[arin-ppml] Policy Proposal 95: Customer Confidentiality

Fri Jan 29 03:18:25 EST 2010

On Jan 28, 2010, at 7:30 PM, Aaron Wendel wrote:

> The proposal doesn't restrict information an ISP may disclose.  Simply
> leaves it up to the ISP to decide with their customers and gives them the
> same options and protection that access providers (cable companies, DSL
> providers and Dial-up operators) currently enjoy.
> 
Cable, DSL, and Dial-Up providers have the same restrictions you do.
The policies are identical. You, too, can anonymize residential customer
data in whois just like they can.

In spite of the latest Supreme Court hallucination about corporate campaign
spending, there really is a difference between business and residential
customers.

I'll remain neutral on the petition, but, I wanted to prevent any misunderstandings
about the actual state of policy as the current policy does not provide the
implied favoritism stated above.

Owen

> Aaron
> 
> 
> -----Original Message-----
> From: Steve Bertrand [mailto:steve at ibctech.ca] 
> Sent: Thursday, January 28, 2010 9:21 PM
> To: Aaron Wendel
> Cc: 'George Bonser'; arin-ppml at arin.net
> Subject: Re: [arin-ppml] Policy Proposal 95: Customer Confidentiality
> 
> Aaron Wendel wrote:
> 
>> If you are being scanned by a machine on my network I'm the first, and in
>> most cases, the only one that needs to know about it and the only one that
>> can do anything for you.
> 
> I don't think we're going to get anywhere with this policy, because my
> objectives have been solely focused on the fact that everyone will
> actually create proper SWIP records, and have the same mentality that I
> do, that the Internet runs based on the best interest of the community.
> 
> With that said...
> 
> I know how to look up your abuse PoC if the front-desk lady is the
> recipient of my phone call when I call the number listed in their SWIP.
> I will find you. So will anyone else troubleshooting a problem that
> requires digging up whois information.
> 
> You, being a good netizen, having client SWIP info in the database,
> allows me to get the information of your client that is attacking me,
> and pass it along to a peer in the event that they see the same IP block
> attacking them via a different path. Or, if your malicious client signs
> up with an SP who also is a good community member, will list the same
> info in whois.
> 
> Again, it's unlikely, as I'm slowly loosing faith that all ISPs are good
> ISPs :)
> 
> Aside from knowing how to find you without you hiding information, did
> you consider what I said earlier about the potential advertisement
> stream for your clients that could be whois?
> 
> Perhaps they may *want* to have their info listed. If you really feel
> that harvesters can find your clients that easily, perhaps your clients
> may believe that they can be found the same way for new revenue/market
> streams by potential clients of their own.
> 
> Steve
> 
> No virus found in this incoming message.
> Checked by AVG - www.avg.com 
> Version: 9.0.733 / Virus Database: 271.1.1/2648 - Release Date: 01/28/10
> 13:36:00
> 
> _______________________________________________
> PPML
> You are receiving this message because you are subscribed to
> the ARIN Public Policy Mailing List (ARIN-PPML at arin.net).
> Unsubscribe or manage your mailing list subscription at:
> http://lists.arin.net/mailman/listinfo/arin-ppml
> Please contact info at arin.net if you experience any issues.