[nsp-sec] Notice of upcoming service change

Dave Monnier dmonnier at cymru.com
Mon Jan 26 12:17:10 EST 2009 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello NSP-Sec,

We'd like to make you aware of a change in the terms by which we grant
access to our DDoS-RS and DNSRR feeds.  We've had a number of people
contact us in recent months complaining that we had black-listed their
server and that they had been directed to us by their provider.  This is
contrary to the terms we've placed on the feeds [1].  We've, until now,
simply asked that people not do this.  Sadly this hasn't always worked
out, and we've had customers contacting us.

Starting today we'll be implementing consequences for violating these
conditions.  On the first offense, a site/AS/member who has been
identified as violating the non-disclosure condition of the feeds will
receive a warning, on a second offense the members from that site will
lose access to the feeds or peering sessions for 30 days. On a third
offense, access will be permanently revoked.

We will also send notice of each incident to the NSP-SEC moderators for
their evaluation, as we consider this type of breach to also be a breach
of list confidentiality.

As explained on the service page,  we cannot serve as a customer point
of contact for these issues.  We're happy to remove any listed host for
any reason. We don't want to have to do this, but must maintain
confidentiality to be able to continue to provide the service.

For those of you interested in continuing the use of ddos-rs, please
make sure to educate your support staff on the required protections
surrounding the feeds.  If you have any comments or questions, or
require any assistance with any of this please let us know!

On behalf of Team Cymru,
- -Dave

[1] https://www.cymru.com/nsp-sec/DDoS-RS/

- --
Dave Monnier, Senior Systems Engineer, Team Cymru
http://www.cymru.com/  | +1 312 924 4042 | dmonnier at cymru.com

-----BEGIN PGP SIGNATURE-----

iEYEARECAAYFAkl98BYACgkQ+29txnwarlX5igCcCSMETmz6/IpvWwwybTyF0ezf
JGAAnRSS1vahKcEwNIp6kacD2/OVHkAM
=RtDQ
-----END PGP SIGNATURE-----

More information about the nsp-security mailing list