuse-c and abuse-mailbox attributes are much harder to deploy, because they require modifying every bottom level inetnum/inetnum6 object (which may even be protected by the mntner object of the customer).

I still think that the requirements for handling of abuse contacts have not been discussed enough. -- ciao, | Marco | [5613 diD/o8PEXAukY]

On Apr 08, MarcoH <marcoh@marcoh.net> wrote:

...

Did you request an IRT object for your organisation and implement it? It only took me a couple of hours as I mentioned some time ago.

That's not the problem. The problem is that the IRT-object will only carry the more generic e-mail attribute. From the operational experience I have, it looks like a lot of 'users' have trouble to distinguish all the e-mail atrributes and mail addresses in the whois output and find the correct one.

The abuse-mailbox: attribute should be clear to everybody and makes automation much easier for the generic user, who never read the database specs, but only looks at the raw whois output. I do not believe this is true. Many operators in the last years pointed at the correct address with detailed explanations in natural language (usually in english, possibly translated as well) and even ASCII art. Yet some users still send mail to the wrong address. I think that the issue here is more complex than "users do not know the semantics of the contacts of inetnum objects". If a well marked abuse@domain address is ignored, I can't see why abuse-c or even abuse-mailbox: would be easier to understand.

Clueless users do not use port 43 whois, they usually paste an IP address in some web-based gateway. If the requirement is to provide end users an idiot-proof way to look up the abuse contact for a domain then RIPE could as well install a CGI prominently linked from www.ripe.net which would first look for an IRT object, fall back to tech-c if needed and then report back only the relevant email address. -- ciao, | Marco | [5615 es25qV8fvhotg]

On Thu, 2004-04-08 at 13:58, Niall O'Reilly wrote:

On 8 Apr 2004, at 10:50, Marco d'Itri wrote:

...

Clueless users do not use port 43 whois

Not directly. They buy some shrink-wrapped software to run on their WinXX box, which has a clue-free default configuration which they never review.

Which makes every proposal useless as in that case you are assuming the current toolwrites don't know about IRT objects. Then for sure they are not going to accept implementing the suddenly new abuse-mailbox and a seperate spam-mailbox etc on every object too. Notez bien that adding spam/abuse/attack/questions-mailboxes can also be added to the irt object. Or if you really want to make it general, why not start thinking of a contact object, but wait, we have that already it is called person/role... If you don't expect toolwriters to implement irt objects, because many people, or at least the couple on this list, don't want to add that simple object to their inet[6]num's then you should not expect everybody to start adding abuse+spam-mailbox and all the others to _all_ the objects they own. Unfortunatly the people making up/defining the documents can't force ever tool writer in this world to do their job correctly and implementing it as expected, especially with such a loose "protocol" as whois that is different in the 4 current regions of this world. ARIN registry is imho a mess compared to the RIPE/APNIC registries and I think one can bet that ARIN region folks think the same about the RIPE/APNIC registries. But you might educate those toolwriters to do so, either way, if that would be to let them check irt objects or let them check abuse-mailboxes that is a difficult and long process. Taking into account that most RIPE members are ISP's and that they don't want to have a big burden updating these objects I still think that the irt object is the way to go, though as seen from the comments, for instance Gert's about the mandatory encryption field, there could be done some work there. Also adding a 'spam/abuse-email' field to the irt might be handy. But how many toolwriters will suddenly move to this new standard, that will probably only be active in the RIPE registry while most toolwriters are from the ARIN or APNIC regions... Greets, Jeroen

Rodney, Nice diagram! It says part of something I wanted to say, but misses a particular detail, and so masks a significant saving in the effort involved in deploying additional contact data in the current database. I'm not sure whether you were thinking of deployment, or rather of development work on tools and server. I'm thinking of deployment as the major task. Besides filling in this detail, I'm suggesting how we might quantify this effort. MarcoH, You may already have real numbers to use in place of my assumptions. On 8 Apr 2004, at 15:27, Rodney Tillotson wrote:

The IRT route has an extra step. Instead of

any one of the following:

inet[6]num -> e-mail address[es] inet[6]num -> person/role (which must already be present as admin-c or tech-c) -> e-mail inet[6]num -> mntner (which may already be present as mnt-by) -> e-mail

they have to do inet[6]num -> IRT(if present) -> e-mail address[es]

and must create the IRT if it's not already present (which involves updating the inet[6]num to link it to the relevant IRT),

and tool-writers have to add extra code. They will understand that.

