On 10/12/2025 17:11, Michele Neylon - Blacknight wrote:
the bulk of email addresses that I see in the DB are role accounts and they need to be public for a variety of reasons. As others have mentioned, for example, the abuse-c needs to be public. And I sincerely doubt that removing email addresses from anything run by RIPE will stop me or anyone else being spammed by IPv4 brokers etc.
Technically, the DB is required to give contact info to whoever wants to use it *then and there*. Allowing that info to have a *limited lifetime* would sour spammers' activities at least *some* (data would cease to be *collectible*). (Example implementation: LIR registers a secret key with RIPE DB, DB lookup causes a HMAC being computed from secret and timestamp and the result being folded into "plussed user addresses" (which Exchange supports these days, too), recipient can filter out HMACs according to whatever timeout period they prefer.) Kind regards, -- Jochen Bern Systemingenieur Binect GmbH https://www.binect.de/