[members-discuss] Database Abuse
- Previous message (by thread): [members-discuss] Database Abuse
- Next message (by thread): [members-discuss] Database Abuse
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Tim Armstrong
t.armstrong at nerdalize.com
Thu Sep 7 11:43:20 CEST 2017
At least then it would cost them something, currently it doesn't really cost them any effort, time, or money. On Thu, Sep 7, 2017 at 11:32 AM, Martin List-Petersen <martin at airwire.ie> wrote: > On 07/09/17 10:26, Tim Armstrong wrote: > >> I don't think it's too much to ask them to sign up, but perhaps there is >> some way to allow them to login and view the full DB with credentials from >> their own RIR? >> > > That would mean, that the other RIRs have to disclose credentials, give > access or develop an API together. > > Even now, the DB systems and their output can differ quite a bit. > > I don't disagree, that information, like the email-address shouldn't just > be easily available to scrape for mass mailing. > > In the case of a few country domain registries, it's been done by no > displaying the email information via whois or in the complete DB download > and the information only being available when querying the data via web > after bot-check etc., which would be quite discouraging, as you'd have to > sit and query each and every record manually. > > The problem you run into then, is that somebody that really wants to spam > you just would hire some cheap labour (India etc.) to retrieve the data > though. > > > Kind regards, > Martin List-Petersen > Airwire Ltd. > > > > >> On Thu, Sep 7, 2017 at 11:22 AM, Martin List-Petersen <martin at airwire.ie> >> wrote: >> >> On 07/09/17 09:17, Tim Armstrong wrote: >>> >>> Or if your details are in the list and / or you are a technical contact >>>> attached to an LIR then you can see everything. >>>> Only non-technical / non-LIR people can't access it. >>>> Perhaps use passing the RIPE DB Training course as a requirement for >>>> access. >>>> >>>> >>> >>> Well, that's where you're not thinking globally though. >>> >>> Not every tech, that has need for the information in the RIPEdb, is >>> automatically a RIPE member. They could be operating using other provider >>> IPs or a member of ARIN/APNIC/AfriNIC for example. >>> >>> Kind regards, >>> Martin List-Petersen >>> Airwire Ltd. >>> >>> >>> >>> >>> >>>> On 7 Sep 2017 10:06 am, "Vegard Svanberg" <vegard at monsternett.no> >>>> wrote: >>>> >>>> * Tim Armstrong <t.armstrong at nerdalize.com> [2017-09-05 10:36]: >>>> >>>>> >>>>> I hate to bring this subject up again, but is there really nothing >>>>> >>>>>> structural we can do about this? >>>>>> At a minimum we could occlude e-mail addresses from the public DB, >>>>>> instead having public complaint submitted via a webform on the NCC >>>>>> website, requiring the uninitiated to realise this is an abuse / >>>>>> complaint contact, not a sales opportunity. >>>>>> >>>>>> >>>>> I understand the problem (and get those pitches myself nearly daily). I >>>>> have no alternative, simple solutions. I also haven't thought this >>>>> through in detail. :-) However, and despite all that: I'd oppose the >>>>> idea of hiding/obfuscating emails and centralising/limiting feedback >>>>> loops to the NCC website. I'm concerned about the operational >>>>> consequences of limiting the opportunity to collect emails and build >>>>> and >>>>> maintain lists of contact points (potentially) important for >>>>> operations. >>>>> >>>>> And if we remove just emails, we'd probably have to do the same with >>>>> phone numbers. They're calling from time to time as well. >>>>> >>>>> Again, I haven't thought this through, but it's the knee-jerk response >>>>> anyway. Perhaps naming, shaming and blacklisting the offenders might be >>>>> a better way to go. Perhaps verified members could get regular database >>>>> dumps (including contact info) from other sources, or authenticate >>>>> against the db to get the whole lot. I don't know. I'm not sure the >>>>> problem is big enough to warrant any major changes. >>>>> >>>>> -- >>>>> -o) Vegard Svanberg, MD - Monsternett (www.monsternett.no) >>>>> /\\ Violgata 3A, N-1776 HALDEN, NORWAY >>>>> _\_v Phone: (+47) 69701802 | Fax: (+47) 69701801 >>>>> >>>>> >>>>> ---- >>>>> If you don't want to receive emails from the RIPE NCC members-discuss >>>>> mailing list, please log in to your LIR Portal account and go to the >>>>> general page: >>>>> https://lirportal.ripe.net/general/ >>>>> >>>>> Click on "Edit my LIR details", under "Subscribed Mailing Lists". From >>>>> here, you can add or remove addresses. >>>>> >>>>> >>>>> >>>> >>>> ---- >>>> If you don't want to receive emails from the RIPE NCC members-discuss >>>> mailing list, please log in to your LIR Portal account and go to the >>>> general page: >>>> https://lirportal.ripe.net/general/ >>>> >>>> Click on "Edit my LIR details", under "Subscribed Mailing Lists". From >>>> here, you can add or remove addresses. >>>> >>>> >>>> >>> -- >>> Airwire Ltd. - Ag Nascadh Pobail an Iarthair >>> http://www.airwire.ie >>> Phone: 091-865 968 >>> Registered Office: Moy, Kinvara, Co. Galway, 091-865 968 - Registered in >>> Ireland No. 508961 >>> >>> >> >> >> > > -- > Airwire Ltd. - Ag Nascadh Pobail an Iarthair > http://www.airwire.ie > Phone: 091-865 968 > Registered Office: Moy, Kinvara, Co. Galway, 091-865 968 - Registered in > Ireland No. 508961 > -- *Tim Armstrong*Dark Lord of Network Operations +31 6 175 444 72 <+31617544472> -------------- next part -------------- An HTML attachment was scrubbed... URL: <https://lists.ripe.net/ripe/mail/archives/members-discuss/attachments/20170907/296b3fcf/attachment.html>
- Previous message (by thread): [members-discuss] Database Abuse
- Next message (by thread): [members-discuss] Database Abuse
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]