<html><head><meta http-equiv="Content-Type" content="text/html; charset=utf-8"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; line-break: after-white-space;" class="">Hi Dmitry,<br class=""><div><br class=""><blockquote type="cite" class=""><div class=""><div bgcolor="#FFFFFF" text="#000000" class="">
The answer is simple. It will be centralized system and so:<br class="">
- you will need to trust its system engineers<br class="">
- any breaking of this system can cause Internet crash if many AS`es
will use it<br class="">
<br class="">
So it is very bad idea on my opinion.<br class=""></div></div></blockquote><div><br class=""></div><div>That’s a very good point and probably the most problematic one</div><div>also with existing lists such as Spamhaus EDROP.</div><div><br class=""></div><div>I'm thinking of a decentralized system run by a nonprofit/NGO or maybe</div><div>even some sort of blockchain or DLT-based approach where multiple, independent </div><div>parties are required to sign something - or in this case add entries to the list, </div><div>in order to avoid misuse, censorship and a single point of failure.</div><div><br class=""></div><div>The contributing organizations could be RIRs, IXPs, Tier-1 ISPs and NGOs</div><div>in different continents, countries and legislations, where atleast for example</div><div>one-third of them need to flag an ASN before it gets added to the list.</div><div><br class=""></div><div><br class=""></div><blockquote type="cite" class=""><div class=""><div bgcolor="#FFFFFF" text="#000000" class="">
What we need that all follow the rules:
<a href="https://www.routingmanifesto.org/" class="">https://www.routingmanifesto.org/</a><br class=""></div></div></blockquote><br class="">Thanks for the link</div><div><br class=""></div><div><br class=""></div><div>Kind Regards</div><div><br class=""></div><div><br class=""><blockquote type="cite" class=""><div class=""><div bgcolor="#FFFFFF" text="#000000" class="">
<div class="moz-cite-prefix">On 01.08.2018 12:59, Dominic Schallert
wrote:<br class="">
</div>
<blockquote cite="mid:md5:2Zj%2FwCQvIQP9iGwfZOX0iw==" type="cite" class="">
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" class="">
Dear colleagues,
<div class=""><br class="">
</div>
<div class="">I’m sure some of you have read about this recent
incident; <a moz-do-not-send="true" href="https://bgpstream.com/event/144058" class="">https://bgpstream.com/event/144058</a> .
Nowadays we’re talking about transport security,
https-per-default, etc. but the most fundamental parts of the
internet such as BGP, are basically broken from a security
perspective. While RPKI/ROA/ROV could fix most of the current
security-related struggles, their deployment currently competes
somewhat with IPv6 - or even worse - and therefore won’t be a
practical solution in the forseeable future. Strict IRRDB and
route object filtering is complicated (or almost impossible) as
well.</div>
<div class=""><br class="">
</div>
<div class="">So I’m wondering, why can't we just have an
automated blacklist like RBL's for mailservers, where all AS'es
detected for hijacking prefixes are automatically blacklisted,
similiar to Team Cymru's fullbogons feed? The list combined with
some scripting could then be used for realtime AS-path filtering
at border routers. Delisting of blacklisted ASNs should happen
only after a pre-defined amount of time (eg. 14 days) or after
paying a fee to a charity/non-profit and providing a statement
on the issue which is publicy released. The idea is to hurt
those who can’t get their stuff - especially prefix filtering -
together.</div>
<div class=""><br class="">
</div>
<div class="">I still remember the days where everyone complained
about RBLs, nowadays almost every mailserver setup relies on
them. Sometimes extreme problems require extrem solutions.</div>
<div class=""><br class="">
</div>
<div class="">
<div class=""><p style="caret-color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px; text-decoration: none;" class="">Mit besten Grüßen<br class="">
Kind Regards</p><p style="caret-color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px; text-decoration: none;" class="">Dominic Schallert, BA</p>
<span style="caret-color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px; text-decoration: none;" class=""><span style="font-family: Helvetica; font-size: 12px; font-style: normal; font-variant-caps: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px;" class=""><span class=""><span class=""><span style="font-family: Helvetica; font-size: 12px; font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px;" class=""><span class=""><span class=""><span class=""><span class=""><span class=""><span style="font-family: Helvetica; font-size: 12px; font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px;" class=""><span class=""><span class=""><span class=""><span class=""><span class=""><span class=""><span class=""><br class="Apple-interchange-newline">
