On 12/6/12 5:57 PM, "Eric Osterweil" <[email protected]> wrote:
> Nope, it doesn't. It actually points out that hosting's myopic benefits >are fools-gold, and they come with a > much more dangerous price tag. Your choice of dreamhost is a _choice_, >not a mandate from a set of 5 > options. Fundamentally different. Just because the RIRs are the only organization offering hosting services, doesn't mean that they are the only ones that can offer hosting services. Certainly an enterprising Internet company with DDOS mitigation services could offer RPKI CA hosting or simply hosting of RPKI repositories for DDOS mitigation. On 12/6/12 6:03 PM, "Eric Osterweil" <[email protected]> wrote: > How do they get their private keys from you? This is important to think >through _now_ before it becomes > an operational blackhole... Also, what happens if you get DDoS'ed and I >need your services? In DNS, > there are a lot of registrars to choose from, and no single point of >failure... The RIRs are not as > plentiful in numbers as them, so you are a higher value target this >way... Just to reiterate the points Carlos made regarding DDOS of RPKI repositories (which is the issue, not the hosting services): 1) if DDOS of the repositories is in question, we should look at the multiple-publication points proposal, and 2) switching to an HTTP fetching protocol would broaden the available base of organizations that might wish to distribute RPKI repositories. -andy _______________________________________________ sidr mailing list [email protected] https://www.ietf.org/mailman/listinfo/sidr
