Call for topics: Joint AFRALO-AfrICANN meeting for ICANN67
![](https://secure.gravatar.com/avatar/bb0103e43ce21dd4ee7415f0685e0624.jpg?s=120&d=mm&r=g)
Dear Colleagues, I hope this email finds you well. The ICANN67 Meeting is scheduled for March 7 - 12, 2020 in Cancún, Mexico. As with previous ICANN meetings, we plan to hold the Joint AFRALO-AfrICANN meeting. We would like to invite you to submit topics for this session. Our previous statements have focused on issues like: evolving the ICANN Multistakeholder model, New gTLD Subsequent Procedures, enhancing ICANN accountability, etc. Please see our previous statements here <https://community.icann.org/display/AFRALO/Joint+AFRALO-AfrICANN+Statements+Workspace>. Please see our proposed timeline: Call for topics: 9 - 16 January 2020 Topic announcement and call for drafting team: 17 - 22 January 2020 Drafting of Statement: 23 January - 13 February 2020 Send Statement to Staff for translation: 14 February 2020 Please send your suggested topics by *Thursday, 16 January 2020*, after which the drafting team will prepare a draft statement that will be shared with the rest of the members. Looking forward to your contributions. Kind regards, Sarah Kiden AFRALO Secretariat
![](https://secure.gravatar.com/avatar/d1cee3e0ebcdd25bcc6cd961ffdb7fa8.jpg?s=120&d=mm&r=g)
Thanks for sharing Sarah. Robert On Thursday, January 9, 2020, 10:41:47 PM GMT+3, Sarah Kiden <skiden@gmail.com> wrote: Dear Colleagues, I hope this email finds you well. The ICANN67 Meeting is scheduled for March 7 - 12, 2020 in Cancún, Mexico. As with previous ICANN meetings, we plan to hold the Joint AFRALO-AfrICANN meeting. We would like to invite you to submit topics for this session. Our previous statements have focused on issues like: evolving the ICANN Multistakeholder model, New gTLD Subsequent Procedures, enhancing ICANN accountability, etc. Please see our previous statements here. Please see our proposed timeline: Call for topics: 9 - 16 January 2020 Topic announcement and call for drafting team: 17 - 22 January 2020 Drafting of Statement: 23 January - 13 February 2020 Send Statement to Staff for translation: 14 February 2020 Please send your suggested topics by Thursday, 16 January 2020, after which the drafting team will prepare a draft statement that will be shared with the rest of the members. Looking forward to your contributions. Kind regards, Sarah KidenAFRALO Secretariat_______________________________________________ AfrICANN mailing list AfrICANN@afrinic.net https://lists.afrinic.net/mailman/listinfo/africann
![](https://secure.gravatar.com/avatar/08ee3d1ca99506800cde017697253926.jpg?s=120&d=mm&r=g)
Dear Sarah and colleagues, I would like to propose the following topic; Building the Capacity of end users to curb DNS Abuse is Africa. Regards On Thu, 9 Jan 2020, 10:57 pm Robert Nkambwe via AFRI-Discuss, < afri-discuss@atlarge-lists.icann.org> wrote:
Thanks for sharing Sarah.
Robert
On Thursday, January 9, 2020, 10:41:47 PM GMT+3, Sarah Kiden < skiden@gmail.com> wrote:
Dear Colleagues,
I hope this email finds you well. The ICANN67 Meeting is scheduled for March 7 - 12, 2020 in Cancún, Mexico. As with previous ICANN meetings, we plan to hold the Joint AFRALO-AfrICANN meeting. We would like to invite you to submit topics for this session. Our previous statements have focused on issues like: evolving the ICANN Multistakeholder model, New gTLD Subsequent Procedures, enhancing ICANN accountability, etc. Please see our previous statements here <https://community.icann.org/display/AFRALO/Joint+AFRALO-AfrICANN+Statements+Workspace>.
Please see our proposed timeline: Call for topics: 9 - 16 January 2020 Topic announcement and call for drafting team: 17 - 22 January 2020 Drafting of Statement: 23 January - 13 February 2020 Send Statement to Staff for translation: 14 February 2020
Please send your suggested topics by *Thursday, 16 January 2020*, after which the drafting team will prepare a draft statement that will be shared with the rest of the members.
Looking forward to your contributions.
Kind regards,
Sarah Kiden AFRALO Secretariat _______________________________________________ AfrICANN mailing list AfrICANN@afrinic.net https://lists.afrinic.net/mailman/listinfo/africann _______________________________________________ AFRI-Discuss mailing list AFRI-Discuss@atlarge-lists.icann.org https://atlarge-lists.icann.org/mailman/listinfo/afri-discuss
Homepage for the region: http://www.afralo.org
Posting guidelines to ensure machine translations of emails sent to this list are more accurate: http://www.funredes.org/mistica/english/emec/method_emec/presentation.html#a... _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
![](https://secure.gravatar.com/avatar/08ee3d1ca99506800cde017697253926.jpg?s=120&d=mm&r=g)
Apologies DNS Abuse in Africa * not is. Regards On Fri, 10 Jan 2020, 8:40 am Barrack Otieno, <otieno.barrack@gmail.com> wrote:
Dear Sarah and colleagues,
I would like to propose the following topic;
Building the Capacity of end users to curb DNS Abuse is Africa.
Regards
On Thu, 9 Jan 2020, 10:57 pm Robert Nkambwe via AFRI-Discuss, < afri-discuss@atlarge-lists.icann.org> wrote:
Thanks for sharing Sarah.
Robert
On Thursday, January 9, 2020, 10:41:47 PM GMT+3, Sarah Kiden < skiden@gmail.com> wrote:
Dear Colleagues,
I hope this email finds you well. The ICANN67 Meeting is scheduled for March 7 - 12, 2020 in Cancún, Mexico. As with previous ICANN meetings, we plan to hold the Joint AFRALO-AfrICANN meeting. We would like to invite you to submit topics for this session. Our previous statements have focused on issues like: evolving the ICANN Multistakeholder model, New gTLD Subsequent Procedures, enhancing ICANN accountability, etc. Please see our previous statements here <https://community.icann.org/display/AFRALO/Joint+AFRALO-AfrICANN+Statements+Workspace>.
Please see our proposed timeline: Call for topics: 9 - 16 January 2020 Topic announcement and call for drafting team: 17 - 22 January 2020 Drafting of Statement: 23 January - 13 February 2020 Send Statement to Staff for translation: 14 February 2020
Please send your suggested topics by *Thursday, 16 January 2020*, after which the drafting team will prepare a draft statement that will be shared with the rest of the members.
Looking forward to your contributions.
Kind regards,
Sarah Kiden AFRALO Secretariat _______________________________________________ AfrICANN mailing list AfrICANN@afrinic.net https://lists.afrinic.net/mailman/listinfo/africann _______________________________________________ AFRI-Discuss mailing list AFRI-Discuss@atlarge-lists.icann.org https://atlarge-lists.icann.org/mailman/listinfo/afri-discuss
Homepage for the region: http://www.afralo.org
Posting guidelines to ensure machine translations of emails sent to this list are more accurate: http://www.funredes.org/mistica/english/emec/method_emec/presentation.html#a... _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
![](https://secure.gravatar.com/avatar/5ee2c76ceac1c75cfb00dbe60e5abbb5.jpg?s=120&d=mm&r=g)
Dear All, I support Barrack's proposal. Building the capacity of African end users on the general question related to the DNS is very important. Kind regards Gabdibé Gabdibé GAB-HINGONNE Tel: (+235) 66 24 95 56/99 24 95 56 Skype: live:gabdibegabhingonne E-mail : gabdibegabhingonne@yahoo.fr gabdibegabhingonne@gmail.com Le ven. 10 janv. 2020 13:15, Barrack Otieno <otieno.barrack@gmail.com> a écrit :
Apologies DNS Abuse in Africa * not is.
Regards
On Fri, 10 Jan 2020, 8:40 am Barrack Otieno, <otieno.barrack@gmail.com> wrote:
Dear Sarah and colleagues,
I would like to propose the following topic;
Building the Capacity of end users to curb DNS Abuse is Africa.
Regards
On Thu, 9 Jan 2020, 10:57 pm Robert Nkambwe via AFRI-Discuss, < afri-discuss@atlarge-lists.icann.org> wrote:
Thanks for sharing Sarah.
Robert
On Thursday, January 9, 2020, 10:41:47 PM GMT+3, Sarah Kiden < skiden@gmail.com> wrote:
Dear Colleagues,
I hope this email finds you well. The ICANN67 Meeting is scheduled for March 7 - 12, 2020 in Cancún, Mexico. As with previous ICANN meetings, we plan to hold the Joint AFRALO-AfrICANN meeting. We would like to invite you to submit topics for this session. Our previous statements have focused on issues like: evolving the ICANN Multistakeholder model, New gTLD Subsequent Procedures, enhancing ICANN accountability, etc. Please see our previous statements here <https://community.icann.org/display/AFRALO/Joint+AFRALO-AfrICANN+Statements+Workspace>.
Please see our proposed timeline: Call for topics: 9 - 16 January 2020 Topic announcement and call for drafting team: 17 - 22 January 2020 Drafting of Statement: 23 January - 13 February 2020 Send Statement to Staff for translation: 14 February 2020
Please send your suggested topics by *Thursday, 16 January 2020*, after which the drafting team will prepare a draft statement that will be shared with the rest of the members.
Looking forward to your contributions.
