I noticed my handle was hijacked by a company I used to work for. Naturally, I want it back since I went to use it and it's incorrect. My old handle, MH309, is now MH569. Question 1: Did ARIN start expiring unused handles or did something in the process of the hijack cause my handle to increment up to 569, which I'm assuming was the next open number in the in the scheme for 'MH'. Question 2: If an account is passworded, how were they able to take it? Does ARIN not ask for a copy of a license or other photo ID when making voice/fax based changes to POC's? [ Then again, they could've used my photo from the HR files ala I9 documentation ] Thanks, -M
I noticed my handle was hijacked by a company I used to work for.
Naturally, I want it back since I went to use it and it's incorrect.
My old handle, MH309, is now MH569.
Question 1: Did ARIN start expiring unused handles or did something in the process of the hijack cause my handle to increment up to 569, which I'm assuming was the next open number in the in the scheme for 'MH'.
Question 2: If an account is passworded, how were they able to take it? Does ARIN not ask for a copy of a license or other photo ID when making voice/fax based changes to POC's?
[ Then again, they could've used my photo from the HR files ala I9 documentation ]
you seem to have hit the wrong entry in your address book, meaning to get help@arin.net but instead broadcasting to the nanog mailing list where no one can really help you, but undoubtedly many folk can also whine about registries.
On Mon, 10 Jun 2002, Randy Bush wrote:
I noticed my handle was hijacked by a company I used to work for.
Naturally, I want it back since I went to use it and it's incorrect.
My old handle, MH309, is now MH569.
Question 1: Did ARIN start expiring unused handles or did something in the process of the hijack cause my handle to increment up to 569, which I'm assuming was the next open number in the in the scheme for 'MH'.
Question 2: If an account is passworded, how were they able to take it? Does ARIN not ask for a copy of a license or other photo ID when making voice/fax based changes to POC's?
[ Then again, they could've used my photo from the HR files ala I9 documentation ]
you seem to have hit the wrong entry in your address book, meaning to get help@arin.net but instead broadcasting to the nanog mailing list where no one can really help you, but undoubtedly many folk can also whine about registries.
The *secure* operation of ARIN is of operational importance, as far as I know. But do feel free to edumucate me further. -M
On Mon, 10 Jun 2002, Martin Hannigan wrote: :Question 2: If an account is passworded, how were they able to :take it? Does ARIN not ask for a copy of a license or other :photo ID when making voice/fax based changes to POC's? They used to ask for company letterhead, and there is no reason on earth they should be asking for photo ID. The password you had on your account should always be sufficient. Due to non-existent US privacy laws, they are not equipped to handle photo ID from any other countries where privacy is protected. The privacy laws regarding opt-in data sharing in any EU country, or even Canada are examples of this. Fax them a letter letterhead, and if that doesn't work, sue your previous employer for the handle, and all costs associated with having it returned to you. -- batz
Hello Martin,
I noticed my handle was hijacked by a company I used to work for.
There is no match for MH309-ARIN in ARIN WHOIS.
Naturally, I want it back since I went to use it and it's incorrect. My old handle, MH309, is now MH569.
Since March of 2001 ARIN has removed many POC handles from its database that were no longer associated with registration records. MH309-ARIN is one of the handles that was removed. If you wish to have MH309-ARIN reactivated in place of MH569-ARIN, I would be glad to speak to you about this. Please contact me off this list. Best Regards, Richard Jimmerson Director of Operations American Registry for Internet Numbers (ARIN)
-----Original Message----- From: owner-nanog@merit.edu [mailto:owner-nanog@merit.edu] On Behalf Of Martin Hannigan Sent: Monday, June 10, 2002 10:07 AM To: nanog@merit.edu Subject: Reclaiming hijacked handle
I noticed my handle was hijacked by a company I used to work for.
Naturally, I want it back since I went to use it and it's incorrect.
My old handle, MH309, is now MH569.
Question 1: Did ARIN start expiring unused handles or did something in the process of the hijack cause my handle to increment up to 569, which I'm assuming was the next open number in the in the scheme for 'MH'.
Question 2: If an account is passworded, how were they able to take it? Does ARIN not ask for a copy of a license or other photo ID when making voice/fax based changes to POC's?
[ Then again, they could've used my photo from the HR files ala I9 documentation ]
Thanks,
-M
Am I missing the importance of this somewhere or is this really not worth 100s of list members and the ARIN Director of Operations looking into it? Steve On Mon, 10 Jun 2002, Richard Jimmerson wrote:
Hello Martin,
I noticed my handle was hijacked by a company I used to work for.
There is no match for MH309-ARIN in ARIN WHOIS.
Naturally, I want it back since I went to use it and it's incorrect. My old handle, MH309, is now MH569.
