North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: On-going Internet Emergency and Domain Names (kill this thread)

  • From: Petri Helenius
  • Date: Sun Apr 01 02:46:29 2007


Jeff Shultz wrote:


We're looking at the alligators surrounding us. Gadi is trying to convince us to help him in draining the swamp (which may indeed be a positive thing in the long run).

Does that sound about right?

If you drain the swamp the hippo's will be very angry and run at you.

The problem argued here is heavily dependent on how long it would take for the bad guys to adapt. I would assume it's less time than it would take to deploy a global system for DNS abuse mitigation. So "fixing" a single protocol would not take us any significant distance because the next thing would be either:
- XML-RPC
- SOAP
- proprietary name-lookup system
- p2p botnet control
- etc...
(yes, blocking port 80 would be a good start)


I also have yet to observe measurable reduction of spam since more port 25 blocking has been supposedly taken into use.

This is a problem in the policy / edge. It's not something that should be solved in the core. It's immensely easier to blame somebody else (in the case of this thread, registries/registrars) for somebody elses problem (Windows users). It's significantly harder to fix the real issue. But I hope at least part of the loudmouths are up for that.

Pete