Kind regards,
Sarah Kiden AFRALO Secretariat _______________________________________________ AfrICANN mailing list AfrICANN@afrinic.net https://lists.afrinic.net/mailman/listinfo/africann _______________________________________________ AFRI-Discuss mailing list AFRI-Discuss@atlarge-lists.icann.org https://atlarge-lists.icann.org/mailman/listinfo/afri-discuss
Homepage for the region: http://www.afralo.org
Posting guidelines to ensure machine translations of emails sent to this list are more accurate: http://www.funredes.org/mistica/english/emec/method_emec/presentation.html#a... _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
_______________________________________________ AFRI-Discuss mailing list AFRI-Discuss@atlarge-lists.icann.org https://atlarge-lists.icann.org/mailman/listinfo/afri-discuss
Homepage for the region: http://www.afralo.org
Posting guidelines to ensure machine translations of emails sent to this list are more accurate: http://www.funredes.org/mistica/english/emec/method_emec/presentation.html#a... _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
![](https://secure.gravatar.com/avatar/fb6fc2cca199026b77a1d031fbb56126.jpg?s=120&d=mm&r=g)
I also like the sound of Barrack's proposal. What exactly does "DNS Abuse" mean though? If it is to try and get all important Domains DNSSEC Signed and for all DNS Resolvers to become DNSSEC aware - that would be a winner in my book! Incidentally - about 50% of all DNS lookups in South Africa are DNSSEC aware. That's actually the easy bit. Just have the Internet Connection suppliers enable DNSSEC on their resolvers. Getting the bulk or at least the important Domains DNSSEC Signed will be a bit more challenging but is quite possible; e.g. any domain for a website which may involve a financial transaction or deal with personal information. On my Domain Registration and Hosting Platform, if I am running the Registrants DNS (Zone file), DNSSEC is simply an option the Registrant can switch on. I could change that and simply enable it for everyone. However, if the Domain is then moved to a Registrar that does not support DNSSEC - there would be issues for the new Registrar. On 2020/01/10 14:20, Gabdibé GAB-HINGONNE wrote:
Dear All, I support Barrack's proposal. Building the capacity of African end users on the general question related to the DNS is very important. Kind regards Gabdibé
Gabdibé GAB-HINGONNE Tel: (+235) 66 24 95 56/99 24 95 56 Skype: live:gabdibegabhingonne E-mail : gabdibegabhingonne@yahoo.fr <mailto:gabdibegabhingonne@yahoo.fr> gabdibegabhingonne@gmail.com <mailto:gabdibegabhingonne@gmail.com>
Le ven. 10 janv. 2020 13:15, Barrack Otieno <otieno.barrack@gmail.com <mailto:otieno.barrack@gmail.com>> a écrit :
Apologies DNS Abuse in Africa * not is.
Regards
On Fri, 10 Jan 2020, 8:40 am Barrack Otieno, <otieno.barrack@gmail.com <mailto:otieno.barrack@gmail.com>> wrote:
Dear Sarah and colleagues,
I would like to propose the following topic;
Building the Capacity of end users to curb DNS Abuse is Africa.
Regards
On Thu, 9 Jan 2020, 10:57 pm Robert Nkambwe via AFRI-Discuss, <afri-discuss@atlarge-lists.icann.org <mailto:afri-discuss@atlarge-lists.icann.org>> wrote:
Thanks for sharing Sarah.
Robert
On Thursday, January 9, 2020, 10:41:47 PM GMT+3, Sarah Kiden <skiden@gmail.com <mailto:skiden@gmail.com>> wrote:
Dear Colleagues,
I hope this email finds you well. The ICANN67 Meeting is scheduled for March 7 - 12, 2020 in Cancún, Mexico. As with previous ICANN meetings, we plan to hold the Joint AFRALO-AfrICANN meeting. We would like to invite you to submit topics for this session. Our previous statements have focused on issues like: evolving the ICANN Multistakeholder model, New gTLD Subsequent Procedures, enhancing ICANN accountability, etc. Please see our previous statements here <https://community.icann.org/display/AFRALO/Joint+AFRALO-AfrICANN+Statements+Workspace>.
Please see our proposed timeline: Call for topics: 9 - 16 January 2020 Topic announcement and call for drafting team: 17 - 22 January 2020 Drafting of Statement: 23 January - 13 February 2020 Send Statement to Staff for translation: 14 February 2020
Please send your suggested topics by *Thursday, 16 January 2020*, after which the drafting team will prepare a draft statement that will be shared with the rest of the members. * * Looking forward to your contributions.
Kind regards,
Sarah Kiden AFRALO Secretariat _______________________________________________ AfrICANN mailing list AfrICANN@afrinic.net <mailto:AfrICANN@afrinic.net> https://lists.afrinic.net/mailman/listinfo/africann _______________________________________________ AFRI-Discuss mailing list AFRI-Discuss@atlarge-lists.icann.org <mailto:AFRI-Discuss@atlarge-lists.icann.org> https://atlarge-lists.icann.org/mailman/listinfo/afri-discuss
Homepage for the region: http://www.afralo.org
Posting guidelines to ensure machine translations of emails sent to this list are more accurate: http://www.funredes.org/mistica/english/emec/method_emec/presentation.html#a... _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
_______________________________________________ AFRI-Discuss mailing list AFRI-Discuss@atlarge-lists.icann.org <mailto:AFRI-Discuss@atlarge-lists.icann.org> https://atlarge-lists.icann.org/mailman/listinfo/afri-discuss
Homepage for the region: http://www.afralo.org
Posting guidelines to ensure machine translations of emails sent to this list are more accurate: http://www.funredes.org/mistica/english/emec/method_emec/presentation.html#a... _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
_______________________________________________ AfrICANN mailing list AfrICANN@afrinic.net https://lists.afrinic.net/mailman/listinfo/africann --
Mark James ELKINS - Posix Systems - (South) Africa mje@posix.co.za Tel: +27.826010496 <tel:+27826010496> For fast, reliable, low cost Internet in ZA: https://ftth.posix.co.za Posix SystemsVCARD for MJ Elkins
![](https://secure.gravatar.com/avatar/65ad363aee33ab3894c09b65369913d9.jpg?s=120&d=mm&r=g)
Gabdibé, drafting a resolution (beforehand), or even debating a resolution, is going to achieve absolutely nothing. Mark, 50% lookups is actually almost worth than zero :-)-). And how many of those hit infrastructure actually in South Africa? Does the figure include the public ones from Google and Cloudflare? My view is that this only works All-or-Nothing, because noncompliant commercial resolver operators have a commercial advantage over complaint ones. Financial incentives may work as may financial or other sanctions. One could even make it part of the Accreditation that DNSSEC must be offered by the Registrars. But while the Registrars are usually the entities operating the DNS and as such have control over the end-user's DNS anyway, the chain of trust should go up to the end user and not just the Registrar. Talking to the banks has so far not been very effective, they are happy with HTTPS even though they forget to renew their certificate on a regular basis, never mind the expense. I don't have the answer either. If anyone has a technical "solution" or project going on, and is coming to Cancun, please feel free to propose a presentation at TechDay on the Monday. greetings, el On 10/01/2020 15:26, Mark Elkins wrote:
I also like the sound of Barrack's proposal. What exactly does "DNS Abuse" mean though?
If it is to try and get all important Domains DNSSEC Signed and for all DNS Resolvers to become DNSSEC aware - that would be a winner in my book!
Incidentally - about 50% of all DNS lookups in South Africa are DNSSEC aware. That's actually the easy bit. Just have the Internet Connection suppliers enable DNSSEC on their resolvers.
Getting the bulk or at least the important Domains DNSSEC Signed will be a bit more challenging but is quite possible; e.g. any domain for a website which may involve a financial transaction or deal with personal information.
On my Domain Registration and Hosting Platform, if I am running the Registrants DNS (Zone file), DNSSEC is simply an option the Registrant can switch on. I could change that and simply enable it for everyone. However, if the Domain is then moved to a Registrar that does not support DNSSEC - there would be issues for the new Registrar.
On 2020/01/10 14:20, Gabdibé GAB-HINGONNE wrote:
Dear All, I support Barrack's proposal. Building the capacity of African end users on the general question related to the DNS is very important. Kind regards Gabdibé
![](https://secure.gravatar.com/avatar/08ee3d1ca99506800cde017697253926.jpg?s=120&d=mm&r=g)
Good points Mark and El, I think the end user has been missing in the DNS Security conversation yet they are actually the ones who speak with their pockets, if i may use a Kenyan Proverb. An enlightened end user is an empowered end user. As we bring the next billion users online cases of DNS abuse will definately increase. If governments feel that industry players have not control they will definately step in and thats what we are avoiding. Regards On Fri, 10 Jan 2020, 4:55 pm Dr Eberhard W Lisse, <el@lisse.na> wrote:
Gabdibé,
drafting a resolution (beforehand), or even debating a resolution, is going to achieve absolutely nothing.
Mark,
50% lookups is actually almost worth than zero :-)-).
And how many of those hit infrastructure actually in South Africa? Does the figure include the public ones from Google and Cloudflare?
My view is that this only works All-or-Nothing, because noncompliant commercial resolver operators have a commercial advantage over complaint ones.
Financial incentives may work as may financial or other sanctions.
One could even make it part of the Accreditation that DNSSEC must be offered by the Registrars.
But while the Registrars are usually the entities operating the DNS and as such have control over the end-user's DNS anyway, the chain of trust should go up to the end user and not just the Registrar.
Talking to the banks has so far not been very effective, they are happy with HTTPS even though they forget to renew their certificate on a regular basis, never mind the expense.
I don't have the answer either.
If anyone has a technical "solution" or project going on, and is coming to Cancun, please feel free to propose a presentation at TechDay on the Monday.
greetings, el
On 10/01/2020 15:26, Mark Elkins wrote:
I also like the sound of Barrack's proposal. What exactly does "DNS Abuse" mean though?
If it is to try and get all important Domains DNSSEC Signed and for all DNS Resolvers to become DNSSEC aware - that would be a winner in my book!
Incidentally - about 50% of all DNS lookups in South Africa are DNSSEC aware. That's actually the easy bit. Just have the Internet Connection suppliers enable DNSSEC on their resolvers.
Getting the bulk or at least the important Domains DNSSEC Signed will be a bit more challenging but is quite possible; e.g. any domain for a website which may involve a financial transaction or deal with personal information.
On my Domain Registration and Hosting Platform, if I am running the Registrants DNS (Zone file), DNSSEC is simply an option the Registrant can switch on. I could change that and simply enable it for everyone. However, if the Domain is then moved to a Registrar that does not support DNSSEC - there would be issues for the new Registrar.
On 2020/01/10 14:20, Gabdibé GAB-HINGONNE wrote:
Dear All, I support Barrack's proposal. Building the capacity of African end users on the general question related to the DNS is very important. Kind regards Gabdibé
![](https://secure.gravatar.com/avatar/bb0103e43ce21dd4ee7415f0685e0624.jpg?s=120&d=mm&r=g)
Dear all, I would kindly like to remind you that the deadline to receive your suggestions for topics for our joint statement is *Thursday, 16 January 2020*. So far, we have received 2 suggestions: 1. Building the capacity of end users to curb DNS abuse in Africa (suggested by Barrack Otieno and supported by 3 members) 2. Core priority areas to focus on within the African ICANN Strategy (suggested by Poncelet Ileleji) If you have other suggestions or would like to support the suggested topics, please let us know before the deadline. Regards, Sarah On Fri, Jan 10, 2020 at 2:19 PM Barrack Otieno <otieno.barrack@gmail.com> wrote:
Good points Mark and El,
I think the end user has been missing in the DNS Security conversation yet they are actually the ones who speak with their pockets, if i may use a Kenyan Proverb. An enlightened end user is an empowered end user. As we bring the next billion users online cases of DNS abuse will definately increase. If governments feel that industry players have not control they will definately step in and thats what we are avoiding.
