The DNS Abuse Institute
Dear all, What do you guys think about this initiative: https://dnsabuseinstitute.org/ :-)? Have a nice evening! Kindest regards, Matthias __________________________ Ing. Mag. Matthias M. Hudobnik, CIPP/E matthias@hudobnik.at http://www.hudobnik.at @mhudobnik
Interesting idea. PIR has done a lot of work on DNS abuse. It will be interesting to watch as the Institute takes shape. Best Regards On Fri, Feb 19, 2021 at 12:18 AM Matthias M. Hudobnik <matthias@hudobnik.at> wrote:
Dear all,
What do you guys think about this initiative: https://dnsabuseinstitute.org/ :-)? Have a nice evening!
Kindest regards, Matthias
__________________________ Ing. Mag. Matthias M. Hudobnik, CIPP/E matthias@hudobnik.at http://www.hudobnik.at @mhudobnik
_______________________________________________ At-Large mailing list At-Large@atlarge-lists.icann.org https://atlarge-lists.icann.org/mailman/listinfo/at-large
At-Large Official Site: http://atlarge.icann.org _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
-- Barrack O. Otieno +254721325277 +254733206359 Skype: barrack.otieno PGP ID: 0x2611D86A
We will have Grahame Bunton the new ED of the DNS Abuse Institute present to the VSIG on March 15th. A recording will be made available G Glenn McKnight, MA Virtual School of Internet Governance Chief Information Officer www.virtualsig.org *YOUR SOURCE FOR INTERNET GOVERNANCE EDUCATION * On Thu, Feb 18, 2021 at 4:36 PM Barrack Otieno <otieno.barrack@gmail.com> wrote:
Interesting idea. PIR has done a lot of work on DNS abuse. It will be interesting to watch as the Institute takes shape.
Best Regards
On Fri, Feb 19, 2021 at 12:18 AM Matthias M. Hudobnik < matthias@hudobnik.at> wrote:
Dear all,
What do you guys think about this initiative: https://dnsabuseinstitute.org/ :-)? Have a nice evening!
Kindest regards, Matthias
__________________________ Ing. Mag. Matthias M. Hudobnik, CIPP/E matthias@hudobnik.at http://www.hudobnik.at @mhudobnik
_______________________________________________ At-Large mailing list At-Large@atlarge-lists.icann.org https://atlarge-lists.icann.org/mailman/listinfo/at-large
At-Large Official Site: http://atlarge.icann.org _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
-- Barrack O. Otieno +254721325277 +254733206359 Skype: barrack.otieno PGP ID: 0x2611D86A
_______________________________________________ At-Large mailing list At-Large@atlarge-lists.icann.org https://atlarge-lists.icann.org/mailman/listinfo/at-large
At-Large Official Site: http://atlarge.icann.org _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
Great idea. DNS abuse is a major topical issue and I believe the creation of an institute will ensure a directed effort, especially on advocacy and education to help address issues surrounding DNS. I look forward to the developments. Best regards, ---- Jacob Odame-Baiden, Esq Co-Founder & VP (Legal & Engagement), eGIGFA Web: http://egigfa.org Associate, Addo & Addo Legal Attorneys Curator, Digital Watch Observatory (https://dig.watch/expert/odame-baiden) AFRINIC Fellow | ICANN Fellow Email: odamyte@gmail.com | Jacobo@diplomacy.edu Ph: +233 27 755 1996
On 18 Feb 2021, at 9:02 PM, Matthias M. Hudobnik <matthias@hudobnik.at> wrote:
Dear all,
What do you guys think about this initiative: https://dnsabuseinstitute.org/ :-)? Have a nice evening!
