Dear Subscriber,
This is the monthly reminder of subscription information for the
pacnog list, hosted at APNIC.
For subscription information including how to un-subscribe go to
http://mailman.apnic.net/mailman/listinfo/pacnog
Thank you for participating in this discussion.
Kind Regards,
List administrator
_______________________________________________________________________
APNIC 26 Meeting Report
_______________________________________________________________________
25-29 August 2008
Christchurch, New Zealand
Thank you to everyone who attended or contributed to APNIC 26.
APNIC 26 attendance statistics
------------------------------
Total number attending: 237
Economies represented: 33
APNIC member organisations represented: 70
APNIC 26 also staged two remote participation events where delegates
in Hanoi and Manila could take part in the Policy SIG and APNIC Member
Meeting via video conference.
Number of Hanoi delegates: 25
Number of Manila delegates: 20
To read, watch or listen to archives from the meeting, go to:
http://www.apnic.net/meetings/26/
Number Resource Organization (NRO) Number Council
-------------------------------------------------
During the APNIC Member Meeting (AMM) in Christchurch on Friday,
29 August 2008, an election was held for a regional representative to
the Number Resource Organization (NRO) Number Council (NC).
Congratulations to the successful candidate Naresh Ajwani:
Naresh Ajwani is President of Sify Technologies Limited, one of
the pioneering leaders in the provision of eCommerce and Internet
services in India. He is an Executive Council Member with ISPAI
(Internet Service Providers Association of India) and brings over
25 years of core operational experience to this position.
Election details are available at:
http://www.apnic.net/meetings/26/election/
Meeting outcomes
----------------
Policy SIG
Nine policy proposals were discussed in the Policy SIG. The following
proposals reached consensus and were subsequently approved at the
APNIC Member Meeting. These proposals are now subject to a 'last call'
for comments:
* prop-055: Global policy for the allocation of the remaining IPv4
address space
* prop-061: Autonomous System Numbers (ASN) for documentation
purposes
* prop-062: Use of final /8
* prop-064: Change to assignment policy for AS numbers
* prop-065: Format for delegation and recording of 4-byte AS
numbers
* prop-066: Ensuring efficient use of historical IPv4 resources
The following proposal will be returned to the Policy SIG mailing list
for further discussion:
* prop-063: Reducing timeframe of IPv4 allocations from twelve to
six months
The following proposal will be returned to its author and mailing list
for continued discussion:
* prop-050: IPv4 resource transfers
The following proposal will be revised by its author:
* prop-060: Change in the criteria for the recognition of NIRs in
the APNIC region
APNIC Community Request for ICANN to Sign DNS Root
The APNIC community considered ICANN's initiatives toward
operational readiness for DNSSEC signing and informed ICANN that
the Asia Pacific community supports efforts to sign the root of
the DNS and called on ICANN to resolve these issues and to sign
the root of the DNS as soon as is realistically possible.
MoU (Memorandum of Understanding)
APNIC signed two MoUs (Memorandum of Understanding). One with
AusNOG, the other with NZNOG. These MoUs strengthened the
relationship between the three organizations as they agreed to
collectively work together, share information, and facilitate
the development of the Internet in Australia and New Zealand.
Meeting sponsors
----------------
APNIC offers its deepest thanks to the sponsors of APNIC 26, whose
invaluable contributions allowed APNIC to offer a meeting program
of a very high standard:
http://www.apnic.net/meetings/26/sponsors/
Upcoming APNIC meetings
-----------------------
APNIC 27 18-27 February 2009, Manila, Philippines
APNIC 28 24-28 August 2009, Beijing, China
APNIC 29 24 February - 5 March 2010, Kuala Lumpur, Malaysia
Regards
Sunny
____________________________________________________________________
Srinivas (Sunny) Chendi email: sunny(a)apnic.net
External Relations Manager, APNIC sip: sunny(a)voip.apnic.net
http://www.apnic.net ph/fx: +61 7 3858 3100/99
Hi,
You may be aware that APNIC 26 has started. You can participate
remotely in discussions, ask the presenter questions, and voice
your opinion. For more information on webcast, podcast, Jabber
chat, and live transcript services please see:
http://www.apnic.net/meetings/26/remote/
Some of the exciting topics being covered include:
* IPv4 in 2015
* ICANN Consultation
* Internet governance hui
* IPv6: Does it work for you?