It would be interesting to quantify the deployment effort necesssary to reach the point where every inet[6]num is associated, either directly or via linked objects, with a distinguished attribute (eg: abuse-mailbox). As a starting point, let's take (approximations to) MarcoH's RIPE-47 statistics. Number of inet[6]num objects: 10**6 Number of inet[6]num objects with IRT: 10**3 (not significant) I'll assume that the minimal set of person/role/mntner objects required to cover all 10**6 inet[6]num objects is of the order of 10**5, to allow for multiple inet[6]num objects under common management. This assumption can be validated (and corrected if unjustified: I haven't done the analysis) from the existing contents of the database. I'll further assume that 10**5 IRT objects will likewise be sufficient to cover all 10**6 inet[6]num objects. This assumption cannot be validated on the basis of current information, it seems reasonable to treat the eventual IRT population on the same basis as the actual P/R/M population. I'll also assume that any required tool and server development and/or modification effort is negligible compared to that required to deploy whatever new data is needed. Now I look at some possible methods for deploying the desired information in the database. Method A: Provide every inet[6]num _directly_ with a distinguished attribute indicating the appropriate abuse contact: 10**6 update transactions on the inet[6]num objects Method B: Provide every inet[6]num with an appropriately configured IRT object: 10**6 - 10**3 ( ~ 10**6 ) update transactions on inet[6]num objects 10**5 - 10**3 ( ~ 10**5 ) _new_ IRT's to be created Method C: Provide an _existing_ contact object (person/role/mntner/IRT (even!)) of every inet[6]num object with a distinguished attribute indicating the appropriate abuse contact: 10**5 update transactions on _existing_ contact objects I understand why nobody likes method A. I think I hear people declaring a preference for method B over method C. I'm missing something here; who can help? MarcoH has explained the advantage of a distinguished attribute (abuse-mailbox or, as he originally suggested, just plain abuse) over a common attribute (specifically: e-mail) which takes on extra semantics in the particular context of belonging to an IRT object. I don't think I need to his excellent explanation. Best regards, Niall O'Reilly

Marco, Of course my initial assumptions are crude ones. I believe we have to move the discussion from principled polemics to quantities on which we can base a decision. Can you quantify what will still be required after taking advantage of the kind of aggregation you suggest ? If not, are there any other volunteers out there? Best regards, Niall O'Reilly On 13 Apr 2004, at 16:59, Marco d'Itri wrote:

...

Method B: Provide every inet[6]num with an appropriately configured IRT object: This is not a good assumption because not all inet[6]num objects need to be updated to be protected, only the parent object does. Look at IRT-SIXXS and at how many objects it protects for a simple example.

On 13 Apr 2004, at 18:00, Marco d'Itri wrote:

On Apr 13, Niall O'Reilly <niall.oreilly@ucd.ie> wrote:

...

Can you quantify what will still be required after taking advantage of the kind of aggregation you suggest ? I think that a much better estimate is the number of ALLOCATED-BY-RIR (for inet6num), ALLOCATED PA and ASSIGNED PI (for inetnum) objects.

After the top level objects will have a contact, detailed data can be added by customers and the need for this will be regulated by the usual ISP-customer relationships.

Fine. You suggest a method for arriving at a better estimate of the scope of the discussion. I don't see that this changes the nature of the argument. Do you have a rough idea of what the new estimate is, numerically? More specifically, the following questions arise. Is the population of inet[6]num objects which are included in your improved estimate closer to 10**6, 10**5, 10**4, or even 10**3? Let's call the number, (for the sake of originality) "N". Of this population, how many already are associated with a person/role/ mntner/IRT object (PRMIO), and what is the minimal set of PRMIO's which will cover the population? This will give a good estimate of how many existing objects need to be updated with a DAIAC in order to cover the whole population of interest. Let's call this number "M". I expect that M is significantly less than N; it clearly can't be greater. Now, we can cover all N inet[6]num objects within our scope by applying just M updates to the related PRMIO's. I believe that this is the lower bound on the effort involved. The data needed to drive the planning for this effort is already in the database. Another approach would be, to choose an IRT-only solution. In this case, we let "P" be the number of inet[6]num objects within our scope which require a new IRT object, and "Q" the least number of such IRT objects needed to meet these requirements. It's useful to consider a factor "R" which represents the inertial tendency against the creation of the new IRT objects. This doesn't directly represent extra effort, but rather delay in achieving results, expressed in terms of effort-equivalent. Ideally, R = 1; in practice, R > 1. To estimate the effort involved, we count: Q new IRT objects, and P updates to existing inet[6]num objects, in order to link the new IRT's, and then reckon the total effort-equivalent as P + (R * Q). The quantity, P is available from the existing database. The set of new IRT objects has to be chosen before the number Q is available. However, Q cannot be greater than P. I suggest that the comparison of M with P+(R*Q) is a reasonable basis for deciding which way to proceed, and that the following table shows how this comparison should determine the actual decision. Since neither Q or R is yet available, I tentatively estimate Q * R = 1.5 * P. I know this isn't "accurate"; I'm pretty sure it's not "outrageous" either. M < P: PRMIO solution M > 2.5 * P: IRT-only solution P < M < 2.5 * P: Further study Best regards, Niall O'Reilly

On Apr 07, Niall O'Reilly <niall.oreilly@ucd.ie> wrote:

The proposal from Randy and me is intended to offer a pragmatic, lightweight, and easily deployed means to advertise abuse contacts. Even if I disagree I can see why some people think that abuse-mailbox is a good idea, but I still see no reason why abuse-c would be easier to deploy and to use than mnt-irt.

Some people voiced objections over the mandatory use of encryption, but if perceived to be a problem this could be easily changed. What about trying to fix irt objects instead of complicating the database with multiple features with overlapping scope (irt, abuse-mailbox, abuse-c)? -- ciao, | Marco | [5612 qudenW7V5vzds]