This archive is retained to ensure existing URLs remain functional. It will not contain any emails sent to this mailing list after July 1, 2024. For all messages, including those sent before and after this date, please visit the new location of the archive at https://mailman.ripe.net/archives/list/anti-abuse-wg@ripe.net/
[anti-abuse-wg] 2019-03 New Policy Proposal (BGP Hijacking is a RIPE Policy Violation)
- Previous message (by thread): [anti-abuse-wg] 2019-03 New Policy Proposal (BGP Hijacking is a RIPE Policy Violation)
- Next message (by thread): [anti-abuse-wg] 2019-03 New Policy Proposal (BGP Hijacking is a RIPE Policy Violation)
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Warren Kumari
warren at kumari.net
Wed Mar 20 08:13:34 CET 2019
On Tue, Mar 19, 2019 at 1:42 PM Marco Schmidt <mschmidt at ripe.net> wrote: > Dear colleagues, > > A new RIPE Policy proposal, 2019-03, "BGP Hijacking is a RIPE Policy > Violation", is now available for discussion. > > The goal of this proposal is to define that BGP hijacking is not accepted > as normal practice within the RIPE NCC service region. > > You can find the full proposal at: > https://www.ripe.net/participate/policies/proposals/2019-03 > > >From the policy: "The RIPE NCC will define a pool of worldwide experts who can assess whether reported BGP hijacks constitute policy violations. Experts from this pool will provide a judgement regarding each reported case, no later than four weeks from the moment the report was received." This seems like a reasonable approach, but I still worry about the possibility of abuse of the policy. As a hypothetical example: I'm AS1. I'm in a feud with Job (he called my hat ugly...) who runs AS2, and is a peer of mine. I decide to get even by announcing all sorts of address space, and prepending AS2 to the announcements. I then report Job as a hijacker. “Networks Affected”: AS1, AS17, AS1234 “Offender ASN”: AS2 “Hijacked Prefixes”: [ long list of things ] “Timespan”: last Thursday, 8:00AM. Yes, in this case it won't be too hard to figure out it was me, but I do see that this could be abused in various ways. Please note, I *really* support the proposal, but care will need to be taken to watch for false-flag operations, and the experts should take care to watch for this possibility. I'm also a bit concerned about the initial workload for the experts... W > As per the RIPE Policy Development Process (PDP), the purpose of this > four-week Discussion Phase is to discuss the proposal and provide feedback > to the proposer. > > At the end of the Discussion Phase, the proposers, with the agreement of > the Anti-Abuse WG co-chairs, decide how to proceed with the proposal. > > We encourage you to review this proposal and send your comments to < > anti-abuse-wg at ripe.net> before 17 April 2019. > > Kind regards, > > Marco Schmidt > Policy Officer > RIPE NCC > > Sent via RIPE Forum -- https://www.ripe.net/participate/mail/forum > > -- I don't think the execution is relevant when it was obviously a bad idea in the first place. This is like putting rabid weasels in your pants, and later expressing regret at having chosen those particular rabid weasels and that pair of pants. ---maf -------------- next part -------------- An HTML attachment was scrubbed... URL: </ripe/mail/archives/anti-abuse-wg/attachments/20190320/9421fb93/attachment.html>
- Previous message (by thread): [anti-abuse-wg] 2019-03 New Policy Proposal (BGP Hijacking is a RIPE Policy Violation)
- Next message (by thread): [anti-abuse-wg] 2019-03 New Policy Proposal (BGP Hijacking is a RIPE Policy Violation)
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]