So the providers most likely to have the skills and capabilities to automate abuse mitigation are the least likely to do anything about it, even when asked?
</sarcasm> ----- Mike Hammett Intelligent Computing Solutions Midwest Internet Exchange The Brothers WISP ----- Original Message ----- From: "richey goldberg" <[email protected]> To: "North American Network Operators Group" <[email protected]> Sent: Thursday, February 24, 2022 9:16:13 PM Subject: Re: Russian aligned ASNs? I don’t think that refusing Russian ASNs will do much to stop any kind of attacks. They are going to attack from botnets that are global so that’s not going to stop them. If anything blocking Russian ASNs will stop the flow of information going into Russia. I think we’re better off doing what we can to take down any machines that are participating in attacks if they live on machines that are downstream from you. One of the biggest issues I face in my daily tasks is getting other provers to take down machines. I’m talking to you Microsoft, Amazon, Digital Ocean and the likes….. -richey From: NANOG <[email protected]> on behalf of William Allen Simpson <[email protected]> Date: Thursday, February 24, 2022 at 7:41 PM To: North American Network Operators Group <[email protected]> Subject: Russian aligned ASNs? There have been reports of DDoS and new targeted malware attacks. There were questions in the media about cutting off the Internet. Apparently some Russian government sites have already cut themselves off, presumably to avoid counterattacks. Would it improve Internet health to refuse Russian ASN announcements? What is our community doing to assist Ukraine against these attacks?