Kindest regards, Matthias
__________________________ Ing. Mag. Matthias M. Hudobnik, CIPP/E matthias@hudobnik.at http://www.hudobnik.at @mhudobnik
_______________________________________________ At-Large mailing list At-Large@atlarge-lists.icann.org https://atlarge-lists.icann.org/mailman/listinfo/at-large
At-Large Official Site: http://atlarge.icann.org _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
On the website, if you dig deep enough, they have a link to a document that defines what they mean by abuse. http://dnsabuseframework.org/media/files/2020-05-29_DNSAbuseFramework.pdf It is essentially a list of ill thing like spam, malware, botnets, and phishing and the like. In other words the "abuse" is not directly an aspect of DNS but rather of something that uses DNS, among other technologies. That same logic could also be used to tie the enumerated ills to "abuse of electricity" or "abuse of computers" or "abuse of IPv6". In their list of "DNS abuses" it is Pharming that is perhaps the closest to DNS itself. There is no doubt that the things are bad and deserve to be slowed, blocked, denied, and otherwise prevented. And if that prevention may involve some changes to the way we administer DNS or operate it, or even how it is defined in the RFCs. But to call these bad things "DNS Abuse" is, to my mind, rather a stretch. And if we are to talk about these things we should very clearly understand whether we are talking about the name registration machinery via registrars and registries and provisioning protocols and whois, versus the actual machinery of resolving DNS names via name servers. I would add, however, that some of this is of our own making - my favorite being the five minute update period between someone changing record at a registrar and that change appearing out there on the net. Much as that five minute period is really nice when I am making changes I am of the opinion that convenience to those of us who make updates should be outweighed by the public interest in avoiding threats that are facilitated by fast (five minute) updates to the mappings of 2nd tier names (e.g. names directly under the TLDs - there's not much we can do about rapid updates deeper in the hierarchy.) --karl-- On 2/18/21 1:02 PM, Matthias M. Hudobnik wrote:
Dear all,
What do you guys think about this initiative: https://dnsabuseinstitute.org/ :-)? Have a nice evening!
Kindest regards, Matthias
__________________________ Ing. Mag. Matthias M. Hudobnik, CIPP/E matthias@hudobnik.at http://www.hudobnik.at @mhudobnik
_______________________________________________ At-Large mailing list At-Large@atlarge-lists.icann.org https://atlarge-lists.icann.org/mailman/listinfo/at-large
At-Large Official Site: http://atlarge.icann.org _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
Karl, You are correct it is a stretch, but it is what we registrars can do on a volunteer basis on a technical level. The reality is of course that most cybercrime we all read about and experience is happening at very different parts of the DNS, and often simply related to the DNS and happening outside the DNS. At the registrar, I work for we process 75 different RBL feeds our data goes back to 2017 and our reality is that the average abuse levels on our registrar backend platform are 0.04%. Of the 0.04% abuse, 98% of the abuse is not actionable and outside of the DNS Abuse Framework, we created as CP's. I understand that the ICANN community wants to crack down on abuse, we are all on the same page there. But the time that the CP's are low hanging fruit to bring down abuse levels, that ship has sailed a few years ago. Best, Theo On Thu, Feb 18, 2021, at 9:58 PM, Karl Auerbach wrote:
On the website, if you dig deep enough, they have a link to a document that defines what they mean by abuse.
http://dnsabuseframework.org/media/files/2020-05-29_DNSAbuseFramework.pdf
It is essentially a list of ill thing like spam, malware, botnets, and phishing and the like. In other words the "abuse" is not directly an aspect of DNS but rather of something that uses DNS, among other technologies.
That same logic could also be used to tie the enumerated ills to "abuse of electricity" or "abuse of computers" or "abuse of IPv6".
In their list of "DNS abuses" it is Pharming that is perhaps the closest to DNS itself.
There is no doubt that the things are bad and deserve to be slowed, blocked, denied, and otherwise prevented. And if that prevention may involve some changes to the way we administer DNS or operate it, or even how it is defined in the RFCs.
But to call these bad things "DNS Abuse" is, to my mind, rather a stretch.
And if we are to talk about these things we should very clearly understand whether we are talking about the name registration machinery via registrars and registries and provisioning protocols and whois, versus the actual machinery of resolving DNS names via name servers.
