ICANN ICANN Email List Archives

[gnso-ff-pdp-may08]


<<< Chronological Index >>>    <<< Thread Index >>>

RE: [gnso-ff-pdp-may08] For Review: Executive summary for fast flux initial report

  • To: "'Marika Konings'" <marika.konings@xxxxxxxxx>, "'Fast Flux Workgroup'" <gnso-ff-pdp-May08@xxxxxxxxx>
  • Subject: RE: [gnso-ff-pdp-may08] For Review: Executive summary for fast flux initial report
  • From: "Greg Aaron" <gaaron@xxxxxxxxxxxx>
  • Date: Thu, 8 Jan 2009 17:16:01 -0500

Dear Marika and friends:

 

I offer the following:

1.1:  The list of WG questions given here, and the doc's summaries, omit the
last question posed by the charter.  It is: "Obtain expert opinion, as
appropriate, on which areas of fast flux are in scope and out of scope for
GNSO policy making." (Charter at:
<http://gnso.icann.org/announcements/announcement-30may08.htm>
http://gnso.icann.org/announcements/announcement-30may08.htm )  

To address the omission, I kindly request that the question be added to 1.1,
and propose that this summary be added at page 7: 

"Obtain expert opinion, as appropriate, on which areas of fast flux are in
scope and out of scope for GNSO policy making."

"Some members of the Working Group provided reasons as to why policy
development to address fast flux is outside the scope of ICANN's remit,
while others disagreed.  The Working Group's fact-finding and work on
definitions documented how fast-flux involves domain name use issues, rather
than domain name registration issues."

 

1.3: After the bullet that reads "The distribution and use of software," I
suggest we add a bullet that says: "When used by criminals, the main goal of
fast-flux hosting is to prolong the period of time during which the attack
continues to be effective.  It not an attack itself -- it is a way for an
attacker to avoid detection and frustrate the response to the attack."  

(I think it is worth adding because criminal use of fast-flux was the
worrisome thing that led to the SSAC report and the PDP.)

 

1.3 (page 3): After "Poor Quality WHOIS", delete this text since it goes
into too much detail for a summary: "Support: Whois records are fraudulently
created (e.g. using stolen identities or payment methods), determination
that the nginx proxy is running on the addressed machine: nginx is commonly
used to hide/proxy illegal web servers"

 

1.3: This sentence is garbled and needs to be re-written: "One source of
best practices for protection Group has recently released a best practices
document.."

 

With best wishes,

--Greg

 

 

  _____  

From: owner-gnso-ff-pdp-may08@xxxxxxxxx
[mailto:owner-gnso-ff-pdp-may08@xxxxxxxxx] On Behalf Of Marika Konings
Sent: Wednesday, January 07, 2009 6:07 AM
To: Fast Flux Workgroup
Subject: [gnso-ff-pdp-may08] For Review: Executive summary for fast flux
initial report

 

Dear All,

As discussed on our last conference call, please find attached the proposed
text for the Executive Summary of the Fast Flux Initial Report. I have
attached both a PDF version and a Word version for those of you that would
like to use track changes. Please circulate your comments / suggestions to
the mailing list.

REMINDER: For those of you still working on certain sections of the report,
the deadline for submission is Friday 9 January. On Monday 12 January, an
'almost final' version of the Initial Report will be circulated for your
review, with the aim to finalise the report on our next call on Friday 16
January.

With best regards,

Marika 



<<< Chronological Index >>>    <<< Thread Index >>>

Privacy Policy | Terms of Service | Cookies Policy