North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: Stupid Question: Network Abuse RFC?

  • From: Suresh Ramasubramanian
  • Date: Sun Jan 13 07:47:59 2008
  • Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=rWtFgkxgcwzVxlymc2qpfrLYAr2BXUvZjeaQe5i+Csg=; b=LevIbXC68c7VA73ExjA3UczVyS4qOs7XGRrSfdLw6BeJqq3uzce3E7VKud4YgABMIeydtsg5T1F4O45bfPo7IIz2P1bkhq9lgp5kX3exBrDkuT/yOZw6+xeZb+2U3+yfnPbTLe04fuR6qMiYb0BjR/fwetcDssQ6DWByRriw73o=
  • Domainkey-signature: a=rsa-sha1; c=nofws;; s=gamma; h=message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=TdbAVN48GDRU2COtXKtYbmmGhaTmtvLVfyxHMKObJurwggriYQWGPEHhP2J+sx0lvOwPZhYlQjAhNfhb7HhRKPr+FOI5TTmR48FAHYizfxZoRnbLPO3DlhRiaeSKOFOkT4AvkIxH2J2FnnocwFea22QsSZQJwa1+k4/P0zIgeP0=

On Jan 13, 2008 12:05 PM, Sean Donelan <[email protected]> wrote:
> The great thing about standards is there are so many to choose from.
> There is also ARF: Abuse Feedback Reporting Format from the Mutual
> Internet Practices Assocation.
> Messaging Anti-Abuse Working Group has multiple documents.

ARF is the de facto standard, widely deployed, for ISP spam reporting
feedback loops

As for INCH, standards track or not, as much as I keep asking about, I
can find very few instances of CERTs actually using the damned thing.
And quite a few feeds dont appear to provide "take" in INCH format.

> And then there are various one-shot things produced by many groups such as
> the OECD, ASTA, FTC, NASD, etc.

The only relevant one I remember that the OECD did, in the context of
their spam toolkit, was an earlier version of the MAAWG sender best
practices documents, developed by MAAWG jointly with OECD's business
constituency BIAC. Newer versions of the sender bcp (which is bcp for
legit bulk mailers) have since been published on the MAAWG website.

The ASTA docs became the MAAWG best practices, more or less ..pretty
much the same crowd behind both (large ISPs + email providers).  And
most of that lot is not reporting standards or formats, it is best
practices for abuse handling / legit email marketing etc.

Suresh Ramasubramanian ([email protected])