Regards
On Fri, 10 Jan 2020, 4:55 pm Dr Eberhard W Lisse, <el@lisse.na> wrote:
Gabdibé,
drafting a resolution (beforehand), or even debating a resolution, is going to achieve absolutely nothing.
Mark,
50% lookups is actually almost worth than zero :-)-).
And how many of those hit infrastructure actually in South Africa? Does the figure include the public ones from Google and Cloudflare?
My view is that this only works All-or-Nothing, because noncompliant commercial resolver operators have a commercial advantage over complaint ones.
Financial incentives may work as may financial or other sanctions.
One could even make it part of the Accreditation that DNSSEC must be offered by the Registrars.
But while the Registrars are usually the entities operating the DNS and as such have control over the end-user's DNS anyway, the chain of trust should go up to the end user and not just the Registrar.
Talking to the banks has so far not been very effective, they are happy with HTTPS even though they forget to renew their certificate on a regular basis, never mind the expense.
I don't have the answer either.
If anyone has a technical "solution" or project going on, and is coming to Cancun, please feel free to propose a presentation at TechDay on the Monday.
greetings, el
On 10/01/2020 15:26, Mark Elkins wrote:
I also like the sound of Barrack's proposal. What exactly does "DNS Abuse" mean though?
If it is to try and get all important Domains DNSSEC Signed and for all DNS Resolvers to become DNSSEC aware - that would be a winner in my book!
Incidentally - about 50% of all DNS lookups in South Africa are DNSSEC aware. That's actually the easy bit. Just have the Internet Connection suppliers enable DNSSEC on their resolvers.
Getting the bulk or at least the important Domains DNSSEC Signed will be a bit more challenging but is quite possible; e.g. any domain for a website which may involve a financial transaction or deal with personal information.
On my Domain Registration and Hosting Platform, if I am running the Registrants DNS (Zone file), DNSSEC is simply an option the Registrant can switch on. I could change that and simply enable it for everyone. However, if the Domain is then moved to a Registrar that does not support DNSSEC - there would be issues for the new Registrar.
On 2020/01/10 14:20, Gabdibé GAB-HINGONNE wrote:
Dear All, I support Barrack's proposal. Building the capacity of African end users on the general question related to the DNS is very important. Kind regards Gabdibé
_______________________________________________ AFRI-Discuss mailing list AFRI-Discuss@atlarge-lists.icann.org https://atlarge-lists.icann.org/mailman/listinfo/afri-discuss
Homepage for the region: http://www.afralo.org
Posting guidelines to ensure machine translations of emails sent to this list are more accurate: http://www.funredes.org/mistica/english/emec/method_emec/presentation.html#a... _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
![](https://secure.gravatar.com/avatar/ee371edcfba22ce6daec05394ded4c92.jpg?s=120&d=mm&r=g)
Sent from my Samsung Galaxy smartphone. -------- Original message -------- From: Sarah Kiden <skiden@gmail.com> Date: 14/01/2020 11:55 a.m. (GMT+00:00) To: Barrack Otieno <otieno.barrack@gmail.com> Cc: Afri-Discuss <afri-discuss@atlarge-lists.icann.org>, AfrICANN Community List <africann@afrinic.net> Subject: Re: [AfrICANN-discuss] [AFRI-Discuss] Call for topics: Joint AFRALO-AfrICANN meeting for ICANN67 Dear all, I would kindly like to remind you that the deadline to receive your suggestions for topics for our joint statement is Thursday, 16 January 2020. So far, we have received 2 suggestions: 1. Building the capacity of end users to curb DNS abuse in Africa (suggested by Barrack Otieno and supported by 3 members) 2. Core priority areas to focus on within the African ICANN Strategy (suggested by Poncelet Ileleji) If you have other suggestions or would like to support the suggested topics, please let us know before the deadline. Regards, Sarah On Fri, Jan 10, 2020 at 2:19 PM Barrack Otieno <otieno.barrack@gmail.com<mailto:otieno.barrack@gmail.com>> wrote: Good points Mark and El, I think the end user has been missing in the DNS Security conversation yet they are actually the ones who speak with their pockets, if i may use a Kenyan Proverb. An enlightened end user is an empowered end user. As we bring the next billion users online cases of DNS abuse will definately increase. If governments feel that industry players have not control they will definately step in and thats what we are avoiding. Regards On Fri, 10 Jan 2020, 4:55 pm Dr Eberhard W Lisse, <el@lisse.na<mailto:el@lisse.na>> wrote: Gabdibé, drafting a resolution (beforehand), or even debating a resolution, is going to achieve absolutely nothing. Mark, 50% lookups is actually almost worth than zero :-)-). And how many of those hit infrastructure actually in South Africa? Does the figure include the public ones from Google and Cloudflare? My view is that this only works All-or-Nothing, because noncompliant commercial resolver operators have a commercial advantage over complaint ones. Financial incentives may work as may financial or other sanctions. One could even make it part of the Accreditation that DNSSEC must be offered by the Registrars. But while the Registrars are usually the entities operating the DNS and as such have control over the end-user's DNS anyway, the chain of trust should go up to the end user and not just the Registrar. Talking to the banks has so far not been very effective, they are happy with HTTPS even though they forget to renew their certificate on a regular basis, never mind the expense. I don't have the answer either. If anyone has a technical "solution" or project going on, and is coming to Cancun, please feel free to propose a presentation at TechDay on the Monday. greetings, el On 10/01/2020 15:26, Mark Elkins wrote:
I also like the sound of Barrack's proposal. What exactly does "DNS Abuse" mean though?
If it is to try and get all important Domains DNSSEC Signed and for all DNS Resolvers to become DNSSEC aware - that would be a winner in my book!
Incidentally - about 50% of all DNS lookups in South Africa are DNSSEC aware. That's actually the easy bit. Just have the Internet Connection suppliers enable DNSSEC on their resolvers.
Getting the bulk or at least the important Domains DNSSEC Signed will be a bit more challenging but is quite possible; e.g. any domain for a website which may involve a financial transaction or deal with personal information.
On my Domain Registration and Hosting Platform, if I am running the Registrants DNS (Zone file), DNSSEC is simply an option the Registrant can switch on. I could change that and simply enable it for everyone. However, if the Domain is then moved to a Registrar that does not support DNSSEC - there would be issues for the new Registrar.
On 2020/01/10 14:20, Gabdibé GAB-HINGONNE wrote:
Dear All, I support Barrack's proposal. Building the capacity of African end users on the general question related to the DNS is very important. Kind regards Gabdibé
AFRI-Discuss mailing list AFRI-Discuss@atlarge-lists.icann.org<mailto:AFRI-Discuss@atlarge-lists.icann.org> https://atlarge-lists.icann.org/mailman/listinfo/afri-discuss Homepage for the region: http://www.afralo.org Posting guidelines to ensure machine translations of emails sent to this list are more accurate: http://www.funredes.org/mistica/english/emec/method_emec/presentation.html#a... _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
![](https://secure.gravatar.com/avatar/ee371edcfba22ce6daec05394ded4c92.jpg?s=120&d=mm&r=g)
Sent from my Samsung Galaxy smartphone. -------- Original message -------- From: Sarah Kiden <skiden@gmail.com> Date: 14/01/2020 11:55 a.m. (GMT+00:00) To: Barrack Otieno <otieno.barrack@gmail.com> Cc: Afri-Discuss <afri-discuss@atlarge-lists.icann.org>, AfrICANN Community List <africann@afrinic.net> Subject: Re: [AfrICANN-discuss] [AFRI-Discuss] Call for topics: Joint AFRALO-AfrICANN meeting for ICANN67 Dear all, I would kindly like to remind you that the deadline to receive your suggestions for topics for our joint statement is Thursday, 16 January 2020. So far, we have received 2 suggestions: 1. Building the capacity of end users to curb DNS abuse in Africa (suggested by Barrack Otieno and supported by 3 members) 2. Core priority areas to focus on within the African ICANN Strategy (suggested by Poncelet Ileleji) If you have other suggestions or would like to support the suggested topics, please let us know before the deadline. Regards, Sarah On Fri, Jan 10, 2020 at 2:19 PM Barrack Otieno <otieno.barrack@gmail.com<mailto:otieno.barrack@gmail.com>> wrote: Good points Mark and El, I think the end user has been missing in the DNS Security conversation yet they are actually the ones who speak with their pockets, if i may use a Kenyan Proverb. An enlightened end user is an empowered end user. As we bring the next billion users online cases of DNS abuse will definately increase. If governments feel that industry players have not control they will definately step in and thats what we are avoiding. Regards On Fri, 10 Jan 2020, 4:55 pm Dr Eberhard W Lisse, <el@lisse.na<mailto:el@lisse.na>> wrote: Gabdibé, drafting a resolution (beforehand), or even debating a resolution, is going to achieve absolutely nothing. Mark, 50% lookups is actually almost worth than zero :-)-). And how many of those hit infrastructure actually in South Africa? Does the figure include the public ones from Google and Cloudflare? My view is that this only works All-or-Nothing, because noncompliant commercial resolver operators have a commercial advantage over complaint ones. Financial incentives may work as may financial or other sanctions. One could even make it part of the Accreditation that DNSSEC must be offered by the Registrars. But while the Registrars are usually the entities operating the DNS and as such have control over the end-user's DNS anyway, the chain of trust should go up to the end user and not just the Registrar. Talking to the banks has so far not been very effective, they are happy with HTTPS even though they forget to renew their certificate on a regular basis, never mind the expense. I don't have the answer either. If anyone has a technical "solution" or project going on, and is coming to Cancun, please feel free to propose a presentation at TechDay on the Monday. greetings, el On 10/01/2020 15:26, Mark Elkins wrote:
I also like the sound of Barrack's proposal. What exactly does "DNS Abuse" mean though?
If it is to try and get all important Domains DNSSEC Signed and for all DNS Resolvers to become DNSSEC aware - that would be a winner in my book!
Incidentally - about 50% of all DNS lookups in South Africa are DNSSEC aware. That's actually the easy bit. Just have the Internet Connection suppliers enable DNSSEC on their resolvers.
Getting the bulk or at least the important Domains DNSSEC Signed will be a bit more challenging but is quite possible; e.g. any domain for a website which may involve a financial transaction or deal with personal information.
