This archive is retained to ensure existing URLs remain functional. It will not contain any emails sent to this mailing list after July 1, 2024. For all messages, including those sent before and after this date, please visit the new location of the archive at https://mailman.ripe.net/archives/list/[email protected]/

[anti-abuse-wg] whois access

Previous message (by thread): [anti-abuse-wg] Spam FAQs need revision
Next message (by thread): [anti-abuse-wg] whois access

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

russ at consumer.net russ at consumer.net
Thu Dec 15 13:28:32 CET 2011

Hi.  I am a problem with RIPE mis-applying it anti-abuse procedures for 
the RIPE database.

I have operated Network-Tools.com for 13 years.  The site is often used 
by people tracing spam or other security issues that includes IP address 
block lookups so people can send in a complaint or otherwise contact the 
network they have an issue with.   I find my web site is suddenly 
blocked from accessing the RIPE database and I cannot get answers to my 
questions from contacting the database administrator or IANA.

First - I am being accused of wanting "bulk access" to the database.  
That is not true.  My system is a pass-through system where many 
different people make requests through network-tools.com.  The web site 
is merely a pass-through.  I have asked many times how I can pass the 
requestor's IP address through so my web site won't be "penalized."  I 
never get an answer from RIPE.  ARIN told me they don't support such a 
scheme.  One purpose of the whois is so that individuals can contact 
abuse contacts, verfify who owns address blocks, etc. so blocking 
pass-through systems thwarts the whole purpose of the RIPE database.

Second- RIPE keeps claims the requests are for "personal information."  
IP address and abuse contacts are business contacts and role accounts 
meant for the public.  this is nor "personal information"  (ARIN calls 
it "sensitive" data).  These are business contacts meant for the public, 
not "personal information" or "sensitive."  If if were "sensitive" it 
would not be available to the public.  In any case I do not want to 
display sensitive data or personal information, I want to display the 
abuse contacts.

As for blocking IP from accessing the database I do not see the purpose 
anyway.  Most harvesters use a distributed system of IP addresses so 
blocking IP only serves to disrupt pass-through systems doing legitimate 
tasks while harvesters continue to freely collect their data.  For the 
most part the only thing it does is disrupt legitimate users and cause 
expense to those users for no purpose.

How can I get answers to these questions?

Thank you

Previous message (by thread): [anti-abuse-wg] Spam FAQs need revision
Next message (by thread): [anti-abuse-wg] whois access

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[ anti-abuse-wg Archives ]