nanog mailing list archives
Re: Botnets buying up IPv4 address space
From: Jimmy Hess <mysidia () gmail com>
Date: Fri, 7 Oct 2011 18:57:45 -0500
On Fri, Oct 7, 2011 at 6:47 PM, Benson Schliesser <bensons () queuefull net> wrote:
Granted, a seller that doesn't update Whois should be more worried about the reputation of the buyer. But regardless, it is incorrect to assume that "needs justification" will prevent bad actors from acquiring address blocks. Even bad actors can justify their need, and some of them might even (*gasp*) lie about it in order to get what they want. The result would look like a normal transfer (with justified need, a Whois update, etc) and yet would result in a bad actor becoming an address holder.
Yes.... I am completely conceded to the fact that some bad actors will get all the addresses they want and more, in massive numbers. And continue to manage to get new addresses to play with, conveniently, as soon as their existing ones are blacklisted. I believe they already get all the addresses they want inexpensively, through lying to others or through illicit routing advertisements, and IPv4 exhaustion will make it harder/more expensive for the bad actors to "legitimately" get addresses that "look ok"; from the point of view of actually receiving the assignment, or the bad actor announcing address space "nobody will notice". Address exhaustion simply ultimately means there are a lot fewer addresses for bad actors to play; and they will be competing for scarce IP addresses against legitimate businesses, resulting in higher costs for bad actors attempting to utilize legitimate channels. My suggestion is that the right solution is not to try to prevent bad actors from getting addresses, but that the solution is for the bad actors to get de-peered.
Cheers, -Benson
-- -JH
Current thread:
- Re: Botnets buying up IPv4 address space, (continued)
- Re: Botnets buying up IPv4 address space Florian Weimer (Oct 08)
- Re: Botnets buying up IPv4 address space Jimmy Hess (Oct 08)
- Re: Botnets buying up IPv4 address space Martin Millnert (Oct 09)
- Re: Botnets buying up IPv4 address space Joel jaeggli (Oct 09)
- Re: Botnets buying up IPv4 address space David Conrad (Oct 07)
- Re: Botnets buying up IPv4 address space Randy Bush (Oct 07)
- Re: Botnets buying up IPv4 address space Christopher Morrow (Oct 07)
- Re: Botnets buying up IPv4 address space Benson Schliesser (Oct 07)
- Re: Botnets buying up IPv4 address space Jimmy Hess (Oct 07)
- Re: Botnets buying up IPv4 address space Owen DeLong (Oct 07)