[45039] in North American Network Operators' Group
Re: SSL for IRR queries?
daemon@ATHENA.MIT.EDU (Tony Tauber)
Fri Jan 11 16:00:41 2002
Date: Fri, 11 Jan 2002 15:53:03 -0500 (EST)
From: Tony Tauber <ttauber@genuity.net>
To: Stephen Griffin <stephen.griffin@rcn.com>
Cc: nanog@merit.edu
In-Reply-To: <200201112021.PAA03115@elektra.ultra.net>
Message-ID: <Pine.GSO.4.40.0201111547240.5399-100000@mesa.bbnplanet.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Errors-To: owner-nanog-outgoing@merit.edu
On Fri, 11 Jan 2002, Stephen Griffin wrote:
> In the referenced message, Tony Tauber said:
> >
> > If there's a desire to trust information garnered
> > from the Internet Routing Registry (eg. RADB, RIPE),
> > it would seem that one would like a way to verify
> > the server responding to queries.
>
> At this time, I think verification and sanity-checking
> of the data that goes into the IRR is more important than
> that which comes out of it.
>
> There is a plethora of stale registrations, entities who
> don't register (*cough*701*cough*), and at least one entity
> which is robo-proxy-registering routes "in the wild" (due to
> the folks who don't register.)
I understand your gripe but am not interested in boiling the
ocean today. If there were a *subset* of information that
one was prepared to trust somewhat, the modest enhancement
of more verifiable queries would be nice and, I think, fairly
cheap to add.
Tony