On my Domain Registration and Hosting Platform, if I am running the Registrants DNS (Zone file), DNSSEC is simply an option the Registrant can switch on. I could change that and simply enable it for everyone. However, if the Domain is then moved to a Registrar that does not support DNSSEC - there would be issues for the new Registrar.
On 2020/01/10 14:20, Gabdibé GAB-HINGONNE wrote:
Dear All, I support Barrack's proposal. Building the capacity of African end users on the general question related to the DNS is very important. Kind regards Gabdibé
AFRI-Discuss mailing list AFRI-Discuss@atlarge-lists.icann.org<mailto:AFRI-Discuss@atlarge-lists.icann.org> https://atlarge-lists.icann.org/mailman/listinfo/afri-discuss Homepage for the region: http://www.afralo.org Posting guidelines to ensure machine translations of emails sent to this list are more accurate: http://www.funredes.org/mistica/english/emec/method_emec/presentation.html#a... _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
![](https://secure.gravatar.com/avatar/ee371edcfba22ce6daec05394ded4c92.jpg?s=120&d=mm&r=g)
Sent from my Samsung Galaxy smartphone. -------- Original message -------- From: Sarah Kiden <skiden@gmail.com> Date: 14/01/2020 11:55 a.m. (GMT+00:00) To: Barrack Otieno <otieno.barrack@gmail.com> Cc: Afri-Discuss <afri-discuss@atlarge-lists.icann.org>, AfrICANN Community List <africann@afrinic.net> Subject: Re: [AfrICANN-discuss] [AFRI-Discuss] Call for topics: Joint AFRALO-AfrICANN meeting for ICANN67 Dear all, I would kindly like to remind you that the deadline to receive your suggestions for topics for our joint statement is Thursday, 16 January 2020. So far, we have received 2 suggestions: 1. Building the capacity of end users to curb DNS abuse in Africa (suggested by Barrack Otieno and supported by 3 members) 2. Core priority areas to focus on within the African ICANN Strategy (suggested by Poncelet Ileleji) If you have other suggestions or would like to support the suggested topics, please let us know before the deadline. Regards, Sarah On Fri, Jan 10, 2020 at 2:19 PM Barrack Otieno <otieno.barrack@gmail.com<mailto:otieno.barrack@gmail.com>> wrote: Good points Mark and El, I think the end user has been missing in the DNS Security conversation yet they are actually the ones who speak with their pockets, if i may use a Kenyan Proverb. An enlightened end user is an empowered end user. As we bring the next billion users online cases of DNS abuse will definately increase. If governments feel that industry players have not control they will definately step in and thats what we are avoiding. Regards On Fri, 10 Jan 2020, 4:55 pm Dr Eberhard W Lisse, <el@lisse.na<mailto:el@lisse.na>> wrote: Gabdibé, drafting a resolution (beforehand), or even debating a resolution, is going to achieve absolutely nothing. Mark, 50% lookups is actually almost worth than zero :-)-). And how many of those hit infrastructure actually in South Africa? Does the figure include the public ones from Google and Cloudflare? My view is that this only works All-or-Nothing, because noncompliant commercial resolver operators have a commercial advantage over complaint ones. Financial incentives may work as may financial or other sanctions. One could even make it part of the Accreditation that DNSSEC must be offered by the Registrars. But while the Registrars are usually the entities operating the DNS and as such have control over the end-user's DNS anyway, the chain of trust should go up to the end user and not just the Registrar. Talking to the banks has so far not been very effective, they are happy with HTTPS even though they forget to renew their certificate on a regular basis, never mind the expense. I don't have the answer either. If anyone has a technical "solution" or project going on, and is coming to Cancun, please feel free to propose a presentation at TechDay on the Monday. greetings, el On 10/01/2020 15:26, Mark Elkins wrote:
I also like the sound of Barrack's proposal. What exactly does "DNS Abuse" mean though?
If it is to try and get all important Domains DNSSEC Signed and for all DNS Resolvers to become DNSSEC aware - that would be a winner in my book!
Incidentally - about 50% of all DNS lookups in South Africa are DNSSEC aware. That's actually the easy bit. Just have the Internet Connection suppliers enable DNSSEC on their resolvers.
Getting the bulk or at least the important Domains DNSSEC Signed will be a bit more challenging but is quite possible; e.g. any domain for a website which may involve a financial transaction or deal with personal information.
On my Domain Registration and Hosting Platform, if I am running the Registrants DNS (Zone file), DNSSEC is simply an option the Registrant can switch on. I could change that and simply enable it for everyone. However, if the Domain is then moved to a Registrar that does not support DNSSEC - there would be issues for the new Registrar.
On 2020/01/10 14:20, Gabdibé GAB-HINGONNE wrote:
Dear All, I support Barrack's proposal. Building the capacity of African end users on the general question related to the DNS is very important. Kind regards Gabdibé
AFRI-Discuss mailing list AFRI-Discuss@atlarge-lists.icann.org<mailto:AFRI-Discuss@atlarge-lists.icann.org> https://atlarge-lists.icann.org/mailman/listinfo/afri-discuss Homepage for the region: http://www.afralo.org Posting guidelines to ensure machine translations of emails sent to this list are more accurate: http://www.funredes.org/mistica/english/emec/method_emec/presentation.html#a... _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
![](https://secure.gravatar.com/avatar/ee371edcfba22ce6daec05394ded4c92.jpg?s=120&d=mm&r=g)
Sent from my Samsung Galaxy smartphone. -------- Original message -------- From: Sarah Kiden <skiden@gmail.com> Date: 14/01/2020 11:55 a.m. (GMT+00:00) To: Barrack Otieno <otieno.barrack@gmail.com> Cc: Afri-Discuss <afri-discuss@atlarge-lists.icann.org>, AfrICANN Community List <africann@afrinic.net> Subject: Re: [AfrICANN-discuss] [AFRI-Discuss] Call for topics: Joint AFRALO-AfrICANN meeting for ICANN67 Dear all, I would kindly like to remind you that the deadline to receive your suggestions for topics for our joint statement is Thursday, 16 January 2020. So far, we have received 2 suggestions: 1. Building the capacity of end users to curb DNS abuse in Africa (suggested by Barrack Otieno and supported by 3 members) 2. Core priority areas to focus on within the African ICANN Strategy (suggested by Poncelet Ileleji) If you have other suggestions or would like to support the suggested topics, please let us know before the deadline. Regards, Sarah On Fri, Jan 10, 2020 at 2:19 PM Barrack Otieno <otieno.barrack@gmail.com<mailto:otieno.barrack@gmail.com>> wrote: Good points Mark and El, I think the end user has been missing in the DNS Security conversation yet they are actually the ones who speak with their pockets, if i may use a Kenyan Proverb. An enlightened end user is an empowered end user. As we bring the next billion users online cases of DNS abuse will definately increase. If governments feel that industry players have not control they will definately step in and thats what we are avoiding. Regards On Fri, 10 Jan 2020, 4:55 pm Dr Eberhard W Lisse, <el@lisse.na<mailto:el@lisse.na>> wrote: Gabdibé, drafting a resolution (beforehand), or even debating a resolution, is going to achieve absolutely nothing. Mark, 50% lookups is actually almost worth than zero :-)-). And how many of those hit infrastructure actually in South Africa? Does the figure include the public ones from Google and Cloudflare? My view is that this only works All-or-Nothing, because noncompliant commercial resolver operators have a commercial advantage over complaint ones. Financial incentives may work as may financial or other sanctions. One could even make it part of the Accreditation that DNSSEC must be offered by the Registrars. But while the Registrars are usually the entities operating the DNS and as such have control over the end-user's DNS anyway, the chain of trust should go up to the end user and not just the Registrar. Talking to the banks has so far not been very effective, they are happy with HTTPS even though they forget to renew their certificate on a regular basis, never mind the expense. I don't have the answer either. If anyone has a technical "solution" or project going on, and is coming to Cancun, please feel free to propose a presentation at TechDay on the Monday. greetings, el On 10/01/2020 15:26, Mark Elkins wrote:
I also like the sound of Barrack's proposal. What exactly does "DNS Abuse" mean though?
If it is to try and get all important Domains DNSSEC Signed and for all DNS Resolvers to become DNSSEC aware - that would be a winner in my book!
Incidentally - about 50% of all DNS lookups in South Africa are DNSSEC aware. That's actually the easy bit. Just have the Internet Connection suppliers enable DNSSEC on their resolvers.
Getting the bulk or at least the important Domains DNSSEC Signed will be a bit more challenging but is quite possible; e.g. any domain for a website which may involve a financial transaction or deal with personal information.
On my Domain Registration and Hosting Platform, if I am running the Registrants DNS (Zone file), DNSSEC is simply an option the Registrant can switch on. I could change that and simply enable it for everyone. However, if the Domain is then moved to a Registrar that does not support DNSSEC - there would be issues for the new Registrar.
