Peace, Okay, should I be the first to step in and say that spamming all the LIR accounts with one's mind-boggingly stupid "technical solutions" that have no, 0, zero chances to be implemented on the Internet is completely irresponsible and grossly unacceptable behaviour? What does GDPR have to say about this? -- Töma
Hi Töma
What does GDPR have to say about this?
Unfortunately GDPR is totally ok with mind-boggingly stupid "technical solutions" as long as they don't contain PII ;-) Sorry, I'll stop now Cheers Serge -- Dr. Serge Droz Chair of the FIRST Board of Directors https://www.first.org
Hi, On Thu, May 07, 2020 at 11:18:09AM +0200, Serge Droz via anti-abuse-wg wrote:
What does GDPR have to say about this?
Unfortunately GDPR is totally ok with mind-boggingly stupid "technical solutions" as long as they don't contain PII ;-)
Sorry, I'll stop now
GDPR is not ok with spamming people's personal mail addresses for a NCC board voting campaign, though. Gert Doering -- NetMaster -- have you enabled IPv6 on something today...? SpaceNet AG Vorstand: Sebastian v. Bomhard, Michael Emmer Joseph-Dollinger-Bogen 14 Aufsichtsratsvors.: A. Grundner-Culemann D-80807 Muenchen HRB: 136055 (AG Muenchen) Tel: +49 (0)89/32356-444 USt-IdNr.: DE813185279
Töma Gavrichenkov wrote on 07/05/2020 10:03:
What does GDPR have to say about this?
You mean the Privacy and Electronic Communications Regulations / PECR. Spamming is prohibited under article 13. National transcriptions of this legislation have implemented this as a civil offence in some EU countries and a criminal offence in others. Note that this mainly applies to personal accounts, not role accounts. In any event, spamming using contact information harvested from the RIPE database is a violation of the terms of use of the RIPE Database:
https://www.ripe.net/manage-ips-and-asns/db/support/documentation/terms
specifically:
Users may not use the RIPE Database or the data contained therein for advertising, direct marketing, marketing research or similar purposes.
Nick
As Nick points out, the clearest violation, if there is one, would be the terms of service of the RIPE DB. There may be others, that would be somewhat up to your local laws and how you would like to pursue things. Should anyone believe they have been spammed by someone who they believe has harvested contact details from the DB, then they should contact abuse@ripe.net to report it. Handily there are rules in place for this, should it ever happen... Thanks, Brian Brian Nisbet Service Operations Manager HEAnet CLG, Ireland's National Education and Research Network 1st Floor, 5 George's Dock, IFSC, Dublin D01 X8N7, Ireland +35316609040 brian.nisbet@heanet.ie www.heanet.ie Registered in Ireland, No. 275301. CRA No. 20036270 ________________________________________ From: anti-abuse-wg <anti-abuse-wg-bounces@ripe.net> on behalf of Nick Hilliard <nick@foobar.org> Sent: Thursday 7 May 2020 10:26 To: Töma Gavrichenkov Cc: anti-abuse-wg@ripe.net Subject: Re: [anti-abuse-wg] Spamming LIR accounts CAUTION[External]: This email originated from outside of the organisation. Do not click on links or open the attachments unless you recognise the sender and know the content is safe. Töma Gavrichenkov wrote on 07/05/2020 10:03:
What does GDPR have to say about this?
You mean the Privacy and Electronic Communications Regulations / PECR. Spamming is prohibited under article 13. National transcriptions of this legislation have implemented this as a civil offence in some EU countries and a criminal offence in others. Note that this mainly applies to personal accounts, not role accounts. In any event, spamming using contact information harvested from the RIPE database is a violation of the terms of use of the RIPE Database:
https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ripe.n...
specifically:
Users may not use the RIPE Database or the data contained therein for advertising, direct marketing, marketing research or similar purposes.
Nick
Peace, On Thu, May 7, 2020 at 12:51 PM Brian Nisbet <brian.nisbet@heanet.ie> wrote:
Should anyone believe they have been spammed by someone who they believe has harvested contact details from the DB, then they should contact abuse@ripe.net to report it.
No. I mean, yes, but I also think it is necessary to raise the concern here, because either such spamming is allowed by RIPE policies (and then every other candidate has their rights to do the same), or it is forbidden (and thus one candidate has just obtained unfair advantage, for which there should be consequences). What does NCC have to say here? -- Töma
Ah, let me be very clear here... I was explicitly *not* saying that we shouldn't discuss such things on this list, with due care and attention. Apologies if it came across that way. I need to flag which hat I'm wearing better! I was saying "thankfully, we have a process for this". In the early part of any such incident I would certainly not expect an immediate response from the NCC with anything more than process, albeit as a member I would hope for something more later, as we have seen from them before. Brian (Who wasn't speaking as Co-Chair in his last email and is continuing not to in this one.) Brian Nisbet Service Operations Manager HEAnet CLG, Ireland's National Education and Research Network 1st Floor, 5 George's Dock, IFSC, Dublin D01 X8N7, Ireland +35316609040 brian.nisbet@heanet.ie www.heanet.ie Registered in Ireland, No. 275301. CRA No. 20036270 ________________________________________ From: Töma Gavrichenkov <ximaera@gmail.com> Sent: Thursday 7 May 2020 11:52 To: Brian Nisbet Cc: Nick Hilliard; anti-abuse-wg@ripe.net Subject: Re: [anti-abuse-wg] Spamming LIR accounts CAUTION[External]: This email originated from outside of the organisation. Do not click on links or open the attachments unless you recognise the sender and know the content is safe. Peace, On Thu, May 7, 2020 at 12:51 PM Brian Nisbet <brian.nisbet@heanet.ie> wrote:
Should anyone believe they have been spammed by someone who they believe has harvested contact details from the DB, then they should contact abuse@ripe.net to report it.
