[96541] in North American Network Operators' Group
Re: Best practices for abuse@ mailbox and network abuse complaint handling?
daemon@ATHENA.MIT.EDU (John Levine)
Sun May 13 17:03:53 2007
Date: 13 May 2007 21:02:50 -0000
From: John Levine <johnl@iecc.com>
To: nanog@nanog.org
In-Reply-To: <2BDDC7CA-4123-490F-8414-AD9982E62C1A@mail-abuse.org>
Cc: dotis@mail-abuse.org
Errors-To: owner-nanog@merit.edu
>> I was hoping that there would be someplace like abuse.net where we
>> could register our IPs and ASN, so non-NANOGers could know to
>> contact network-abuse@ when they think our network is attacking them?
That would be nice, wouldn't it? There's two reasons I don't do that.
One is that unlike domains, there's no sensible default for unknown
addresses. (Most ASNs have good contact info in the RIRs, but some
don't, and a fair number particularly in Asia are so tiny that they
really need the reports sent to the next one up.) The other is that I
can barely keep up with the updates for domain names, and there's no
way I could do IPs without a major rewrite and a bunch of trustworthy
volunteers to share the load.
>Perhaps abuse.net could include links to:
>
>http://www.cymru.com/BGP/asnlookup.html
>http://www.completewhois.com/
>http://www.routeviews.org/
>etc.
Most abuse.net users barely have figured out that the From: line is
not always the right place to find the address to complain to.
R's,
John