On 2020/01/10 14:20, Gabdibé GAB-HINGONNE wrote:
Dear All, I support Barrack's proposal. Building the capacity of African end users on the general question related to the DNS is very important. Kind regards Gabdibé
AFRI-Discuss mailing list AFRI-Discuss@atlarge-lists.icann.org<mailto:AFRI-Discuss@atlarge-lists.icann.org> https://atlarge-lists.icann.org/mailman/listinfo/afri-discuss Homepage for the region: http://www.afralo.org Posting guidelines to ensure machine translations of emails sent to this list are more accurate: http://www.funredes.org/mistica/english/emec/method_emec/presentation.html#a... _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
![](https://secure.gravatar.com/avatar/ee371edcfba22ce6daec05394ded4c92.jpg?s=120&d=mm&r=g)
Sent from my Samsung Galaxy smartphone. -------- Original message -------- From: Sarah Kiden <skiden@gmail.com> Date: 14/01/2020 11:55 a.m. (GMT+00:00) To: Barrack Otieno <otieno.barrack@gmail.com> Cc: Afri-Discuss <afri-discuss@atlarge-lists.icann.org>, AfrICANN Community List <africann@afrinic.net> Subject: Re: [AfrICANN-discuss] [AFRI-Discuss] Call for topics: Joint AFRALO-AfrICANN meeting for ICANN67 Dear all, I would kindly like to remind you that the deadline to receive your suggestions for topics for our joint statement is Thursday, 16 January 2020. So far, we have received 2 suggestions: 1. Building the capacity of end users to curb DNS abuse in Africa (suggested by Barrack Otieno and supported by 3 members) 2. Core priority areas to focus on within the African ICANN Strategy (suggested by Poncelet Ileleji) If you have other suggestions or would like to support the suggested topics, please let us know before the deadline. Regards, Sarah On Fri, Jan 10, 2020 at 2:19 PM Barrack Otieno <otieno.barrack@gmail.com<mailto:otieno.barrack@gmail.com>> wrote: Good points Mark and El, I think the end user has been missing in the DNS Security conversation yet they are actually the ones who speak with their pockets, if i may use a Kenyan Proverb. An enlightened end user is an empowered end user. As we bring the next billion users online cases of DNS abuse will definately increase. If governments feel that industry players have not control they will definately step in and thats what we are avoiding. Regards On Fri, 10 Jan 2020, 4:55 pm Dr Eberhard W Lisse, <el@lisse.na<mailto:el@lisse.na>> wrote: Gabdibé, drafting a resolution (beforehand), or even debating a resolution, is going to achieve absolutely nothing. Mark, 50% lookups is actually almost worth than zero :-)-). And how many of those hit infrastructure actually in South Africa? Does the figure include the public ones from Google and Cloudflare? My view is that this only works All-or-Nothing, because noncompliant commercial resolver operators have a commercial advantage over complaint ones. Financial incentives may work as may financial or other sanctions. One could even make it part of the Accreditation that DNSSEC must be offered by the Registrars. But while the Registrars are usually the entities operating the DNS and as such have control over the end-user's DNS anyway, the chain of trust should go up to the end user and not just the Registrar. Talking to the banks has so far not been very effective, they are happy with HTTPS even though they forget to renew their certificate on a regular basis, never mind the expense. I don't have the answer either. If anyone has a technical "solution" or project going on, and is coming to Cancun, please feel free to propose a presentation at TechDay on the Monday. greetings, el On 10/01/2020 15:26, Mark Elkins wrote:
I also like the sound of Barrack's proposal. What exactly does "DNS Abuse" mean though?
If it is to try and get all important Domains DNSSEC Signed and for all DNS Resolvers to become DNSSEC aware - that would be a winner in my book!
Incidentally - about 50% of all DNS lookups in South Africa are DNSSEC aware. That's actually the easy bit. Just have the Internet Connection suppliers enable DNSSEC on their resolvers.
Getting the bulk or at least the important Domains DNSSEC Signed will be a bit more challenging but is quite possible; e.g. any domain for a website which may involve a financial transaction or deal with personal information.
On my Domain Registration and Hosting Platform, if I am running the Registrants DNS (Zone file), DNSSEC is simply an option the Registrant can switch on. I could change that and simply enable it for everyone. However, if the Domain is then moved to a Registrar that does not support DNSSEC - there would be issues for the new Registrar.
On 2020/01/10 14:20, Gabdibé GAB-HINGONNE wrote:
Dear All, I support Barrack's proposal. Building the capacity of African end users on the general question related to the DNS is very important. Kind regards Gabdibé
AFRI-Discuss mailing list AFRI-Discuss@atlarge-lists.icann.org<mailto:AFRI-Discuss@atlarge-lists.icann.org> https://atlarge-lists.icann.org/mailman/listinfo/afri-discuss Homepage for the region: http://www.afralo.org Posting guidelines to ensure machine translations of emails sent to this list are more accurate: http://www.funredes.org/mistica/english/emec/method_emec/presentation.html#a... _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
![](https://secure.gravatar.com/avatar/bb0103e43ce21dd4ee7415f0685e0624.jpg?s=120&d=mm&r=g)
Dear all, Thank you for your suggestions and feedback. We received the following suggestions: 1. Building the capacity of end users to curb DNS abuse in Africa (suggested by Barrack Otieno). 2. Core priority areas to focus on within the African ICANN Strategy (Poncelet Ileleji) 3. ICANN engagement from grassroots level in Africa (Lillian Kamara) 4. Connecting the unconnected for digital Africa (Abdalmonem Galila) 5. African priority areas within the ICANN Strategic Plan (Abdulkarim Oloyede) 6. How the ICANN multistakholder model works: end-user view (Olivier Kouami) Based on discussions on the list, I believe "DNS Abuse" received the most support. There were variations of suggestions for the topic, which I believe the team will decide. If you are interested in joining the statement drafting team, kindly send me an email (off list) and keep staff@atlarge.icann.org in copy. Thank you, Sarah On Tue, Jan 14, 2020 at 11:49 AM Sarah Kiden <skiden@gmail.com> wrote:
Dear all,
I would kindly like to remind you that the deadline to receive your suggestions for topics for our joint statement is *Thursday, 16 January 2020*.
So far, we have received 2 suggestions:
1. Building the capacity of end users to curb DNS abuse in Africa (suggested by Barrack Otieno and supported by 3 members) 2. Core priority areas to focus on within the African ICANN Strategy (suggested by Poncelet Ileleji)
If you have other suggestions or would like to support the suggested topics, please let us know before the deadline.
Regards,
Sarah
On Fri, Jan 10, 2020 at 2:19 PM Barrack Otieno <otieno.barrack@gmail.com> wrote:
Good points Mark and El,
I think the end user has been missing in the DNS Security conversation yet they are actually the ones who speak with their pockets, if i may use a Kenyan Proverb. An enlightened end user is an empowered end user. As we bring the next billion users online cases of DNS abuse will definately increase. If governments feel that industry players have not control they will definately step in and thats what we are avoiding.
Regards
On Fri, 10 Jan 2020, 4:55 pm Dr Eberhard W Lisse, <el@lisse.na> wrote:
Gabdibé,
drafting a resolution (beforehand), or even debating a resolution, is going to achieve absolutely nothing.
Mark,
50% lookups is actually almost worth than zero :-)-).
And how many of those hit infrastructure actually in South Africa? Does the figure include the public ones from Google and Cloudflare?
My view is that this only works All-or-Nothing, because noncompliant commercial resolver operators have a commercial advantage over complaint ones.
Financial incentives may work as may financial or other sanctions.
One could even make it part of the Accreditation that DNSSEC must be offered by the Registrars.
But while the Registrars are usually the entities operating the DNS and as such have control over the end-user's DNS anyway, the chain of trust should go up to the end user and not just the Registrar.
Talking to the banks has so far not been very effective, they are happy with HTTPS even though they forget to renew their certificate on a regular basis, never mind the expense.
I don't have the answer either.
If anyone has a technical "solution" or project going on, and is coming to Cancun, please feel free to propose a presentation at TechDay on the Monday.
greetings, el
On 10/01/2020 15:26, Mark Elkins wrote:
I also like the sound of Barrack's proposal. What exactly does "DNS Abuse" mean though?
If it is to try and get all important Domains DNSSEC Signed and for all DNS Resolvers to become DNSSEC aware - that would be a winner in my book!
Incidentally - about 50% of all DNS lookups in South Africa are DNSSEC aware. That's actually the easy bit. Just have the Internet Connection suppliers enable DNSSEC on their resolvers.
Getting the bulk or at least the important Domains DNSSEC Signed will be a bit more challenging but is quite possible; e.g. any domain for a website which may involve a financial transaction or deal with personal information.
On my Domain Registration and Hosting Platform, if I am running the Registrants DNS (Zone file), DNSSEC is simply an option the Registrant can switch on. I could change that and simply enable it for everyone. However, if the Domain is then moved to a Registrar that does not support DNSSEC - there would be issues for the new Registrar.
On 2020/01/10 14:20, Gabdibé GAB-HINGONNE wrote:
Dear All, I support Barrack's proposal. Building the capacity of African end users on the general question related to the DNS is very important. Kind regards Gabdibé
_______________________________________________ AFRI-Discuss mailing list AFRI-Discuss@atlarge-lists.icann.org https://atlarge-lists.icann.org/mailman/listinfo/afri-discuss
Homepage for the region: http://www.afralo.org
Posting guidelines to ensure machine translations of emails sent to this list are more accurate: http://www.funredes.org/mistica/english/emec/method_emec/presentation.html#a... _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
![](https://secure.gravatar.com/avatar/29943efe6e0ec32f29967a3a1b40145b.jpg?s=120&d=mm&r=g)
Why would an “end user” care? Why would anyone want to make it more complicated and scary to get online? Surely this is an issue for industry and not the “end user”? Most of the DNS abuse issues at the moment are due to providers not looking after their own networks / devices or acting on abuse reports. It’s not a coincidence that we end up having to block entire countries from our network on a regular basis While the goal of Barrack’s proposal might be honourable I don’t think it’s particularly practical or realistic To use an analogy. You can train someone to check the oil in their car, which in the DNS space could be akin to making sure that software was kept up to date But pushing DNS abuse knowledge would be like expecting me to be able to strip my car down Regards Michele -- Mr Michele Neylon Blacknight Solutions Hosting, Colocation & Domains https://www.blacknight.com/ https://blacknight.blog/ Intl. +353 (0) 59 9183072 Direct Dial: +353 (0)59 9183090 Personal blog: https://michele.blog/ Some thoughts: https://ceo.hosting/ ------------------------------- Blacknight Internet Solutions Ltd, Unit 12A,Barrowside Business Park,Sleaty Road,Graiguecullen,Carlow,R93 X265,Ireland Company No.: 370845 From: Barrack Otieno <otieno.barrack@gmail.com> Reply to: "africann@afrinic.net" <africann@afrinic.net> Date: Friday 10 January 2020 at 14:21 To: "el@lisse.NA" <el@lisse.NA> Cc: Afri-Discuss <afri-discuss@atlarge-lists.icann.org>, "africann@afrinic.net" <africann@afrinic.net> Subject: Re: [AfrICANN-discuss] [AFRI-Discuss] Call for topics: Joint AFRALO-AfrICANN meeting for ICANN67 Good points Mark and El, I think the end user has been missing in the DNS Security conversation yet they are actually the ones who speak with their pockets, if i may use a Kenyan Proverb. An enlightened end user is an empowered end user. As we bring the next billion users online cases of DNS abuse will definately increase. If governments feel that industry players have not control they will definately step in and thats what we are avoiding. Regards On Fri, 10 Jan 2020, 4:55 pm Dr Eberhard W Lisse, <el@lisse.na<mailto:el@lisse.na>> wrote: Gabdibé, drafting a resolution (beforehand), or even debating a resolution, is going to achieve absolutely nothing. Mark, 50% lookups is actually almost worth than zero :-)-). And how many of those hit infrastructure actually in South Africa? Does the figure include the public ones from Google and Cloudflare? My view is that this only works All-or-Nothing, because noncompliant commercial resolver operators have a commercial advantage over complaint ones. Financial incentives may work as may financial or other sanctions. One could even make it part of the Accreditation that DNSSEC must be offered by the Registrars. But while the Registrars are usually the entities operating the DNS and as such have control over the end-user's DNS anyway, the chain of trust should go up to the end user and not just the Registrar. Talking to the banks has so far not been very effective, they are happy with HTTPS even though they forget to renew their certificate on a regular basis, never mind the expense. I don't have the answer either. If anyone has a technical "solution" or project going on, and is coming to Cancun, please feel free to propose a presentation at TechDay on the Monday. greetings, el On 10/01/2020 15:26, Mark Elkins wrote:
I also like the sound of Barrack's proposal. What exactly does "DNS Abuse" mean though?
