This archive is retained to ensure existing URLs remain functional. It will not contain any emails sent to this mailing list after July 1, 2024. For all messages, including those sent before and after this date, please visit the new location of the archive at https://mailman.ripe.net/archives/list/[email protected]/

[anti-abuse-wg] Hijacked netblocks - any SOP for these?

Previous message (by thread): [anti-abuse-wg] Hijacked netblocks - any SOP for these?
Next message (by thread): [anti-abuse-wg] Hijacked netblocks - any SOP for these?

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Suresh Ramasubramanian ops.lists at gmail.com
Tue Aug 9 03:41:50 CEST 2011

Those are not all hijacked.  They're also assigned PI / PA netblocks
sourced directly from the RIR

RIPE has to bear the cross of Romania which alone is responsible for a
substantial chunk of those too many to list - including several  /15s

There's also the rest of eastern europe and russia with smaller
assigned PI and PA netblocks controlled by botmasters and such.

In any case, too many to list.  Never mind the "ISP" there - spamhaus
used the same script they use to generate per ISP reports of SBL
listings.

On Mon, Aug 8, 2011 at 11:57 PM, Karl-Josef Ziegler <kjz at gmx.net> wrote:
>
> RIPE: has far too many records to list. This ISP has an extremely
> serious spam problem.
>
> http://www.spamhaus.org/sbl/listings.lasso?isp=arin
>
> Hmmm... 'extremely serious spam problem'? Only RIPE 'has far too many
> records to list.'
>
> What's this?

-- 
Suresh Ramasubramanian (ops.lists at gmail.com)

Previous message (by thread): [anti-abuse-wg] Hijacked netblocks - any SOP for these?
Next message (by thread): [anti-abuse-wg] Hijacked netblocks - any SOP for these?

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[ anti-abuse-wg Archives ]