[ppml] Abstract of proposed Internet Draft for Best CurrentPractice (please comment)

Dr. Jeffrey Race jrace at attglobal.net
Tue Feb 18 20:19:40 EST 2003


On Tue, 18 Feb 2003 10:35:33 -0700, John M. Brown wrote:
>no they don't  The ability to accept routes from a customer
>is strictly a matter between the service provider and
>its customer.
>
>We do not need to overload protocols with this type of 
>data.
>
>I can see a nice little DDOS vector here.  Happy Hacker
>tricks BGP into revoking EBAY's prefix, EBAY looses
>millions, sues RIR.

My original proposal <http://www.camblab.com/misc/univ_std.txt>
states that action is to be taken only after sufficient 
investigation to prevent such errors.    From traffic on Spam-L
it is apparent that joe-jobs and fraudulent routings are 
discovered in hours by the cognoscenti who live there.

Jeffrey Race




More information about the ARIN-PPML mailing list