If it is to try and get all important Domains DNSSEC Signed and for all DNS Resolvers to become DNSSEC aware - that would be a winner in my book!
Incidentally - about 50% of all DNS lookups in South Africa are DNSSEC aware. That's actually the easy bit. Just have the Internet Connection suppliers enable DNSSEC on their resolvers.
Getting the bulk or at least the important Domains DNSSEC Signed will be a bit more challenging but is quite possible; e.g. any domain for a website which may involve a financial transaction or deal with personal information.
On my Domain Registration and Hosting Platform, if I am running the Registrants DNS (Zone file), DNSSEC is simply an option the Registrant can switch on. I could change that and simply enable it for everyone. However, if the Domain is then moved to a Registrar that does not support DNSSEC - there would be issues for the new Registrar.
On 2020/01/10 14:20, Gabdibé GAB-HINGONNE wrote:
Dear All, I support Barrack's proposal. Building the capacity of African end users on the general question related to the DNS is very important. Kind regards Gabdibé
![](https://secure.gravatar.com/avatar/65ad363aee33ab3894c09b65369913d9.jpg?s=120&d=mm&r=g)
Michele, you are of course right (never mind the issues of scale), but remember, this is the AFRALO/AfrICAN waffle session, where prepared resolution is read, approved by whoever could get their trip funded to sit around there and then consigned to the trash bin. el On 15/01/2020 13:56, Michele Neylon - Blacknight wrote:
Why would an “end user” care? Why would anyone want to make it more complicated and scary to get online? Surely this is an issue for industry and not the “end user”?
Most of the DNS abuse issues at the moment are due to providers not looking after their own networks / devices or acting on abuse reports.
It’s not a coincidence that we end up having to block entire countries from our network on a regular basis
While the goal of Barrack’s proposal might be honourable I don’t think it’s particularly practical or realistic
To use an analogy.
You can train someone to check the oil in their car, which in the DNS space could be akin to making sure that software was kept up to date
But pushing DNS abuse knowledge would be like expecting me to be able to strip my car down
Regards
Michele [...]
-- Dr. Eberhard W. Lisse \ / Obstetrician & Gynaecologist el@lisse.NA / * | Telephone: +264 81 124 6733 (cell) PO Box 8421 \ / Bachbrecht 10007, Namibia ;____/
![](https://secure.gravatar.com/avatar/98fa204ba1f2b6672cfe5907a096f0c2.jpg?s=120&d=mm&r=g)
Thank you Sarah for starting us on this. With the spirit of the new year, new decade, I would suggest that we issue a statement on our areas of focus for 2020. This will give us a goal and a roadmap on what we want to achieve as Afralo moving forward. Otherwise the already suggested topics will also do. On Wed, Jan 15, 2020, 15:51 Dr Eberhard W Lisse <el@lisse.na> wrote:
Michele,
you are of course right (never mind the issues of scale), but remember, this is the AFRALO/AfrICAN waffle session, where prepared resolution is read, approved by whoever could get their trip funded to sit around there and then consigned to the trash bin.
el
On 15/01/2020 13:56, Michele Neylon - Blacknight wrote:
Why would an “end user” care? Why would anyone want to make it more complicated and scary to get online? Surely this is an issue for industry and not the “end user”?
Most of the DNS abuse issues at the moment are due to providers not looking after their own networks / devices or acting on abuse reports.
It’s not a coincidence that we end up having to block entire countries from our network on a regular basis
While the goal of Barrack’s proposal might be honourable I don’t think it’s particularly practical or realistic
To use an analogy.
You can train someone to check the oil in their car, which in the DNS space could be akin to making sure that software was kept up to date
But pushing DNS abuse knowledge would be like expecting me to be able to strip my car down
Regards
Michele [...]
-- Dr. Eberhard W. Lisse \ / Obstetrician & Gynaecologist el@lisse.NA / * | Telephone: +264 81 124 6733 (cell) PO Box 8421 \ / Bachbrecht 10007, Namibia ;____/
_______________________________________________ AfrICANN mailing list AfrICANN@afrinic.net https://lists.afrinic.net/mailman/listinfo/africann
![](https://secure.gravatar.com/avatar/08ee3d1ca99506800cde017697253926.jpg?s=120&d=mm&r=g)
Hi Michele, Interesting analogy. In the Global North consumers are encouraged to do things themselves mostly and demand value for their money. In the global South consumers (end users) have no say, they are encouraged to be happy with what they get. We have propagated 3 R models in which the R is fickle and silent hence the perpetual need of 'expertise' to sort out issues that can be fixed by simple equiping the end user with some knowhow. Many Registrars and Resellers are encouraging the use of Website Builders meaning there will be more cases of end users building their own websites and related applications for use on the Internet, shouldn't they have some basic awareness on DNS Abuse? Regards On Wed, 15 Jan 2020, 2:58 pm Michele Neylon - Blacknight, < michele@blacknight.com> wrote:
Why would an “end user” care? Why would anyone want to make it more complicated and scary to get online? Surely this is an issue for industry and not the “end user”?
Most of the DNS abuse issues at the moment are due to providers not looking after their own networks / devices or acting on abuse reports.
It’s not a coincidence that we end up having to block entire countries from our network on a regular basis
While the goal of Barrack’s proposal might be honourable I don’t think it’s particularly practical or realistic
To use an analogy.
You can train someone to check the oil in their car, which in the DNS space could be akin to making sure that software was kept up to date
But pushing DNS abuse knowledge would be like expecting me to be able to strip my car down
Regards
Michele
--
Mr Michele Neylon
Blacknight Solutions
Hosting, Colocation & Domains
Intl. +353 (0) 59 9183072
Direct Dial: +353 (0)59 9183090
Personal blog: https://michele.blog/
Some thoughts: https://ceo.hosting/
-------------------------------
Blacknight Internet Solutions Ltd, Unit 12A,Barrowside Business Park,Sleaty
Road,Graiguecullen,Carlow,R93 X265,Ireland Company No.: 370845
*From: *Barrack Otieno <otieno.barrack@gmail.com> *Reply to: *"africann@afrinic.net" <africann@afrinic.net> *Date: *Friday 10 January 2020 at 14:21 *To: *"el@lisse.NA" <el@lisse.NA> *Cc: *Afri-Discuss <afri-discuss@atlarge-lists.icann.org>, " africann@afrinic.net" <africann@afrinic.net> *Subject: *Re: [AfrICANN-discuss] [AFRI-Discuss] Call for topics: Joint AFRALO-AfrICANN meeting for ICANN67
Good points Mark and El,
I think the end user has been missing in the DNS Security conversation yet they are actually the ones who speak with their pockets, if i may use a Kenyan Proverb. An enlightened end user is an empowered end user. As we bring the next billion users online cases of DNS abuse will definately increase. If governments feel that industry players have not control they will definately step in and thats what we are avoiding.
Regards
On Fri, 10 Jan 2020, 4:55 pm Dr Eberhard W Lisse, <el@lisse.na> wrote:
Gabdibé,
drafting a resolution (beforehand), or even debating a resolution, is going to achieve absolutely nothing.
Mark,
50% lookups is actually almost worth than zero :-)-).
And how many of those hit infrastructure actually in South Africa? Does the figure include the public ones from Google and Cloudflare?
My view is that this only works All-or-Nothing, because noncompliant commercial resolver operators have a commercial advantage over complaint ones.
Financial incentives may work as may financial or other sanctions.
One could even make it part of the Accreditation that DNSSEC must be offered by the Registrars.
But while the Registrars are usually the entities operating the DNS and as such have control over the end-user's DNS anyway, the chain of trust should go up to the end user and not just the Registrar.
Talking to the banks has so far not been very effective, they are happy with HTTPS even though they forget to renew their certificate on a regular basis, never mind the expense.
I don't have the answer either.
If anyone has a technical "solution" or project going on, and is coming to Cancun, please feel free to propose a presentation at TechDay on the Monday.
greetings, el
On 10/01/2020 15:26, Mark Elkins wrote:
I also like the sound of Barrack's proposal. What exactly does "DNS Abuse" mean though?
If it is to try and get all important Domains DNSSEC Signed and for all DNS Resolvers to become DNSSEC aware - that would be a winner in my book!
Incidentally - about 50% of all DNS lookups in South Africa are DNSSEC aware. That's actually the easy bit. Just have the Internet Connection suppliers enable DNSSEC on their resolvers.
Getting the bulk or at least the important Domains DNSSEC Signed will be a bit more challenging but is quite possible; e.g. any domain for a website which may involve a financial transaction or deal with personal information.
On my Domain Registration and Hosting Platform, if I am running the Registrants DNS (Zone file), DNSSEC is simply an option the Registrant can switch on. I could change that and simply enable it for everyone. However, if the Domain is then moved to a Registrar that does not support DNSSEC - there would be issues for the new Registrar.
