On Nov 8, 2012, at 9:37 AM, Murphy, Sandra wrote: > > I think you may have misread my statement.
No, I didn't: On Nov 8, 2012, at 6:25 AM, Murphy, Sandra wrote: "I doubt whether any of them have felt the need to carefully evaluate the risks or consult their legal departments." In response: November 8, 2012 7:40:11 AM EST, I said: "Given that our services and businesses rely on these systems with varying levels of buffers, I assure you that _many [most] operators DO carefully evaluate the risks and consult their legal departments." > I did not say there was no need to consult their legal departments. I said > there was no need to advise them to consult their legal department. > Your thesis was that they always do. No, it wasn't - go reread [1], or see text above. Please don't tell me what I said, and please don't assume operators are naive. -danny [1] inline below: Begin forwarded message: > From: Danny McPherson <[email protected]> > Subject: Re: [sidr] additions and changes to agenda on Friday > Date: November 8, 2012 7:40:11 AM EST > To: sidr wg list <[email protected]>, Sandra Murphy <[email protected]> > > > On Nov 8, 2012, at 6:25 AM, Murphy, Sandra wrote: > >> I doubt whether any of them have felt the need to carefully evaluate the >> risks or consult their legal departments. > > And therein lies the disconnect! > > I think it'd be extremely naive to think that operators don't know, or care > about, or evaluate the risks of the systems that enable their operations. If > this weren't the case, many of those folks that have expressed concern here > would not do so. > > Given that our services and businesses rely on these systems with varying > levels of buffers, I assure you that _many [most] operators DO carefully > evaluate the risks and consult their legal departments. This isn't simply a > science project. > >> I don't think we want people asking ISPs that use IRRs why they run such a >> risky operation. > > I think that's exactly what we want. That's the purpose of engineering and > risk management, and why operators that operate commercial networks, care a > whole lot when you introduce a new dependency. > > -danny _______________________________________________ sidr mailing list [email protected] https://www.ietf.org/mailman/listinfo/sidr
