[arin-ppml] IP Address Block Clean up

William Herrin bill at herrin.us
Mon Sep 14 19:01:43 EDT 2009


I think it might be instructive to re-frame the question:

Assume:

1. John Smith runs Spamco, a direct marketing firm which sends
unsolicited email.
2. Spamco more or less complies with US law. For example, it doesn't
forge return addresses.
3. Spamco owns 20 servers in a colocated rack and has two ISPs.
4. John incorporates a subsidiary company called "networks extreme" in
whichever state has the strongest privacy laws for the purpose of
interacting with ARIN in a more or less anonymous fashion.
5. Where the information in John's application is trivially checkable
or where ARIN is expected to verify the data in a manner not trivially
conned, John will provide factually accurate information.
6. Anywhere else that it's advantageous, John will lie in his ARIN application.
7. John's budget for the ARIN application process is $10,000. He'll
spend up to that much money on ARIN fees, incorporation and creating
paper tigers which match the lies.


Given these assumptions:

a. How does John go about getting a /16 from ARIN?

b. What paperwork does he submit?

c. What process protections does ARIN use to detect and stop John's behavior?

d. Is this any different if he requests a /14 or a /18?


Bear in mind here that "networks extreme" is the company interacting
with ARIN. It legally exists but was recently incorporated, both facts
that ARIN can trivially confirm. It has no public history unless John
fakes something up. No debts. No credit history. No information about
the ownership or board of directors is publicly available from the
state in which it was incorporated. The phone rings to a Vonage
number. The postal address is  "123 main st. Suite 45." 123 main
street is a mailbox store in that state which anonymously forwards
mail. The DNS domain John uses for email during the application is
registered with the same address and phone.

Hopefully, the answers are not:

a. John applies to ARIN as networks extreme for the addresses.

b. John supplies a fake network plan which shows extensive use of
private IPs allegedly used in the R&D of network extreme's product.
The product is now being rolled out. He also shows the several /24's
that he conned out of his two ISPs.

c. Upon a later report of abuse, ARIN asks John for more paperwork.

d. no


Regards,
Bill Herrin


-- 
William D. Herrin ................ herrin at dirtside.com  bill at herrin.us
3005 Crane Dr. ...................... Web: <http://bill.herrin.us/>
Falls Church, VA 22042-3004



More information about the ARIN-PPML mailing list