No. I mean, yes, but I also think it is necessary to raise the concern here, because either such spamming is allowed by RIPE policies (and then every other candidate has their rights to do the same), or it is forbidden (and thus one candidate has just obtained unfair advantage, for which there should be consequences). What does NCC have to say here? -- Töma
Hej, Den 2020-05-07 kl. 12:52, skrev Töma Gavrichenkov:
and thus one candidate has just obtained unfair advantage, for which there should be consequences).
I doubt this actually qualifies as *advantage*. I'm optimistic that the consequences will come with the election results. I'm afraid we're feeding the troll here. Cheers, Alexander
----- On May 7, 2020, at 2:26 AM, Nick Hilliard nick@foobar.org wrote: Hi, (And to you Töma, Peace :))
Töma Gavrichenkov wrote on 07/05/2020 10:03:
What does GDPR have to say about this?
You mean the Privacy and Electronic Communications Regulations / PECR. Spamming is prohibited under article 13.
National transcriptions of this legislation have implemented this as a civil offence in some EU countries and a criminal offence in others.
Yes, and as long as the sender is safe in a non-EU country, none of the EU "laws" will apply to them nor will they care. It's the same thing as saying bad things about Thailand's king while shouting from a pedestal on St. Petersburg Square. I don't know about you guys, but I have a very effective system for dealing with this kind of crap. It's called *plonk*. Thanks, Sabri
Hi, sorry, we have no policy to kick off dirty spammer from elections. I think it is time to do that. Let's do. Who can write a PDP document for this? 07.05.20 12:03, Töma Gavrichenkov пише:
Peace,
Okay, should I be the first to step in and say that spamming all the LIR accounts with one's mind-boggingly stupid "technical solutions" that have no, 0, zero chances to be implemented on the Internet is completely irresponsible and grossly unacceptable behaviour?
What does GDPR have to say about this?
-- Töma
Hi, On Thu, May 07, 2020 at 04:47:34PM +0300, Max Tulyev wrote:
sorry, we have no policy to kick off dirty spammer from elections. I think it is time to do that. Let's do.
Who can write a PDP document for this?
That's outside the PDP - it's a membership issue, so the relevant bits are the Terms and Conditions for the RIPE NCC association. Gert Doering -- NetMaster -- have you enabled IPv6 on something today...? SpaceNet AG Vorstand: Sebastian v. Bomhard, Michael Emmer Joseph-Dollinger-Bogen 14 Aufsichtsratsvors.: A. Grundner-Culemann D-80807 Muenchen HRB: 136055 (AG Muenchen) Tel: +49 (0)89/32356-444 USt-IdNr.: DE813185279
Max, The NCC Exec Board elections are governed by the NCC Articles of Association etc. It is through that vehicle that any changes would be made. The PDP is not a suitable vehicle for that. Certainly I think I can say with some certainty that it would not be something suitable for this WG, nor would I believe it would be suitable for any other. Brian Co-Chair, RIPE AA-WG Brian Nisbet Service Operations Manager HEAnet CLG, Ireland's National Education and Research Network 1st Floor, 5 George's Dock, IFSC, Dublin D01 X8N7, Ireland +35316609040 brian.nisbet@heanet.ie www.heanet.ie Registered in Ireland, No. 275301. CRA No. 20036270 ________________________________________ From: anti-abuse-wg <anti-abuse-wg-bounces@ripe.net> on behalf of Max Tulyev <mtl@netassist.ua> Sent: Thursday 7 May 2020 14:47 To: anti-abuse-wg@ripe.net Subject: Re: [anti-abuse-wg] Spamming LIR accounts CAUTION[External]: This email originated from outside of the organisation. Do not click on links or open the attachments unless you recognise the sender and know the content is safe. Hi, sorry, we have no policy to kick off dirty spammer from elections. I think it is time to do that. Let's do. Who can write a PDP document for this? 07.05.20 12:03, Töma Gavrichenkov пише:
Peace,
Okay, should I be the first to step in and say that spamming all the LIR accounts with one's mind-boggingly stupid "technical solutions" that have no, 0, zero chances to be implemented on the Internet is completely irresponsible and grossly unacceptable behaviour?
What does GDPR have to say about this?
-- Töma
On Thu, May 07, 2020 at 05:03:37PM +0300, Töma Gavrichenkov wrote:
sorry, we have no policy to kick off dirty spammer from elections.
I doubt that. Clearly, a person cannot qualify as a candidate right after a massive RIPE database ToU violation.
has anyone thought of just giving your vote to another candidate? If, instead, you don't trust the electorate to come to that same conclusion, why do you believe that this very electorate would approve that "policy"? Radio discipline, please. -Peter
sorry, we have no policy to kick off dirty spammer from elections. I think it is time to do that. Let's do.
i doubt this is necessary randy
participants (10)
-
Alexander Talos-Zens -
Brian Nisbet -
Gert Doering -
Max Tulyev -
Nick Hilliard -
Peter Koch -
Randy Bush -
Sabri Berisha -
Serge Droz -
Töma Gavrichenkov