[145423] in North American Network Operators' Group
Re: Botnets buying up IPv4 address space
daemon@ATHENA.MIT.EDU (Owen DeLong)
Fri Oct 7 21:16:57 2011
From: Owen DeLong <owen@delong.com>
In-Reply-To: <43D21289-264D-4945-AD5C-6061B35B06DF@queuefull.net>
Date: Fri, 7 Oct 2011 18:15:30 -0700
To: Benson Schliesser <bensons@queuefull.net>
Cc: North American Network Operators Group <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
--Apple-Mail=_18E0614E-6C7C-4345-BB35-F1B5FAC7489D
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain;
charset=us-ascii
On Oct 7, 2011, at 4:47 PM, Benson Schliesser wrote:
> The important outcome is that transfers are documented. Making it =
easier for sellers to update Whois (so it points to the buyer) will =
encourage documentation. If "needs justification" is ever a =
disincentive to update Whois, then it will discourage documentation.
>=20
> Granted, a seller that doesn't update Whois should be more worried =
about the reputation of the buyer. But regardless, it is incorrect to =
assume that "needs justification" will prevent bad actors from acquiring =
address blocks. Even bad actors can justify their need, and some of them =
might even (*gasp*) lie about it in order to get what they want. The =
result would look like a normal transfer (with justified need, a Whois =
update, etc) and yet would result in a bad actor becoming an address =
holder.
>=20
True, however, the existence of bad actors encourages documentation even
if one needs to comply with needs basis, which has many other benefits =
to the
community.
Documentation is NOT the highest single purpose of ARIN and eliminating
community developed policy in favor of some mythical incentive towards
documentation.
Indeed, there is actually no evidence to support the theory that =
organizations
that transfer outside of needs basis would choose to document those =
transfers
through ARIN even if that requirement were removed.
Likely if we removed needs basis, we would see the same level of =
undocumented
transfers, but, with the added detriments of speculative address =
hoarding, higher
artificial valuations of integers, etc.
Owen
> Cheers,
> -Benson
>=20
>=20
> On Oct 7, 2011, at 6:08 PM, Jimmy Hess wrote:
>=20
>> On Fri, Oct 7, 2011 at 1:11 PM, Joly MacFie <joly@punkcast.com> =
wrote:
>>> I'd welcome comments as to solutions to this. Or is it just =
scaremongering?
>> Probably scaremongering... but it does raise an interesting thought.
>>=20
>> It provides another argument why RIRs don't need to abandon justified
>> need as a mandatory
>> criteria for transferring addresses to specified recipients out of
>> fear that legacy and other
>> holders will engage in "unofficial" sales and transfers that they
>> intentionally fail to record via WHOIS.
>>=20
>> The legacy holder/unofficial transferror would be putting the
>> reputation of their entire address block,
>> and their other allocations at risk; if the buyer eventually hands
>> some of the unofficial allocation
>> to a spammer, either by accident, or intentionally, doesn't matter.
>>=20
>> The holder of addresses that unofficially transferred them, could =
have
>> some major headaches,
>> including service-affecting headaches to their network... just to
>> sell spare IP addresses faster for
>> a few extra bucks; when there is a legitimate process available
>> that doesn't have that risk?
>>=20
>>> j
>> --
>> -JH
>>=20
>=20
--Apple-Mail=_18E0614E-6C7C-4345-BB35-F1B5FAC7489D
Content-Disposition: attachment;
filename=smime.p7s
Content-Type: application/pkcs7-signature;
name=smime.p7s
Content-Transfer-Encoding: base64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=
--Apple-Mail=_18E0614E-6C7C-4345-BB35-F1B5FAC7489D--
