[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RPKI adoption (was: Re: Corporate Identity Theft: Azuki, LLC -- AS13389, 216.179.128.0/17)

Subject: RPKI adoption (was: Re: Corporate Identity Theft: Azuki, LLC -- AS13389, 216.179.128.0/17)
From: jcurran at arin.net (John Curran)
Date: Wed, 14 Aug 2019 16:07:49 +0000
In-reply-to: <248778.1565795740@turing-police>
References: <[email protected]> <[email protected]> <248778.1565795740@turing-police>

On 14 Aug 2019, at 11:15 AM, Valdis KlÄ?tnieks <valdis.kletnieks at vt.edu> wrote:
> 
> On Wed, 14 Aug 2019 02:42:09 -0000, John Curran said:
> 
>> You might want want to ask them why they are now a problem when they werenâ??t
>> before (Also worth noting that many of these ISP's own contracts with their
>> customers have rather similar indemnification clauses.)
> 
> Actually, it's probably ARIN that should be doing the asking, and seeing if
> they can change the wording and/or rephrase the issue to allay concerns.
> 
> It sounds to me like ARIN's *intent* was "if you get sued by your customers because
> you screw the pooch on deployment, it's your screw-up to clean up and not our
> problem". Or at least I *hope* that was the intent (see next paragraph)

That is indeed the intent - please deploy routing validation using best practices, so that you & your customers donâ??t suffer any adverse impact when ARIN's repository is not available.

> But I suspect a lot of companies are reading it as: "If a spammer sues you for using
> a block list that prevents them from spamming your customers, you can't end up
> owing money to the block list maintainers.  But if you rely on the ARIN TAL, and get
> sued by an address hijacker, you could end up owing money to ARINâ??.

Itâ??s is not â??you owe money to ARINâ??, but it could be â??you need to defend both yourself and ARIN from your customersâ?? litigation should you get it wrong."

> (Having said that, John, it takes a special sort of CEO to stand out and be seen
> in situations like this, and the world could probably use more CEO's like thatâ?¦)

<chuckle> fairly easy to do if one has a thick skinâ?¦ ;-)

Thanks!
/John

John Curran
President and CEO
American Registry for Internet Numbers


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: Message signed with OpenPGP
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20190814/6f4630bf/attachment.sig>

Follow-Ups:
- RPKI adoption (was: Re: Corporate Identity Theft: Azuki, LLC -- AS13389, 216.179.128.0/17)
  - From: rubensk at gmail.com (Rubens Kuhl)
- RPKI adoption (was: Re: Corporate Identity Theft: Azuki, LLC -- AS13389, 216.179.128.0/17)
  - From: valdis.kletnieks at vt.edu (Valdis Klētnieks)

References:
- Corporate Identity Theft: Azuki, LLC -- AS13389, 216.179.128.0/17
  - From: rfg at tristatelogic.com (Ronald F. Guilmette)
- RPKI adoption (was: Re: Corporate Identity Theft: Azuki, LLC -- AS13389, 216.179.128.0/17)
  - From: jcurran at arin.net (John Curran)
- RPKI adoption (was: Re: Corporate Identity Theft: Azuki, LLC -- AS13389, 216.179.128.0/17)
  - From: valdis.kletnieks at vt.edu (Valdis Klētnieks)

Prev by Date: RPKI adoption (was: Re: Corporate Identity Theft: Azuki, LLC -- AS13389, 216.179.128.0/17)
Next by Date: RPKI adoption (was: Re: Corporate Identity Theft: Azuki, LLC -- AS13389, 216.179.128.0/17)
Previous by thread: RPKI adoption (was: Re: Corporate Identity Theft: Azuki, LLC -- AS13389, 216.179.128.0/17)
Next by thread: RPKI adoption (was: Re: Corporate Identity Theft: Azuki, LLC -- AS13389, 216.179.128.0/17)
Index(es):
- Date
- Thread