<span class=""><span id="cid:part2.D8E6EC64.F17365EC@mega-net.ru"><Mail-Anhang.png></span></span><span style="caret-color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px; text-decoration: none;" class=""><span style="font-family: Helvetica; font-size: 12px; font-style: normal; font-variant-caps: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px;" class=""><span class=""><span class=""><span style="font-family: Helvetica; font-size: 12px; font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px;" class=""><span class=""><span class=""><span class="">
<table border-spacing="0" style="letter-spacing: normal; text-indent: 0px; text-transform: none;
word-spacing:
0px;
-webkit-text-stroke-width:
0px; padding:
0px; margin:
0px;
font-family:
"Lucida
Grande",
sans-serif;
font-size:
10px;
line-height:
10px; color:
rgb(176, 176,
176);
border-collapse:
collapse;" class="" cellpadding="0" cellspacing="0">
<tbody class="">
<tr class="">
<td style="height:
5px;
font-size:
5px;
line-height:
5px;" class="" height="5"><br class="Apple-interchange-newline">
<br class="">
</td>
</tr>
<tr class="">
<td class=""><span class=""><span style="color:
rgb(176, 176,
176); border:
none;
text-decoration:
none;" class=""><b class="">schallert.com
e.U.</b></span> | </span><span class="">Hauptstraße
35b, 6800
Feldkirch,
Austria</span></td>
</tr>
<tr class="">
<td style="height:
5px;
font-size:
5px;
line-height:
5px;" class="" height="5"> </td>
</tr>
<tr class="">
<td class=""><span class="">FN:
440372g</span><span class="Apple-converted-space"> </span> | UID: <span class="">ATU66209211 </span>| <span class="">Gerichtsstand:
Feldkirch</span></td>
</tr>
<tr class="">
<td style="height:
5px;
font-size:
5px;
line-height:
5px;" class="" height="5"> </td>
</tr>
<tr class="">
<td class=""><span class="">Tel.:
+43 680 146
1947 | </span><span class="">Fax:
+43 134 242
642 616</span></td>
</tr>
<tr class="">
<td style="height:
10px;
font-size:
10px;
line-height:
10px;" class="" height="15"><br class="">
</td>
</tr>
<tr class="">
<td class=""><span class=""><a moz-do-not-send="true" href="http://www.schallert.com/" style="color: rgb(176, 176, 176);
border: none;
text-decoration: none;" class=""></a><a class="moz-txt-link-abbreviated" href="http://www.schallert.com/">www.schallert.com</a></span><span class="Apple-converted-space"> </span> | <span class=""><a moz-do-not-send="true" href="mailto:office@schallert.com" style="color: rgb(176, 176, 176);
border: none;
text-decoration: none;" class=""></a><a class="moz-txt-link-abbreviated" href="mailto:office@schallert.com">office@schallert.com</a></span></td>
</tr>
</tbody>
</table>
<br class="">
</span></span></span></span></span></span></span></span>
<div style="caret-color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px; text-decoration: none;" class=""><span style="font-family: Helvetica; font-size: 12px; font-style: normal; font-variant-caps: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px;" class=""><span style="font-family: Helvetica; font-size: 12px; font-style: normal; font-variant-caps: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px;" class=""><span class=""><span class=""><span style="font-family: Helvetica; font-size: 12px; font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px;" class=""><span class=""><span class=""><span class=""><br class="">
</span></span></span></span></span></span></span></span></div>
<br class="Apple-interchange-newline" style="caret-color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px; text-decoration: none;">
<br class="Apple-interchange-newline" style="caret-color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant-caps: normal; font-weight: normal; letter-spacing: normal; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; word-spacing: 0px; -webkit-text-stroke-width: 0px; text-decoration: none;">
</span></span></span></span></span></span></span></span></span></span></span></span></span></span></span></span></span></span></div>
<br class="">
</div>
<br class="">
<fieldset class="mimeAttachmentHeader"></fieldset>
<br class="">
<pre wrap="" class="">_______________________________________________
members-discuss mailing list
<a class="moz-txt-link-abbreviated" href="mailto:members-discuss@ripe.net">members-discuss@ripe.net</a>
<a class="moz-txt-link-freetext" href="https://mailman.ripe.net/">https://mailman.ripe.net/</a>
Unsubscribe: <a class="moz-txt-link-freetext" href="https://lists.ripe.net/mailman/options/members-discuss/noc%40mega-net.ru">https://lists.ripe.net/mailman/options/members-discuss/noc%40mega-net.ru</a>
</pre>
</blockquote>
<br class="">
</div>
</div></blockquote></div><br class=""></body></html>