[sig-db]Final call for comments: [prop-010-v001] - Protecting resourcere

  • To: <sig-db at apnic dot net>
  • Subject: [sig-db]Final call for comments: [prop-010-v001] - Protecting resourcerecords in APNIC Whois Database
  • From: APNIC Secretariat <secretariat at apnic dot net>
  • Date: Thu, 25 Sep 2003 12:11:45 +1000
  • List-archive: <http://www.apnic.net/mailing-lists/sig-db/>
  • List-help: <mailto:sig-db-request@lists.apnic.net?subject=help>
  • List-id: APNIC SIG on whois database issues <sig-db.lists.apnic.net>
  • List-post: <mailto:sig-db@lists.apnic.net>
  • List-subscribe: <http://mailman.apnic.net/mailman/listinfo/sig-db>,<mailto:sig-db-request@lists.apnic.net?subject=subscribe>
  • List-unsubscribe: <http://mailman.apnic.net/mailman/listinfo/sig-db>,<mailto:sig-db-request@lists.apnic.net?subject=unsubscribe>
  • Sender: sig-db-admin@lists.apnic.net
  • User-agent: Microsoft-Entourage/10.1.4.030702.0
    • 
      APNIC welcomes comments, questions, and suggestions on the following policy
      proposal:
      
      
      ____________________
      
      Final call for comments: [prop-010-v001]
      "Protecting resource records in APNIC Whois Database"
      ____________________
      
      This is the final call for comments on policy proposal [prop-010-v001]
      "Protecting resource records in APNIC Whois Database".
      
      This proposal was presented at APNIC 16 and the following consensus was
      reached:
      
         "The SIG accepted by consensus the proposal to replace all MAINT-NULL
          occurrences with proper maintainer objects and to deprecate the use
          of NONE in the maintainer's auth attribute."
      
      This proposal is now submitted to the sig-db mailing list for an
      eight week discussion period. At the end of that period, if consensus
      appears to have been achieved, the Chair of the Database SIG will
      ask the Executive Council to endorse the proposal for implementation.
      
      *   Send all comments and questions to:   <sig-db at apnic dot net>
      *   Deadline for comments:                20 November 2003
      
      
      ____________________
      
      Proposal details
      ____________________
      
      To improve the protection of internet resource records in APNIC Whois
      Database, APNIC secretariat propose that ALL inetnums, inet6nums and
      aut-nums be protected with proper maintainer (other than MAINT-NULL).
      This will be done to all historical, current, and erx resource range.
      Based on the 202/8 testing, impact to APNIC members would be minimum, and
      any request to change the maintainer (if it turns out to be an error) will
      be dealt with within 2 business days as long as there is enough evidence
      and authority to support the request.
      
      To ensure that all maintainers are protected, APNIC secretariat will
      announce deprecation of auth: NONE. Maintainers that are currently
      protected by auth: NONE will be given 60 days to change to another
      authentication method. After that period, APNIC secretariat will
      automatically replace auth: NONE with auth: CRYPT-PW. The password
      will be given to the appropriate contact persons by contacting APNIC
      helpdesk.
      
      Implementation:
      
      The software script to perform MAINT-NULL replacement is ready and
      APNIC proposes that the implementation be started within 30 days
      after approved by the members.
      
      The following resources will be executed in sequence:
      
      - APNIC IPv4 address range delegated from IANA
      - APNIC ASN range delegated from IANA
      - APNIC IPv6 address range delegated from IANA
      - ASN range received by APNIC from ERX project
      - IPv4 address range received by APNIC from ERX project
      
      Estimated completion time for all of the above except the last bullet
      (the IPv4 ERX transfer has not been completed yet) is 30 days.
      
      The software script to perform auth: NONE replacement is also ready and
      APNIC 
      proposes that the implementation be started within 30 days after approved by
      the members.
      
      The proposed auth: NONE replacement schedule is:
      
      - Send email notifications to the contact persons of maintainer objects
        currently protected by auth: NONE, requesting them to change the
        authentication method.
      - 60 days after notification is sent, if auth: NONE has not been
        changed, APNIC secretariat will replace it with auth: CRYPT-PW.
      
      APNIC secretariat will present the implementation project report in APNIC
      17.
      
      
      ____________________
      
      References
      ____________________
      
      Proposal details including full text of proposal, presentations, links
      to relevant meeting minutes, and links to mailing list discussions are
      available at:
      
           http://www.apnic.net/docs/policy/proposals/prop-010-v001.html
      
      ______________________________________________________________________
        APNIC Secretariat                              <secretariat at apnic dot net>
        Asia Pacific Network Information Centre (APNIC)   Tel: +61-7-3858-3100
        PO Box 2131 Milton, QLD 4064 Australia            Fax: +61-7-3858-3199
        Level 1, 33 Park Road, Milton, QLD                http://www.apnic.net
        ______________________________________________________________________