Ettiquette and rules regarding Hijacked ASN's or IP space?
Joe Abley
jabley at isc.org
Mon Jun 9 17:04:14 UTC 2003
On Monday, Jun 9, 2003, at 12:53 Canada/Eastern, jlewis at lewis.org wrote:
>> Since the RIRs contain the information required to answer those
>> questions, you'd expect them (or their data) to be involved in the
>> process of answering them.
>
> They really don't. Thus far, when space is assigned, the RIRs have no
> way
> to later authenticate that an organization using the space is the same
> one
> that they assigned it to.
The RIRs definitely hold some of the data that would be required to
make educated pronouncements (although clearly not all of it).
Note that I'm not talking about absolute accuracy here; as long as
people are able to change companies, change their names, die, forge
documentation and otherwise lie, there will always be fraud. What is
needed is some trusted resource who can say "our best guess is that
this is legitimate".
At the moment there is no clear procedure for any ISP to follow to even
get a best guess as to whether an advertisement should be accepted or
not.
> As for the current state of BGP authentication/sanity checking, I can
> say
> 2 of my 4 upstreams take whatever I put in the routing registry.
I have met people who think that the existence of a route in the IRR is
somehow demonstrable evidence that a route should be accepted. I'm not
quite sure why they think that way.
Joe
More information about the NANOG
mailing list