ICANN/DNSO
DNSO Mailling lists archives

[ga-roots]


<<< Chronological Index >>>    <<< Thread Index >>>

Re: [ga-roots] [Fwd: Fwd: nos voro illos que offendo]


Hello Jeff,

Wednesday, June 06, 2001, 7:01:05 PM, Jeff Williams wrote:

> All,

>   FYI IMPORTANT:  Read this carefully and pass it on...
> It is pretty self explanitory....

I agree.  PLEASE read this very carefully.

I'll quote a section that raises some VERY important issues with
regard to use of alternative root server systems.

Joe Baptista wrote:
>Now, let us examine Liability.  I am in control of a root.  This means I
>control the dot ".".  I have been placed in a position of absolute 
>authority and trust.  And this has occurred without my or PCCF's 
>permission.  But I now control everything these Pink Bunnys see.  I am the 
>start of authority for all questions and answers dealing with name to 
>address translation all of them.  I control the horizontal - I control the 
>vertical - I am both the alpha and the omega.  And I think that's scary - 
>don't you?
>
>Example.  What if I was a nasty little pimply faced hacker.  Well ... I 
>could have a bit of fun with this while at the same time causing a great 
>deal of financial destruction and doom to ecommerce sites.  The 
>possibilities of my power are endless.  I could study the logs and examine 
>where the users bank.  It would be a simple proceedure to then access 
>those banking institutions - replicate their web sites, redirect the users 
>to fake web sites and then proceed to collect their login names and passwords.
>
>This is only one example out of I'm sure thousands.  But I think this one 
>example properly clarifies the potential danger, liability and negligence here.
>
>This is why I keep harping on and on about running root servers on
>captured arpa infrastructure.  If you don't control the infrastructure you 
>control nothing.  That's why I find the Alternic and OpenNic to be bad 
>root service providers.  They run most of their infrastructure on @Home 
>arpas - so the next person who gets the IP is GOD and that's not a good 
>thing when your running a trusted service.


Joe illustrates exactly one of the major concerns ISPs and others who
use alternative root server systems should be taking into account.

And I'll be nice and not even discuss in depth the in-fighting in
the alt.root community that the full message illustrates as well,
which is just one of many reasons why that community has not, cannot,
and will not, become cohesive enough to be taken seriously.

-- 
Best regards,
William X Walsh
mailto:william@userfriendly.com
Owner, Userfriendly.com
Userfriendly.com Domains
The most advanced domain lookup tool on the net


--
This message was passed to you via the ga-roots@dnso.org list.
Send mail to majordomo@dnso.org to unsubscribe
("unsubscribe ga-roots" in the body of the message).
Archives at http://www.dnso.org/archives.html



<<< Chronological Index >>>    <<< Thread Index >>>