Presentation is loading. Please wait.

Presentation is loading. Please wait.

Who cares about abuse? Rodney Tillotson, JANET-CERT APNIC, August 2001 United Kingdom Education & Research Networking Association.

Published byHailey Houston Modified over 11 years ago

Similar presentations

Presentation on theme: "Who cares about abuse? Rodney Tillotson, JANET-CERT APNIC, August 2001 United Kingdom Education & Research Networking Association."— Presentation transcript:

1 Who cares about abuse? Rodney Tillotson, JANET-CERT APNIC, August 2001 United Kingdom Education & Research Networking Association

2 Three points UBE is like other abuse Only global consensus will stop it We would like to talk with AP

3 RIPE Réseaux IP Européens Anti-spam Working Group WG chair

4 RIPE view Originate no spam Persuade originators to stop Block and filter

5 Originate no spam Contracts with customers Penalties available Act on reports of abuse RIPE-206 http://www.ripe.net/ripe/docs/ripe-206.html

6 Problems Free accounts Cybercafé use Competitive advantage

7 Block and filter Local choice MAPS Other blacklists Outbound blocks

8 Filtering Content-based Subjective, always changing Can help with other abuse –Viruses, porn

9 DNS blacklists Test IP addresses Hooks in most mailers –(but not Exchange) Getting on/off the list –Who decides?

10 Other public blacklists ORBS not now operating Several others –A variety of behaviours

11 MAPS Paul Vixie, Dave Rand Highly respected Thorough, not fast –Will let through some spam Pressure on originators http://mail-abuse.org/

12 MAPS update Subscription only from 1 Aug 2001 Costs –DNS operation –List management –Legal http://mail-abuse.org/feestructure.html

13 UBE What is spam? –Usenet Unsolicited Bulk E-mail

14 Pressure on originators RBL –Realtime Blackhole List Focus for consensus and conflict –Advice on good practice

15 Other abuse The issues are the same Consensus is better Compliance is about the same

16 Who said this? I dont want to report spam to the spammers ISP. I want to report it to my own ISP, or if I am an ISP then I want to report it to my own peers. They ought to verify my identity and the complaint format and then pitch it on to their peers or upstreams or customers or whatever and so on …

17 Who said this? … until it finally gets to the owner of the the address space which is being abused. If that owner wont act, then they ought to lose peering or be dropped as a customer or whatever, because the standard contracts among Internet peers and between customers and their ISPs ought to require proper response.

18 Who said this? Paul Vixie –To a private list, June 2001 –(quoted with permission)

19 UBE issues with AP US is the major source Many relays in AP –Increased early 2000 Little response from abuse@domain abuse@domain

20 Code Red Many sources in AP –Fewer in US (still too many) Unclear where to report it Lots in JANET, too!

21 JANET-CERT Coordinate security responses http://www.ja.net/CERT/ Contacts at customer sites Network blocks if needed Contacts with other CSIRTs

22

23 Other CSIRTs FIRST http://www.first.org/ TERENA Trusted Introducer http://www.ti.terena.nl/

24 AP CSIRTs Useful responses from AP CSIRTs –AUS-CERT, JP-CERT, KR-CERT etc Whois data usually available –Not easy to find abuse contact

25 My guess Fast-growing networks and user communities –Support lags behind –Many small companies Expectations are different Guidance is in (bad) English

26 Those points again UBE is like other abuse Only global consensus will stop it We would like to talk with AP

27 My questions How should we make contact? What problems do you have with the RIPE region? Do we need a new forum? How can we help? Who cares about abuse?

28 Your questions?

29 Thank you! Rodney Tillotson senior JANET-CERT member Rodney.Tillotson@ukerna.ac.uk +44 1235 822 255

Download ppt "Who cares about abuse? Rodney Tillotson, JANET-CERT APNIC, August 2001 United Kingdom Education & Research Networking Association."

Similar presentations

Clara CSIRTs in Latin America and the Caribbean CCIRN 2004 Cairns, Australia July 2004 Michael Stanton CLARA Technical Committee RNP- Brazil (material.