On 2020/01/10 14:20, Gabdibé GAB-HINGONNE wrote:
Dear All, I support Barrack's proposal. Building the capacity of African end users on the general question related to the DNS is very important. Kind regards Gabdibé
_______________________________________________ AfrICANN mailing list AfrICANN@afrinic.net https://lists.afrinic.net/mailman/listinfo/africann
![](https://secure.gravatar.com/avatar/29943efe6e0ec32f29967a3a1b40145b.jpg?s=120&d=mm&r=g)
Barrack You’re actually making a strong argument for NOT doing this. Now if you were to switch “DNS abuse” for “computer security” or something else then maybe you’d have a case, but in so doing you’d put it even further outside ICANN’s remit. Regards Michele -- Mr Michele Neylon Blacknight Solutions Hosting, Colocation & Domains https://www.blacknight.com https://blacknight.blog / http://ceo.hosting/ Intl. +353 (0) 59 9183072 Direct Dial: +353 (0)59 9183090 ------------------------------- Blacknight Internet Solutions Ltd, Unit 12A,Barrowside Business Park,Sleaty Road,Graiguecullen,Carlow, R93 X265 ,Ireland Company No.: 370845 From: Barrack Otieno <otieno.barrack@gmail.com> Reply to: "africann@afrinic.net" <africann@afrinic.net> Date: Wednesday 15 January 2020 at 13:49 To: "africann@afrinic.net" <africann@afrinic.net> Cc: Afri-Discuss <afri-discuss@atlarge-lists.icann.org> Subject: Re: [AfrICANN-discuss] [AFRI-Discuss] Call for topics: Joint AFRALO-AfrICANN meeting for ICANN67 Hi Michele, Interesting analogy. In the Global North consumers are encouraged to do things themselves mostly and demand value for their money. In the global South consumers (end users) have no say, they are encouraged to be happy with what they get. We have propagated 3 R models in which the R is fickle and silent hence the perpetual need of 'expertise' to sort out issues that can be fixed by simple equiping the end user with some knowhow. Many Registrars and Resellers are encouraging the use of Website Builders meaning there will be more cases of end users building their own websites and related applications for use on the Internet, shouldn't they have some basic awareness on DNS Abuse? Regards On Wed, 15 Jan 2020, 2:58 pm Michele Neylon - Blacknight, <michele@blacknight.com<mailto:michele@blacknight.com>> wrote: Why would an “end user” care? Why would anyone want to make it more complicated and scary to get online? Surely this is an issue for industry and not the “end user”? Most of the DNS abuse issues at the moment are due to providers not looking after their own networks / devices or acting on abuse reports. It’s not a coincidence that we end up having to block entire countries from our network on a regular basis While the goal of Barrack’s proposal might be honourable I don’t think it’s particularly practical or realistic To use an analogy. You can train someone to check the oil in their car, which in the DNS space could be akin to making sure that software was kept up to date But pushing DNS abuse knowledge would be like expecting me to be able to strip my car down Regards Michele -- Mr Michele Neylon Blacknight Solutions Hosting, Colocation & Domains https://www.blacknight.com/ https://blacknight.blog/ Intl. +353 (0) 59 9183072 Direct Dial: +353 (0)59 9183090 Personal blog: https://michele.blog/ Some thoughts: https://ceo.hosting/ ------------------------------- Blacknight Internet Solutions Ltd, Unit 12A,Barrowside Business Park,Sleaty Road,Graiguecullen,Carlow,R93 X265,Ireland Company No.: 370845 From: Barrack Otieno <otieno.barrack@gmail.com<mailto:otieno.barrack@gmail.com>> Reply to: "africann@afrinic.net<mailto:africann@afrinic.net>" <africann@afrinic.net<mailto:africann@afrinic.net>> Date: Friday 10 January 2020 at 14:21 To: "el@lisse.NA" <el@lisse.NA> Cc: Afri-Discuss <afri-discuss@atlarge-lists.icann.org<mailto:afri-discuss@atlarge-lists.icann.org>>, "africann@afrinic.net<mailto:africann@afrinic.net>" <africann@afrinic.net<mailto:africann@afrinic.net>> Subject: Re: [AfrICANN-discuss] [AFRI-Discuss] Call for topics: Joint AFRALO-AfrICANN meeting for ICANN67 Good points Mark and El, I think the end user has been missing in the DNS Security conversation yet they are actually the ones who speak with their pockets, if i may use a Kenyan Proverb. An enlightened end user is an empowered end user. As we bring the next billion users online cases of DNS abuse will definately increase. If governments feel that industry players have not control they will definately step in and thats what we are avoiding. Regards On Fri, 10 Jan 2020, 4:55 pm Dr Eberhard W Lisse, <el@lisse.na<mailto:el@lisse.na>> wrote: Gabdibé, drafting a resolution (beforehand), or even debating a resolution, is going to achieve absolutely nothing. Mark, 50% lookups is actually almost worth than zero :-)-). And how many of those hit infrastructure actually in South Africa? Does the figure include the public ones from Google and Cloudflare? My view is that this only works All-or-Nothing, because noncompliant commercial resolver operators have a commercial advantage over complaint ones. Financial incentives may work as may financial or other sanctions. One could even make it part of the Accreditation that DNSSEC must be offered by the Registrars. But while the Registrars are usually the entities operating the DNS and as such have control over the end-user's DNS anyway, the chain of trust should go up to the end user and not just the Registrar. Talking to the banks has so far not been very effective, they are happy with HTTPS even though they forget to renew their certificate on a regular basis, never mind the expense. I don't have the answer either. If anyone has a technical "solution" or project going on, and is coming to Cancun, please feel free to propose a presentation at TechDay on the Monday. greetings, el On 10/01/2020 15:26, Mark Elkins wrote:
I also like the sound of Barrack's proposal. What exactly does "DNS Abuse" mean though?
If it is to try and get all important Domains DNSSEC Signed and for all DNS Resolvers to become DNSSEC aware - that would be a winner in my book!
Incidentally - about 50% of all DNS lookups in South Africa are DNSSEC aware. That's actually the easy bit. Just have the Internet Connection suppliers enable DNSSEC on their resolvers.
Getting the bulk or at least the important Domains DNSSEC Signed will be a bit more challenging but is quite possible; e.g. any domain for a website which may involve a financial transaction or deal with personal information.
On my Domain Registration and Hosting Platform, if I am running the Registrants DNS (Zone file), DNSSEC is simply an option the Registrant can switch on. I could change that and simply enable it for everyone. However, if the Domain is then moved to a Registrar that does not support DNSSEC - there would be issues for the new Registrar.
On 2020/01/10 14:20, Gabdibé GAB-HINGONNE wrote:
Dear All, I support Barrack's proposal. Building the capacity of African end users on the general question related to the DNS is very important. Kind regards Gabdibé
AfrICANN mailing list AfrICANN@afrinic.net<mailto:AfrICANN@afrinic.net> https://lists.afrinic.net/mailman/listinfo/africann
![](https://secure.gravatar.com/avatar/5ee2c76ceac1c75cfb00dbe60e5abbb5.jpg?s=120&d=mm&r=g)
+1, Dr Eberhard, Kind regards. Gabdibé Gabd ibé GAB-HINGONNE Tel: (+235) 66 24 95 56/99 24 95 56 Skype: live:gabdibegabhingonne E-mail : gabdibegabhingonne@yahoo.fr gabdibegabhingonne@gmail.com Le lun. 13 janv. 2020 20:36, Dr Eberhard W Lisse <el@lisse.na> a écrit :
Gabdibé,
drafting a resolution (beforehand), or even debating a resolution, is going to achieve absolutely nothing.
Mark,
50% lookups is actually almost worth than zero :-)-).
And how many of those hit infrastructure actually in South Africa? Does the figure include the public ones from Google and Cloudflare?
My view is that this only works All-or-Nothing, because noncompliant commercial resolver operators have a commercial advantage over complaint ones.
Financial incentives may work as may financial or other sanctions.
One could even make it part of the Accreditation that DNSSEC must be offered by the Registrars.
But while the Registrars are usually the entities operating the DNS and as such have control over the end-user's DNS anyway, the chain of trust should go up to the end user and not just the Registrar.
Talking to the banks has so far not been very effective, they are happy with HTTPS even though they forget to renew their certificate on a regular basis, never mind the expense.
I don't have the answer either.
If anyone has a technical "solution" or project going on, and is coming to Cancun, please feel free to propose a presentation at TechDay on the Monday.
greetings, el
On 10/01/2020 15:26, Mark Elkins wrote:
I also like the sound of Barrack's proposal. What exactly does "DNS Abuse" mean though?
If it is to try and get all important Domains DNSSEC Signed and for all DNS Resolvers to become DNSSEC aware - that would be a winner in my book!
Incidentally - about 50% of all DNS lookups in South Africa are DNSSEC aware. That's actually the easy bit. Just have the Internet Connection suppliers enable DNSSEC on their resolvers.
Getting the bulk or at least the important Domains DNSSEC Signed will be a bit more challenging but is quite possible; e.g. any domain for a website which may involve a financial transaction or deal with personal information.
On my Domain Registration and Hosting Platform, if I am running the Registrants DNS (Zone file), DNSSEC is simply an option the Registrant can switch on. I could change that and simply enable it for everyone. However, if the Domain is then moved to a Registrar that does not support DNSSEC - there would be issues for the new Registrar.
On 2020/01/10 14:20, Gabdibé GAB-HINGONNE wrote:
Dear All, I support Barrack's proposal. Building the capacity of African end users on the general question related to the DNS is very important. Kind regards Gabdibé
AFRI-Discuss mailing list AFRI-Discuss@atlarge-lists.icann.org https://atlarge-lists.icann.org/mailman/listinfo/afri-discuss
Homepage for the region: http://www.afralo.org
Posting guidelines to ensure machine translations of emails sent to this list are more accurate: http://www.funredes.org/mistica/english/emec/method_emec/presentation.html#a... _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
![](https://secure.gravatar.com/avatar/28bd78837854cea63cd53f3fe8a487be.jpg?s=120&d=mm&r=g)
+1 for Barracks proposal as issues on capacity building can never be over emphasized. Sent from Yahoo Mail on Android On Tue, Jan 14, 2020 at 20:05, Gabdibé GAB-HINGONNE<gabdibegabhingonne@gmail.com> wrote: _______________________________________________ AFRI-Discuss mailing list AFRI-Discuss@atlarge-lists.icann.org https://atlarge-lists.icann.org/mailman/listinfo/afri-discuss Homepage for the region: http://www.afralo.org Posting guidelines to ensure machine translations of emails sent to this list are more accurate: http://www.funredes.org/mistica/english/emec/method_emec/presentation.html#a... _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
![](https://secure.gravatar.com/avatar/64fc9ccf9fbee105f1a1549969c10100.jpg?s=120&d=mm&r=g)
Dear all, I see merit in all the suggested topics. However, I think "Core priority areas to focus on within the African ICANN Strategy" seems more appropriate. Based on my little experience, I think if we have a statement directed towards the ICANN Board it kind of attracting more attention. I believe the issue of capacity building for DNS abuse can also be incorporated into the statement as it is part of the strategic plan. Finally, I would like to amend the title to be " *The African priority areas within the ICANN Strategic plan*". My believe and the aim is that this way we can incorporate the DNS issue and connecting the unconnected there was also suggested. Thank you -- *Dr. Abdulkarim A.Oloyede*. *-Vice-Chairman, ITU-D Telecommunications Development Advisory Group (TDAG), **International Telecommunication Union (ITU)(2017-2021).* *-Vice Rappattour, ITU-D Study group 2 /Question 5 (2018-2022)* *-Co-Chair, **AFRINIC Policy Development Working Group (CPWG)(2019-2020)* *-ALAC member, Internet** Corporation of Assigned Name and Numbers (ICANN) ATlarge Board Member (ALAC) (2019-2021)* *-Co-Founder, GreenICT initiative, A Nigerian based NGO * *Alternative Emails: olouss@yahoo.com <olouss@yahoo.com> OR aao500@york.ac.uk <aao500@york.ac.uk>* On Tue, Jan 14, 2020 at 9:26 PM Nkem Nweke via AFRI-Discuss < afri-discuss@atlarge-lists.icann.org> wrote:
+1 for Barracks proposal as issues on capacity building can never be over emphasized.
