Elad
You are entitled to your opinion however while what you describe might be attractive to you it is not attractive or anyway useful to companies such as ourselves.
Regards
Michele
--
Mr Michele Neylon
Blacknight Solutions
Hosting, Colocation & Domains
https://www.blacknight.com
https://blacknight.blog /
http://ceo.hosting/
Intl. +353 (0) 59 9183072
Direct Dial: +353 (0)59 9183090
-------------------------------
Blacknight Internet Solutions Ltd, Unit 12A,Barrowside Business Park, Sleaty
Road, Graiguecullen, Carlow,
R93 X265,Ireland Company No.: 370845
From: Elad Cohen <elad@netstyle.io>
Date: Wednesday 29 April 2020 at 17:07
To: Michele Neylon <michele@blacknight.com>, "anti-abuse-wg@ripe.net" <anti-abuse-wg@ripe.net>, Serge Droz <serge.droz@first.org>
Subject: Re: [anti-abuse-wg] 2019-04 Discussion Phase (Validation of "abuse-mailbox")
Michele,
Ripe have many many expenses in the ~30M euros yearly expenses that are not related to the core goals of Ripe and can be avoid.
To my opinion, this kind of anti-abuse system expense will be low and much more needed than many other expenses in the ~30M euros yearly expenses of Ripe.
There will be an API for the system with an option for email notifications just like abuse complaints are received in email messages now, so there will be no overhead to your staff. Regarding the
reporters - this overhead can protect from flood of automatic tools abuse complaints - if the reporter cannot fill a form and solve a captcha then the abuse complaint is not important enough to him.
Regarding the little to no value that you wrote, through this system there will be no spam of abuse, no spam to the abuse publicly visible email address, there will be an API to LIR's internal
systems for them to better track and to better handle abuse complaints, there will be tracking if abuse complaints were handled and public visibility of the percentage (of unhandled abuse complaints) of each LIR, in Ripe website.
Respectfully,
Elad
From: Michele Neylon - Blacknight <michele@blacknight.com>
Sent: Wednesday, April 29, 2020 6:50 PM
To: Elad Cohen <elad@netstyle.io>; anti-abuse-wg@ripe.net <anti-abuse-wg@ripe.net>; Serge Droz <serge.droz@first.org>
Subject: Re: [anti-abuse-wg] 2019-04 Discussion Phase (Validation of "abuse-mailbox")
Elad
I strongly oppose this concept.
It’s not up to RIPE to run this and we don’t pay RIPE fees to have them waste resources on this kind of thing.
It’s an extra overhead for RIPE, for our staff and for reporters and it would be bring little to no value.
Regards
Michele
--
Mr Michele Neylon
Blacknight Solutions
Hosting, Colocation & Domains
https://www.blacknight.com
https://blacknight.blog /
http://ceo.hosting/
Intl. +353 (0) 59 9183072
Direct Dial: +353 (0)59 9183090
-------------------------------
Blacknight Internet Solutions Ltd, Unit 12A,Barrowside Business Park, Sleaty
Road, Graiguecullen, Carlow,
R93 X265,Ireland Company No.: 370845
From:
anti-abuse-wg <anti-abuse-wg-bounces@ripe.net> on behalf of Elad Cohen <elad@netstyle.io>
Date: Wednesday 29 April 2020 at 12:18
To: "anti-abuse-wg@ripe.net" <anti-abuse-wg@ripe.net>, Serge Droz <serge.droz@first.org>
Subject: Re: [anti-abuse-wg] 2019-04 Discussion Phase (Validation of "abuse-mailbox")
What is this ?
"However, the community should report any situation to the RIPE NCC, which can provide (anonymous) periodical statistics to the community, which can take further decisions about that."
Ripe members are informers?
"divide and conquer" strategy ?
Abuse email addresses (just like any other email address) are being spammed, not only by non-relevant spammers but also by automatic useless services that are installed at servers that don't take
themselves any measure of proper configuration to avoid the automatic useless services.
To my opinion, Ripe should create its own anti-abuse system, each LIR will have login access to it (LIR will be able to choose to receive notifications through sms / email) and to mark each abuse
complaint as resolved or not (that system can also have an API so LIR's will be able to pull their abuse complaints), the main issue is that complaints to that system will not be able to be done automatically or by email - only manually by form filling with
captcha. (after the LIR will mark an abuse complain as resolved - the complainer will receive an email address also to confirm with him if issue is resolved or not, non-detailed statistics will be able to be displayed to the whole community - to see the percentage
of how many manual complaints weren't handled by each LIR)
---
Besides the above, I also believe that we as a community should not accept complainers which are not taking the most basic configuration actions to protect their systems, and would consider these
complaints as spam. In order for abuse complaints not to be abused.
Respectfully,
Elad
From: anti-abuse-wg on behalf of Serge Droz via anti-abuse-wg
Sent: Wednesday, April 29, 2020 11:22 AM
To: anti-abuse-wg@ripe.net
Subject: Re: [anti-abuse-wg] 2019-04 Discussion Phase (Validation of "abuse-mailbox")
Hi All
I think this is a good policy.
We can always find use cases where it fails, but it will help in some
cases.
And if some one is not able to answer an e-mail every six month, there
are probably underlying issues. Also the argument, that the bad guys
flood the mailbox is not really acceptable. It just means you can't
filter spam.
The proposal does not check how the reports are used. But it helps us to
enumerate organizations, that don't act, coming up with various excuses,
along the lines the best problems are some one else's problems, so let's
make it some on else's problem.
The fact is: Most mature organizations are perfectly capable of handling
such mail boxes, even if they have a high load.
Coming from the incident response side, I'm tiered of people constantly
telling me, that issues are not their problem
Best
Serge
On 28.04.20 16:01, Petrit Hasani wrote:
> Dear colleagues,
>
> A new version of RIPE policy proposal, 2019-04, "Validation of
> "abuse-mailbox"", is now available for discussion.
>
> This proposal aims to have the RIPE NCC validate "abuse-c:" information
> more often and introduces a new validation process.
>
> Most of the text has been rewritten following the last round of
> discussion and the proposal is now at version 3.0. Some key points in
> this version:
>
> - The abuse-mailbox should not force the sender to use a form
> - The validation process must ensure that the abuse mailbox is able to
> receive messages
> - The validation should happen at least every six months
>
> You can find the full proposal at:
>
https://www.ripe.net/participate/policies/proposals/2019-04
>
> As per the RIPE Policy Development Process (PDP), the purpose of this
> four-week Discussion Phase is to discuss the proposal and provide
> feedback to the proposer.
>
> At the end of the Discussion Phase, the proposer, with the agreement of
> the Anti-Abuse Working Group Chairs, will decide how to proceed with the
> proposal.
>
> We encourage you to review this proposal and send your comments to
> <anti-abuse-wg@ripe.net> before 27 May 2020.
>
> Kind regards,
> --
> Petrit Hasani
> Policy Officer
> RIPE NCC
>
>
>
>
>
--
Dr. Serge Droz
Chair of the FIRST Board of Directors
https://www.first.org