Since March of 2001 ARIN has removed many POC handles from its database that were no longer associated with registration records.
MH309-ARIN is one of the handles that was removed.
If you wish to have MH309-ARIN reactivated in place of MH569-ARIN, I would be glad to speak to you about this.
Please contact me off this list.
Best Regards,
Richard Jimmerson Director of Operations American Registry for Internet Numbers (ARIN)
-----Original Message----- From: owner-nanog@merit.edu [mailto:owner-nanog@merit.edu] On Behalf Of Martin Hannigan Sent: Monday, June 10, 2002 10:07 AM To: nanog@merit.edu Subject: Reclaiming hijacked handle
I noticed my handle was hijacked by a company I used to work for.
Naturally, I want it back since I went to use it and it's incorrect.
My old handle, MH309, is now MH569.
Question 1: Did ARIN start expiring unused handles or did something in the process of the hijack cause my handle to increment up to 569, which I'm assuming was the next open number in the in the scheme for 'MH'.
Question 2: If an account is passworded, how were they able to take it? Does ARIN not ask for a copy of a license or other photo ID when making voice/fax based changes to POC's?
[ Then again, they could've used my photo from the HR files ala I9 documentation ]
Thanks,
-M
The operational signifigance, security, and the latter, my personal need, have been addressed. The former was the intention, the latter became the issue. If for some reason security of ARIN <not necc. NetSol> isn't an on topic operational subject, feel free to slap me about. Thanks to Richard/ARIN for answering both aspects of the query. -M On Mon, 10 Jun 2002, Stephen J. Wilcox wrote:
Am I missing the importance of this somewhere or is this really not worth 100s of list members and the ARIN Director of Operations looking into it?
Steve
On Mon, 10 Jun 2002, Richard Jimmerson wrote:
Hello Martin,
I noticed my handle was hijacked by a company I used to work for.
There is no match for MH309-ARIN in ARIN WHOIS.
Naturally, I want it back since I went to use it and it's incorrect. My old handle, MH309, is now MH569.
Since March of 2001 ARIN has removed many POC handles from its database that were no longer associated with registration records.
MH309-ARIN is one of the handles that was removed.
If you wish to have MH309-ARIN reactivated in place of MH569-ARIN, I would be glad to speak to you about this.
Please contact me off this list.
Best Regards,
Richard Jimmerson Director of Operations American Registry for Internet Numbers (ARIN)
-----Original Message----- From: owner-nanog@merit.edu [mailto:owner-nanog@merit.edu] On Behalf Of Martin Hannigan Sent: Monday, June 10, 2002 10:07 AM To: nanog@merit.edu Subject: Reclaiming hijacked handle
I noticed my handle was hijacked by a company I used to work for.
Naturally, I want it back since I went to use it and it's incorrect.
My old handle, MH309, is now MH569.
Question 1: Did ARIN start expiring unused handles or did something in the process of the hijack cause my handle to increment up to 569, which I'm assuming was the next open number in the in the scheme for 'MH'.
Question 2: If an account is passworded, how were they able to take it? Does ARIN not ask for a copy of a license or other photo ID when making voice/fax based changes to POC's?
[ Then again, they could've used my photo from the HR files ala I9 documentation ]
Thanks,
-M
On Mon, 10 Jun 2002, Martin Hannigan wrote:
Question 1: Did ARIN start expiring unused handles or did something in the process of the hijack cause my handle to increment up to 569, which I'm assuming was the next open number in the in the scheme for 'MH'.
If they did start expiring unused handles... Mine is used on a SWIP for a netblock which I no longer control, 207.166.196.176/28. I haven't used it for anything else. Was your handle taken off all of the records it used to be on? My handle (sjs5-arin, corresponding to my NetSol handle sjs5) is still active. With incorrect information, of course, and I have to update it, but it's still there. But I am still the POC of record for 207.166.196.176/28. My upstream isn't planning to take me off the SWIP until they reassign the block. :-/
Question 2: If an account is passworded, how were they able to take it? Does ARIN not ask for a copy of a license or other photo ID when making voice/fax based changes to POC's?
I required no such info to do my SWIP. In fact, I was working for the company that is now my upstream at the time, and I just e-mailed the template in, and they threw it into the database. I didn't even PGP-sign it. Keep in mind that this happened at least four or five years ago... -- Steve Sobol, CTO JustThe.net LLC, Mentor On The Lake, OH 888.480.4NET - I do my best work with one of my cockatiels sitting on each shoulder - 6/4/02:A USA TODAY poll found that 80% of Catholics advocated a zero-tolerance stance towards abusive priests. The fact that 20% didn't, scares me...
participants (6)
-
batz -
Martin Hannigan -
Randy Bush -
Richard Jimmerson -
Stephen J. Wilcox -
Steven J. Sobol