This archive is retained to ensure existing URLs remain functional. It will not contain any emails sent to this mailing list after July 1, 2024. For all messages, including those sent before and after this date, please visit the new location of the archive at https://mailman.ripe.net/archives/list/[email protected]/

[anti-abuse-wg] Hijacked netblocks - any SOP for these?

Previous message (by thread): [anti-abuse-wg] Hijacked netblocks - any SOP for these?

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Suresh Ramasubramanian ops.lists at gmail.com
Fri Jul 29 09:47:39 CEST 2011

The usual way this goes is that spamhaus has some further evidence
available, which they don't expose publicly.
They would make it available to vetted security contacts at RIPE, or
LE that are interested, for example.

The data point isn't unstructured beyond what you'd expect, and most
abuse complaints you'd get are far less structured.

Right now, it  is simply a statement "CIDRs x, y and z are suspected
to be hijacked".

On Fri, Jul 29, 2011 at 12:54 PM, Florian Weimer <fw at deneb.enyo.de> wrote:
>
> The Spamhaus report you referenced (rather indirectly) is not very
> illuminating, either.  It says, "This block is to be returned to
> RIPE".  What does this mean?  Is it in the process of being returned?
> Has Spamhaus suggested (to whom?) that it should be returned?  Is this
> some sort of demand?

-- 
Suresh Ramasubramanian (ops.lists at gmail.com)

Previous message (by thread): [anti-abuse-wg] Hijacked netblocks - any SOP for these?

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[ anti-abuse-wg Archives ]