* Many interesting policy proposals in policy SIG
For more information about the agenda please see:
http://www.apnic.net/meetings/26/program/
Kind regards,
Elly
APNIC
http://www.isoc.org/tools/blogs/ietfjournal/?cat=16
or in PDF:
http://www.isoc.org/tools/blogs/ietfjournal/wp-content/uploads/2008/07/IETF…
A Week of Firsts in Philadelphia
>From the Editor’s Desk, by Mirjam Kühne
Like several other organizations (most notably some of the Network Operator Groups), the IETF took the opportunity of having many engineers in one room at one time to switch off the IPv4 network and make only the IPv6 network available, which they did during the IETF 71 plenary in Philadelphia (see below). The IPv4 outage experiment nearly coincided with a power outage, which took place just as Scott Bradner was presenting a report about the recent use of arbitration during the Nomination Committee process. This was the first time in the history of the NomCom that the arbitration process had to be employed (more on this in the plenary report). An-other interesting development in Philadelphia was a BoF on IDNA, which could lead to the formation of a new IDNA working group at the IETF 72 meeting in Dublin (see a report on the BoF on page 11).
We thank all of our contributors to this issue, and we wish you fun reading. As always, we welcome both your com-ments and your contributions for future issues.
Posted: Thursday, July 10th, 2008
To PacNOG list,
Thanks to those list members that made posts last month about DNS issues,
vulnerabilities and DNSSEC and have shared ref. to online tools for testing.
Thought I'd share this announcement from ICANN website on the issue. Hopeful
that as PacNOG members you can share this info with your local ccTLD
registry, ISPs, other network operators or end users.
Regards,
Save
---snip---
ICANN Highlights Domain Name System Vulnerability; Releases Tools
ICANN aims to raise awareness of critical Internet security issue
6 August 2008
MARINA DEL REY, Calif.: The Internet Corporation for Assigned Names and
Numbers is raising awareness of a recently discovered vulnerability in the
domain name system (DNS). This includes releasing an FAQ and an online tool
for domain operators to test their domains.
Due to the distributed nature of the DNS, no one organization can implement
a fix for this vulnerability. It requires the cooperation of all name server
operators and DNS software vendors. However, ICANN sees an important goal in
spreading awareness of the need to update Internet infrastructure to cope
with the threat. The organization has been undertaking significant outreach
efforts to top-level domain operators to advise them on the issue. It has
also prepared an FAQ and online domain testing tool to raise awareness of
the problem, and to encourage network operators to rectify or update their
servers.
Summary of Cache Poisoning Issue
Security researcher Dan Kaminsky recently discovered a design flaw in the
fundamental DNS protocol. While it is not possible to fully fix this flaw,
there are ways to improve resistance to it. This involves system
administrators patching or reconfiguring their DNS servers.
The vulnerability affects what are called "recursive" name servers,
typically installed at ISPs and corporate network gateways to assist DNS
lookups and cache results for faster lookups, rather than the type of name
servers used by domain registries which are "authoritative" name servers.
However, name servers can be configured to perform both "recursive" and
"authoritative" functions from the same machine, and by doing so the
susceptible recursive function can cause security risks for the
authoritative function.
For domain operators
For operators of domain names, this vulnerability can be used to affect the
contents of their zone if their authorities also provide recursive name
service. To detect whether a particular zone is vulnerable, ICANN has
produced a tool that can check a particular domain:
http://recursive.iana.org/
Domain operators should look to ensuring that all of the authoritative name
servers for their domain are separated from any recursive name servers to
avoid being impacted by cache poisoning attacks.
ICANN has also produced a set of question and answers on this topic for
domain operators, which is available at:
http://www.iana.org/reports/2008/cross-pollination-faq.html
For Internet users
For most users it is important to ensure the DNS servers their computer uses
to look up domains has been patched to enable "source port randomization".