Sent from Yahoo Mail on Android <https://go.onelink.me/107872968?pid=InProduct&c=Global_Internal_YGrowth_AndroidEmailSig__AndroidUsers&af_wl=ym&af_sub1=Internal&af_sub2=Global_YGrowth&af_sub3=EmailSignature>
On Tue, Jan 14, 2020 at 20:05, Gabdibé GAB-HINGONNE <gabdibegabhingonne@gmail.com> wrote: _______________________________________________ AFRI-Discuss mailing list AFRI-Discuss@atlarge-lists.icann.org https://atlarge-lists.icann.org/mailman/listinfo/afri-discuss
Homepage for the region: http://www.afralo.org
Posting guidelines to ensure machine translations of emails sent to this list are more accurate: http://www.funredes.org/mistica/english/emec/method_emec/presentation.html#a... _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
_______________________________________________ AFRI-Discuss mailing list AFRI-Discuss@atlarge-lists.icann.org https://atlarge-lists.icann.org/mailman/listinfo/afri-discuss
Homepage for the region: http://www.afralo.org
Posting guidelines to ensure machine translations of emails sent to this list are more accurate: http://www.funredes.org/mistica/english/emec/method_emec/presentation.html#a... _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
-- *Dr. Abdulkarim A.Oloyede*. *-Senior Lecturer, **Department of Telecommunications Science, University of Ilorin, Nigeria* *-Post Doctoral Researcher** (Rutherford Commonwealth Fellow)**, The University of York, York UK* *-Vice-Chairman, ITU-D Telecommunications Development Advisory Group (TDAG), **International Telecommunication Union (ITU)(2017-2021).* *-Vice Rappattour, ITU-D Study group 2 /Question 5 (2018-2022)* *-Co-Chair, **AFRINIC Policy Development Working Group (CPWG)(2019-2020)* *-ALAC member, Internet** Corporation of Assigned Name and Numbers (ICANN) ATlarge Board Member (ALAC) (2019-2021)* *-Co-Founder, GreenICT initiative, A Nigerian based NGO * *Alternative Emails: olouss@yahoo.com <olouss@yahoo.com> OR aao500@york.ac.uk <aao500@york.ac.uk>* -- Website <http://www.unilorin.edu.ng>, Weekly Bulletin <http://www.unilorin.edu.ng/index.php/bulletin> UGPortal <http://uilugportal.unilorin.edu.ng/> PGPortal <https://uilpgportal.unilorin.edu.ng/>
![](https://secure.gravatar.com/avatar/44a7cecbc39543b2070907e2aad6ca97.jpg?s=120&d=mm&r=g)
+1 to Barrack's proposal. *WISDOM DONKOR* President & CEO Africa Open Data and Internet Research Foundation P.O. Box CT 2439, Cantonments, Accra | www.aodirf.org / www.afrigeocon.org Tel: +233 20 812 8851 Skype: wisdom_dk | Facebook: kwasi wisdom | Twitter: @wisdom_dk __________________________________________________ Specialization: E-government Network Infrastructure and E-application, Internet Governance, Open Data policies platforms & Community Development, Cyber Security, Domain Name Systems, Software Engineering, Event Planning & Management, On Fri, Jan 10, 2020 at 5:42 AM Barrack Otieno <otieno.barrack@gmail.com> wrote:
Dear Sarah and colleagues,
I would like to propose the following topic;
Building the Capacity of end users to curb DNS Abuse is Africa.
Regards
On Thu, 9 Jan 2020, 10:57 pm Robert Nkambwe via AFRI-Discuss, < afri-discuss@atlarge-lists.icann.org> wrote:
Thanks for sharing Sarah.
Robert
On Thursday, January 9, 2020, 10:41:47 PM GMT+3, Sarah Kiden < skiden@gmail.com> wrote:
Dear Colleagues,
I hope this email finds you well. The ICANN67 Meeting is scheduled for March 7 - 12, 2020 in Cancún, Mexico. As with previous ICANN meetings, we plan to hold the Joint AFRALO-AfrICANN meeting. We would like to invite you to submit topics for this session. Our previous statements have focused on issues like: evolving the ICANN Multistakeholder model, New gTLD Subsequent Procedures, enhancing ICANN accountability, etc. Please see our previous statements here <https://community.icann.org/display/AFRALO/Joint+AFRALO-AfrICANN+Statements+Workspace>.
Please see our proposed timeline: Call for topics: 9 - 16 January 2020 Topic announcement and call for drafting team: 17 - 22 January 2020 Drafting of Statement: 23 January - 13 February 2020 Send Statement to Staff for translation: 14 February 2020
Please send your suggested topics by *Thursday, 16 January 2020*, after which the drafting team will prepare a draft statement that will be shared with the rest of the members.
Looking forward to your contributions.
Kind regards,
Sarah Kiden AFRALO Secretariat _______________________________________________ AfrICANN mailing list AfrICANN@afrinic.net https://lists.afrinic.net/mailman/listinfo/africann _______________________________________________ AFRI-Discuss mailing list AFRI-Discuss@atlarge-lists.icann.org https://atlarge-lists.icann.org/mailman/listinfo/afri-discuss
Homepage for the region: http://www.afralo.org
Posting guidelines to ensure machine translations of emails sent to this list are more accurate: http://www.funredes.org/mistica/english/emec/method_emec/presentation.html#a... _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
_______________________________________________ AFRI-Discuss mailing list AFRI-Discuss@atlarge-lists.icann.org https://atlarge-lists.icann.org/mailman/listinfo/afri-discuss
Homepage for the region: http://www.afralo.org
Posting guidelines to ensure machine translations of emails sent to this list are more accurate: http://www.funredes.org/mistica/english/emec/method_emec/presentation.html#a... _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
![](https://secure.gravatar.com/avatar/5b06592514aa08b05739b63d24fc829b.jpg?s=120&d=mm&r=g)
Dear Sarah and all, I hope that you are all doing well, could I propose the topic of Connecting the Un-Connected for Digital Africa !! Thanks a lot. All the Best, Abdalmonem Tharwat Galila Deputy Manager, Dot Masr Registry, Operation Sector. [NTRA Logo 2016] National Telecommunication Regulatory Authority [Description: Description: Description: Description: Description: Description: Description: Description: Description: Description: 1365523405_telephone] Office Tel.: +2 02 35341582<tel:02%2035341582> - +2 02 35341300<tel:02%2035341300> [Description: Description: Description: Description: Description: Description: Description: Description: Description: Description: Mobile] Mobile: +2 010 00049068<tel:010%2000049068> [Description: Description: Description: Description: Description: Description: Description: Description: Description: Description: ICON] Fax : +2 02 35370537<tel:02%2035370537> [Description: Description: Description: Description: Description: Description: Description: Description: Description: Description: oNLINE] Website : http:\\www.mcit.gov.eg<http://www.mcit.gov.eg/> : http:\\www.tra.gov.eg<http://www.mcit.gov.eg/> [Description: Description: Description: Description: Description: Description: Description: Description: Description: Description: 1365523294_email] E-mail : agalila@mcit.gov.eg<mailto:agalila@mcit.gov.eg> : atharwat@tra.gov.eg<mailto:atharwat@tra.gov.eg> [Description: 1447802547_skype] Skype : abdalmonem.galila [Description: static_qr_code_without_logo] [Description: Description: Description: Description: Description: Description: Description: Description: Description: Description: 1365523469_error]DISCLAIMER This e-mail and any files transmitted with it are confidential and intended solely for the use of the individual or entity to which they are addressed. If you have received this email in error please notify your system support manager. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of the National Telecom Regulatory Authority (NTRA) . Finally, the recipient should check this email and any attachments for the presence of viruses. The NTRA accepts no liability for any damage caused by any virus transmitted by this email. From: AFRI-Discuss [mailto:afri-discuss-bounces@atlarge-lists.icann.org] On Behalf Of Sarah Kiden Sent: Thursday, January 9, 2020 9:40 PM To: Afri-Discuss <afri-discuss@atlarge-lists.icann.org>; AfrICANN list <africann@afrinic.net> Subject: [AFRI-Discuss] Call for topics: Joint AFRALO-AfrICANN meeting for ICANN67 Dear Colleagues, I hope this email finds you well. The ICANN67 Meeting is scheduled for March 7 - 12, 2020 in Cancún, Mexico. As with previous ICANN meetings, we plan to hold the Joint AFRALO-AfrICANN meeting. We would like to invite you to submit topics for this session. Our previous statements have focused on issues like: evolving the ICANN Multistakeholder model, New gTLD Subsequent Procedures, enhancing ICANN accountability, etc. Please see our previous statements here<https://community.icann.org/display/AFRALO/Joint+AFRALO-AfrICANN+Statements+Workspace>. Please see our proposed timeline: Call for topics: 9 - 16 January 2020 Topic announcement and call for drafting team: 17 - 22 January 2020 Drafting of Statement: 23 January - 13 February 2020 Send Statement to Staff for translation: 14 February 2020 Please send your suggested topics by Thursday, 16 January 2020, after which the drafting team will prepare a draft statement that will be shared with the rest of the members. Looking forward to your contributions. Kind regards, Sarah Kiden AFRALO Secretariat
participants (13)
-
Abdalmonem Tharwat Galila
-
ABDULKARIM AYOPO OLOYEDE
-
AMADU YUSIF
-
Barrack Otieno
-
Dr Eberhard W Lisse
-
Gabdibé GAB-HINGONNE
-
Liz Orembo
-
Mark Elkins
-
Michele Neylon - Blacknight
-
Nkem Nweke
-
Robert Nkambwe
-
Sarah Kiden
-
Wisdom Donkor