[ncc-services-wg] Re: Admin: request for "Company Registration documents"
Daniel Roesen dr at cluenet.de
Mon Oct 10 17:26:37 CEST 2005
On Mon, Oct 10, 2005 at 04:57:46PM +0200, Gert Doering wrote: > On Mon, Oct 10, 2005 at 06:53:07PM +0400, Max Tulyev wrote: > > RIPE DB is just database, and if some records is changed - it doesn't help > > spammers. The aim is to take actions to networks giving them connectivity and > > announces that networks to the world. > > If you go to an upstream ISP, and can display a RIPE network entry that > claims "I own 184.108.40.206/16 and AS5539", chances are good that this ISP > will then provide routing for you... It's usually enough to just announce it right away, or fill some crappy web form with the prefix information. Unfortunately. > So indeed, getting the database entry is an important step toward tricking > ISPs to route you. Only for evildoers being customers of large ISPs who do stricly filter against IRR data. And then only RIPE IRR data can be used for authorization, as the only thing you need to create false IRR data in RADB is that you need to pay for a maintainer object. This is why I say that we need ONE constistent hierarchy of IRR auth data from IANA down. The safety net has larger holes than you seem to think, I'm afraid. :-Z Best regards, Daniel -- CLUE-RIPE -- Jabber: dr at cluenet.de -- dr at IRCnet -- PGP: 0xA85C8AA0