To check if this change has been made by your Internet provider one can go
to an online testing tool provided by the DNS Operations, Analysis and
Research Center at:
https://www.dns-oarc.net/oarc/services/dnsentropy
To be guarded against the vulnerability, the test result should return as
"Great". If you do not get such a result your should talk to your network
administrator (typically your ISP, or your company¹s IT department) and
advise them to update their recursive name servers.
Apply for your ISIF ICT grant online
[Brisbane, Australia - August 4th]
With the successful launch of The Information Society Innovation Fund (ISIF), many developing economies in the Asia Pacific region are expecting to benefit from grants funding later in 2008. ISIF has been widely praised for helping ICT development projects in Asia Pacific developing economies. This will now be further enhanced with the ability to apply online for ISIF grants.
APNIC'S Paul Wilson is "pleased with the positive response we have received from the community so far and are happy to notify potential applicants that grant applications may now be lodged directly on our website using an online form. Most importantly, we look forward to seeing the grants come to fruition."
ISIF is a joint initiative between the Canadian International Development Research Centre (IDRC), the Internet Society (ISOC), and the Asia Pacific Network Information Centre (APNIC), aimed at stimulating creative solutions to ICT development needs in the Asia Pacific region.
ISIF provides grants of up to US$30,000 per project to help advance local and regional projects aimed at introducing, improving, and applying Internet and other digital communications technologies for the benefit of Asia-Pacific users and communities.
Project proposals from Asia-Pacific based public or private sector organisations, university or research and development institutions, and non-government organisations will be considered. Applications must be aligned with ISIF program objectives, selection criteria and administrative guidelines. Individuals are not eligible for grants.
The ISIF grant round for 2008 is now open and applications are due 1 September 2008. A total of US$375,000 is available for grants in 2008. Grants are to be made on a competitive basis and successful applicants will be required to make project details, outcomes and findings publicly available.
Complete information on the program and how to apply is available on the ISIF website at http://www.isif.asia
The online application for the grant can be accessed directly from http://application.isif.asia
ISIF is proudly sponsored by the DotAsia Organisation, the registry operator for the .ASIA top level domain.
For more information:
Sylvia Cadena | ISIF Program Officer | info(a)isif.asia | http://www.isif.asia
________________________________________________________________________
APNIC 26 Early bird registration bonus - but hurry!
________________________________________________________________________
Dear APNIC members and friends
APNIC 26 will be held from 25 to 29 August 2008 in Christchurch, New
Zealand.
Early bird registration
-----------------------
Register by credit card before 01 August 2008 and go into the draw for an
ASUS Eee PC!
Now when you register online, you will be issued with an eTicket, which
will make your onsite registration quicker and easier. Register now at:
http://www.apnic.net/meetings/26/register
Be part of APNIC 26 - from anywhere
-----------------------------------
Participating in APNIC meetings from anywhere in the region is now even
easier.
Access the new APNIC remote participation interface that allows you to
watch and hear the sessions in real time. Members can follow the
meetings through live audio and video streaming, transcripts, and Jabber
chat.
If you would like to ask questions, you can join our Jabber chat rooms
and have your question read live. If you are not able to access the
session, you can log your question to be asked on your behalf.
You can also attend the APNIC policy discussion and member meeting
remotely at events in Manila, Philippines and Hanoi, Vietnam. APNIC
would like to thank ASTI and VNNIC for their generous support for these
events.
Visit the meeting website for more details
http://www.apnic.net/meetings/26/remote
Hostmaster consultations
------------------------
Also at APNIC 26 are the hostmaster consultations, where members can
personally consult with a hostmaster in a face-to-face environment.
Online bookings are now available. Please visit "Hostmaster
consultation" from:
http://www.apnic.net/meetings/26
Sincerely,
________________________________________________________________________
APNIC Secretariat
Asia Pacific Network Information Centre (APNIC) Tel: +61 7 3858 3100
PO Box 2131 Milton, QLD 4064 Australia Fax: +61 7 3858 3199
Level 1, 33 Park Road, Milton, QLD http://www.apnic.net
________________________________________________________________________
