This archive is retained to ensure existing URLs remain functional. It will not contain any emails sent to this mailing list after July 1, 2024. For all messages, including those sent before and after this date, please visit the new location of the archive at https://mailman.ripe.net/archives/list/[email protected]/
[db-wg] Authenticating References to Objects
- Previous message (by thread): [db-wg] Authenticating References to Objects
- Next message (by thread): [db-wg] Suggestion further validity-checking
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
steve
email669 at gmail.com
Fri May 31 18:12:39 CEST 2019
Hi, Not sure how I got added here but would love to throw my 2 cents in. What i'm trying to do is block spammers and all of these cloud servers, hosting companies etc. Something that would help me is an "abuse email or previous owner field". When i'm doing whois searches on many of these ips, the spammers appear to be using new domains to appear like a new hosting company. It looks like once their ips start getting heavily blocked on the internet, they are letting them "rest" and "selling" them to their selves and changing the domain name. This would help stop the problem. Thanks! On Fri, May 31, 2019 at 6:39 AM ripedenis--- via db-wg <db-wg at ripe.net> wrote: > and also keep in mind what the goal of this is. Anyone can create a new > PERSON/ROLE object with the same content as one of yours. In other words > make an exact copy. They can then add your MNTNER and then remove theirs > after making references to it. Adding an additional MNTNER doesn't require > authorisation from that MNTNER. So they can still set up their data to look > as if it is managed by you. > > cheers > denis > > co-chair DB-WG > > On Friday, 31 May 2019, 15:11:48 CEST, Cynthia Revström via db-wg < > db-wg at ripe.net> wrote: > > > it wouldn't really work for maintainers, as it becomes a recursive loop. > mnt-1 wants to edit mnt-2's object, mnt-2 can't add mnt-1 and mnt-1 can't > add mnt-2 to mnt-ref... > > - Cynthia > > On Fri, May 31, 2019, 15:05 Sebastian Wiesinger via db-wg <db-wg at ripe.net> > wrote: > > * Edward Shryane via db-wg <db-wg at ripe.net> [2019-05-27 11:43]: > > Dear Working Group, > > > > as mentioned at last week's DB-WG meeting, I'd like to propose extending > authenticating references to other objects. > > > > Currently, only references to organisation objects can be protected with > the mnt-ref attribute. > > > > However, we could extend this protection to other types of objects: > > > > - Abuse-c role > > - Technical contact, admin contact, zone contact etc. (person/role) > > - Organisation maintainer(s) > > > > This would prevent unauthorised references to an organisation's objects > (e.g. to impersonate a third party or mis-direct abuse email). > > Sounds good, on the premise that this is done to the generic object > type and not dependent on the usage of them. > > Meaning that if I put mnt-ref on a person/role you cannot reference it > *anywhere* unless your maintainer is listed in mnt-ref. Same for > maintainers. > > > Regards > > > Sebastian > > -- > GPG Key: 0x58A2D94A93A0B9CE (F4F6 B1A3 866B 26E9 450A 9D82 58A2 D94A 93A0 > B9CE) > 'Are you Death?' ... IT'S THE SCYTHE, ISN'T IT? PEOPLE ALWAYS NOTICE THE > SCYTHE. > -- Terry Pratchett, The Fifth Elephant > > -------------- next part -------------- An HTML attachment was scrubbed... URL: </ripe/mail/archives/db-wg/attachments/20190531/1ffc7fcb/attachment.html>
- Previous message (by thread): [db-wg] Authenticating References to Objects
- Next message (by thread): [db-wg] Suggestion further validity-checking
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
[ db-wg Archives ]