Clara CSIRTs in Latin America and the Caribbean CCIRN 2004 Cairns, Australia July 2004 Michael Stanton CLARA Technical Committee RNP- Brazil (material.
A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E BOF: Network Abuse APNIC 12 th Open Policy Meeting Taipei, TW, 30 August 2001.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E BOF: Network Abuse APNIC 12 th Open Policy Meeting Taipei, TW, 30 August 2001.
A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E Network Abuse: The APNIC perspective Network Abuse BOF APNIC 12 th Open Policy Meeting.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E Network Abuse: The APNIC perspective Network Abuse BOF APNIC 12 th Open Policy Meeting.
Broadband Guideline 2002.3.6 Takashi Arano APNIC WG-BB Chair.

Broadband Guideline Takashi Arano APNIC WG-BB Chair.
Policy SIG report 29 February 2008 APNIC 25, Taipei Toshiyuki Hosaka Randy Bush Jian Zhang.

Policy SIG report 29 February 2008 APNIC 25, Taipei Toshiyuki Hosaka Randy Bush Jian Zhang.
R I P E N e t w o r k C o o r d i n a t i o n C e n t r e. h t t p : / / w w w. r i p e. n e t. n c r i p e. n e t 1 The Internet Registry System IPv4.

R I P E N e t w o r k C o o r d i n a t i o n C e n t r e. h t t p : / / w w w. r i p e. n e t. n c r i p e. n e t 1 The Internet Registry System IPv4.
Anti-SPAM activities in Malaysia - Current Situation, Regulatory Environment and Future Developments ITU virtual conference on anti-spam regulation and.

Anti-SPAM activities in Malaysia - Current Situation, Regulatory Environment and Future Developments ITU virtual conference on anti-spam regulation and.
Computer Emergency Response Teams

Computer Emergency Response Teams
E - safety How e-safe are you?.

E - safety How e-safe are you?.
By Andy Scott, Michael Murray and Adam Kanopa

By Andy Scott, Michael Murray and Adam Kanopa
Internet – Part I. What is Internet? Internet is a global computer network of inter-connected networks.

Internet – Part I. What is Internet? Internet is a global computer network of inter-connected networks.
Anti-Spam Management for Service Provider in Malaysia Alan Lee NTT MSC.

Anti-Spam Management for Service Provider in Malaysia Alan Lee NTT MSC.
Introduction to the Anti-Spam Research Group (ASRG) Presented by Yakov Shafranovich, ASRG Co-chair NIST Spam Technology Workshop Gaithersburg, Maryland,

Introduction to the Anti-Spam Research Group (ASRG) Presented by Yakov Shafranovich, ASRG Co-chair NIST Spam Technology Workshop Gaithersburg, Maryland,
IPv6 Deployment CANTO Nate Davis, Chief Operating Officer 13 August 2014.

IPv6 Deployment CANTO Nate Davis, Chief Operating Officer 13 August 2014.
Managing IP addresses for your private clouds 2013 ASEAN CAS Summit Bangkok, Thailand 7 February 2013 George Kuo Member Services Manager.

Managing IP addresses for your private clouds 2013 ASEAN CAS Summit Bangkok, Thailand 7 February 2013 George Kuo Member Services Manager.
Internet Identity For All.my ccTLD IPv6 Update By Lai Heng Choong Head of Application, Database and Security.my DOMAIN REGISTRY APTLD Member Meeting, 1.

Internet Identity For All.my ccTLD IPv6 Update By Lai Heng Choong Head of Application, Database and Security.my DOMAIN REGISTRY APTLD Member Meeting, 1.
Internet Online Safety How to have FUN and Stay in Control.

Internet Online Safety How to have FUN and Stay in Control.
Handling Internet Network Abuse Reports at APNIC 21 October 2010 LAP-CNSA Workshop, Melbourne George Kuo.

Handling Internet Network Abuse Reports at APNIC 21 October 2010 LAP-CNSA Workshop, Melbourne George Kuo.
What is Spam  Any unwanted messages that are sent to many users at once.  Spam can be sent via email, text message, online chat, blogs or various other.

What is Spam  Any unwanted messages that are sent to many users at once.  Spam can be sent via , text message, online chat, blogs or various other.
Addressing spam email and enforcing a Do Not Email Registry using a Certified Electronic Mail System Information Technology Advisory Group, Inc.

Addressing spam and enforcing a Do Not Registry using a Certified Electronic Mail System Information Technology Advisory Group, Inc.

Similar presentations

Ads by Google