I would add, however, that some of this is of our own making - my favorite being the five minute update period between someone changing record at a registrar and that change appearing out there on the net. Much as that five minute period is really nice when I am making changes I am of the opinion that convenience to those of us who make updates should be outweighed by the public interest in avoiding threats that are facilitated by fast (five minute) updates to the mappings of 2nd tier names (e.g. names directly under the TLDs - there's not much we can do about rapid updates deeper in the hierarchy.)
--karl--
On 2/18/21 1:02 PM, Matthias M. Hudobnik wrote:
Dear all,
What do you guys think about this initiative: https://dnsabuseinstitute.org/ :-)? Have a nice evening! Kindest regards, Matthias __________________________ Ing. Mag. Matthias M. Hudobnik, CIPP/E
matthias@hudobnik.at http://www.hudobnik.at @mhudobnik
_______________________________________________
At-Large mailing list
At-Large@atlarge-lists.icann.org https://atlarge-lists.icann.org/mailman/listinfo/at-large
At-Large Official Site: http://atlarge.icann.org _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
_______________________________________________ At-Large mailing list At-Large@atlarge-lists.icann.org https://atlarge-lists.icann.org/mailman/listinfo/at-large
At-Large Official Site: http://atlarge.icann.org _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
Karl, Please see inline: On Fri, Feb 19, 2021 at 4:06 AM Karl Auerbach <karl@cavebear.com> wrote:
On the website, if you dig deep enough, they have a link to a document that defines what they mean by abuse.
http://dnsabuseframework.org/media/files/2020-05-29_DNSAbuseFramework.pdf
It is essentially a list of ill thing like spam, malware, botnets, and phishing and the like. In other words the "abuse" is not directly an aspect of DNS but rather of something that uses DNS, among other technologies.
That same logic could also be used to tie the enumerated ills to "abuse of electricity" or "abuse of computers" or "abuse of IPv6".
In their list of "DNS abuses" it is Pharming that is perhaps the closest to DNS itself.
There is no doubt that the things are bad and deserve to be slowed, blocked, denied, and otherwise prevented. And if that prevention may involve some changes to the way we administer DNS or operate it, or even how it is defined in the RFCs.
But to call these bad things "DNS Abuse" is, to my mind, rather a stretch.
On the contrary, there is another point of view that spam, malware, botnets and phishing constitute a mere fraction of DNS abuse. "DNS abuse" could be a title that could be taken to mean any criminal abuse of the DNS space. Not easily agreed upon.
And if we are to talk about these things we should very clearly understand whether we are talking about the name registration machinery via registrars and registries and provisioning protocols and whois, versus the actual machinery of resolving DNS names via name servers.
I would add, however, that some of this is of our own making - my favorite being the five minute update period between someone changing record at a registrar and that change appearing out there on the net. Much as that five minute period is really nice when I am making changes I am of the opinion that convenience to those of us who make updates should be outweighed by the public interest in avoiding threats that are facilitated by fast (five minute) updates to the mappings of 2nd tier names (e.g. names directly under the TLDs - there's not much we can do about rapid updates deeper in the hierarchy.)
--karl--
On 2/18/21 1:02 PM, Matthias M. Hudobnik wrote:
Dear all,
What do you guys think about this initiative: https://dnsabuseinstitute.org/ :-)? Have a nice evening!
Kindest regards, Matthias
__________________________ Ing. Mag. Matthias M. Hudobnik, CIPP/E matthias@hudobnik.at http://www.hudobnik.at @mhudobnik
_______________________________________________ At-Large mailing list At-Large@atlarge-lists.icann.org https://atlarge-lists.icann.org/mailman/listinfo/at-large
At-Large Official Site: http://atlarge.icann.org _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
_______________________________________________ At-Large mailing list At-Large@atlarge-lists.icann.org https://atlarge-lists.icann.org/mailman/listinfo/at-large
At-Large Official Site: http://atlarge.icann.org _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
I have to admit I did a double take on the name. Generally speaking, in my mind, Institutes institutionalize whatever activity the name indicates. joly On Thu, Feb 18, 2021 at 4:18 PM Matthias M. Hudobnik <matthias@hudobnik.at> wrote:
Dear all,
What do you guys think about this initiative: https://dnsabuseinstitute.org/ :-)? Have a nice evening!
