who's receiving comvalid/bgpsentinel spam? (Re: BGP )
is anybody else receiving this spam when they advertise a new AS nowadays? (i'm trying to figure out which whois information is being policy-violated and who to complain about, but if i'm the only one receiving it, i may JHD.) re: # From: "Antony Gullusci" <gullusci@comvalid.com> # To: <paul_vixie@isc.org> # Subject: BGP # Date: Thu, 15 Dec 2005 14:09:19 +0100 # X-Mailer: Microsoft Outlook Express 6.00.2900.2180 # # Hi! I am Antony Gullusci from Comvalid, and I'd like to give you some # additional information on Comvalid and what we can do for you, regarding # BGP. # # In the past 10 years, our mother company Inrete has made a good name # managing Autonomous System and BGP routers. # # Now Comvalid offers to the broader market the precious internal tools that # Inrete developed in order to manage the Autonomous System of its clients. # # Since you manage a newly announced AS, we propose you free of charge, the # use of our BGPsentinel service for one month. # BGPsentinel operates in the following way: # # 1) constantly sniffs in different points the BGP traffic between BGP router # receiving the full Internet mesh # 2) extracts and stores all the data regarding the AS numbers and NETs of # interest, and stores such data in a database # 3) generates intelligent and context rich alarms, on the base of the # detected and stored info # 4) makes all the history pertaining the collected data always available for # post-debug and forensic # # You will have a user & password to access the data regarding you systems, # and will be able to define specific alarms to be sent to you by mail, after # one month the only thing we will ask you is to fill a short survey about the # service with your opinion and your advices. # # If you are interest in having a better control on what happens to your NETs # and ASes, just reply me back confirming that you are interested in having # the following AS and NET's : 24051 # 203.119.20.0/24 # # Checked by BGPsentinel # # Looking forward to hear from you! # # Antony Gullusci # Email gullusci@comvalid.com # # BGPsentinel Web http://www.comvalid.com/?pag=bs # __________________________________________ # Comvalid USA # 35 Corporate Drive # Burlington, Massachusetts 01803 # Tel +1 (781) 583-7565 # http://www.comvalid.com #
your not the only one... --bill On Thu, Dec 15, 2005 at 02:04:16PM +0000, paul@vix.com wrote:
is anybody else receiving this spam when they advertise a new AS nowadays? (i'm trying to figure out which whois information is being policy-violated and who to complain about, but if i'm the only one receiving it, i may JHD.)
re:
# From: "Antony Gullusci" <gullusci@comvalid.com> # To: <paul_vixie@isc.org> # Subject: BGP # Date: Thu, 15 Dec 2005 14:09:19 +0100 # X-Mailer: Microsoft Outlook Express 6.00.2900.2180 #
# your not the only one... do you think it's worth complaining, or is this another "hey, you put your contact information out there, we're just using it, and the mail isn't spam, it's absolutely on-topic?" spammer?
On Thu, 15 Dec 2005 paul@vix.com wrote:
is anybody else receiving this spam when they advertise a new AS nowadays? (i'm trying to figure out which whois information is being policy-violated and who to complain about, but if i'm the only one receiving it, i may JHD.)
They are likely violating policy of their ISP in regarding to sending unsolicitied advertisement (if that is what it is), look at which mail server was used to send this email and complain. What they appear to have done is look at who is announcing what ip block and in that case it is 203.119.20.0/24. BGP table is free for use for whatever needs, so no violation there. But they do appear to have looked in apnic whois to find contact person afterwards. APNIC whois has what they call "copyright terms" at http://www.apnic.net/db/dbcopyright.html which says: "...Any use of this material to target advertising or similar activities are explicitly forbidden and will be prosecuted. APNIC requests to be notified of any such activities or suspicions thereof". As far as I know the address for complaints like this at APNIC is helpdesk@apnic.net Unfortunetly if they sent the same adveritsement to somebody who has ip block in ARIN whois, they would not be violating any policy because ARIN does not have terms of use for their WHOIS despite me trying to introduce it several years back... -- William Leibzon Elan Networks william@elan.net
participants (4)
-
bmanning@vacation.karoshi.com -
Paul Vixie -
paul@vix.com
-
william(at)elan.net