Kindest regards, Matthias
__________________________ Ing. Mag. Matthias M. Hudobnik, CIPP/E matthias@hudobnik.at http://www.hudobnik.at @mhudobnik
_______________________________________________ At-Large mailing list At-Large@atlarge-lists.icann.org https://atlarge-lists.icann.org/mailman/listinfo/at-large
At-Large Official Site: http://atlarge.icann.org _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
-- -------------------------------------- Joly MacFie +12185659365 -------------------------------------- -
Thank you for sharing Foud it useful and will share with our national CERT Thanks again Le jeu. 18 févr. 2021 à 22:18, Matthias M. Hudobnik <matthias@hudobnik.at> a écrit :
Dear all,
What do you guys think about this initiative: https://dnsabuseinstitute.org/ :-)? Have a nice evening!
Kindest regards, Matthias
__________________________ Ing. Mag. Matthias M. Hudobnik, CIPP/E matthias@hudobnik.at http://www.hudobnik.at @mhudobnik
_______________________________________________ At-Large mailing list At-Large@atlarge-lists.icann.org https://atlarge-lists.icann.org/mailman/listinfo/at-large
At-Large Official Site: http://atlarge.icann.org _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
Dear All, As a follow up to our presentation to NARALO in December, Zak Muscovitch and I published a well-received article on CircleID titled "Busting Domain Name Secondary Market Myths <https://www.circleid.com/posts/20210218-busting-domain-name-secondary-market...>" which attempts to clear up numerous misconceptions about the Secondary Market. Regards, Nat Cohen
If one comment equals "well received", then I guess OK. It's a valiant attempt, to be sure, chock-full of straw-people to answer. Domainers' yearning for self-justification and respect is certainly taking interesting form; soon enough it will be indistinguishable from religious apologetics (and about equally as successful). Cheers, ---- Evan Leibovitch, Toronto Canada @evanleibovitch / @el56
Re: " "Busting Domain Name Secondary Market Myths" Plus - that 1 comment about the paper wasn't an agreement with the paper or its authors, anyway On Mon, Mar 1, 2021 at 11:54 AM Evan Leibovitch via At-Large < at-large@atlarge-lists.icann.org> wrote:
If one comment equals "well received", then I guess OK. It's a valiant attempt, to be sure, chock-full of straw-people to answer.
Domainers' yearning for self-justification and respect is certainly taking interesting form; soon enough it will be indistinguishable from religious apologetics (and about equally as successful).
Cheers,
---- Evan Leibovitch, Toronto Canada @evanleibovitch / @el56
_______________________________________________ At-Large mailing list At-Large@atlarge-lists.icann.org https://atlarge-lists.icann.org/mailman/listinfo/at-large
At-Large Official Site: http://atlarge.icann.org _______________________________________________ By submitting your personal data, you consent to the processing of your personal data for purposes of subscribing to this mailing list accordance with the ICANN Privacy Policy (https://www.icann.org/privacy/policy) and the website Terms of Service (https://www.icann.org/privacy/tos). You can visit the Mailman link above to change your membership status or configuration, including unsubscribing, setting digest-style delivery or disabling delivery altogether (e.g., for a vacation), and so on.
participants (12)
-
Barrack Otieno -
Evan Leibovitch -
Glenn McKnight -
Jacob Odame-Baiden -
Joly MacFie -
Karl Auerbach -
Matthias M. Hudobnik -
Nat Cohen -
sivasubramanian muthusamy -
Theo Geurts -
wafa Dahmani -
Wes Boudville