Greetings Paul,
In the world of the Internet there used to be 3 gross monopolies, all of
whom had a license to print money. NSI for domain registrations and
their renewals, Verisign for SSL keys and their renewals and finally
ARIN who control IP blocks. We've seen NSI somewhat toppled, Verisign's
stranglehold loosened and of course ARIN is still in sole control of
IPs.
Our NSP has been audited repeatedly by ARIN and the powers that be at
ARIN always reject any applications to even purchase the use of new
class C's. It's interesting that they feel any ISP should be able to
run their whole operation on 5 IP's or less "if the ISP knows what they
are doing" (implying of course if you can't you don't know what you're
doing). I'm not sure if they still do, but it used to be IP's were only
purchased in blocks of 8192 and they went for $0.50 / IP / year. So,
over $4,000 US annually added to your overhead and you know that's going
to be renewed because who wants to renumber their network if they don't
have to?
Anyway I realize I'm digressing here but it grieves me to see people
suffering because NSI's legacy Hostname registrations are used as
gospel. For a while we weren't able to register nameservers with
OpenSRS until they were first registered as hosts through NSI.
I doubt very much that you'd get much help from ARIN in this matter but
hopefully the ARIN registered netblock managers will be a little more
receptive. Certainly the ones I've dealt with associated with
Universities and government have been. If however they're owned by
Sprint, MCI, AT&T et al. my gut feel is that they won't do much. Do let
us know how it turns out as more domains get hosted elsewhere without
the NSI host records kept in the loop, it is a problem that I'll be
we're going to see more and more.
Jack Broughton
CanTech Solutions
PS. More evidence that monopolies are bad I guess.
Paul Chvostek wrote:
>
> The only solution I see is for host record creation to require the email
> confirmation of the ARIN-listed netblock manager.
>
> I'm having a similar problem with a couple of domains here. NSI owns
> the host records, which are in a domain that has been expired (but not
> deleted) for two years. NSI tells me they won't make any changes to
> the host record (including deletion) unless the domain is paid up.
> They're basically telling me I have to pay for two years on an expired
> domain for the privilege of deleting the host record.
>
> Another fun one is a domain that expired and was snapped up by a
> pornographer. So now I can't delete the host record, and NSI says I
> have to deal with the current domain owner, who doesn't answer my
> email. :-(
>
> But the MOST IMPRESSIVE example I have of this problem can be seen with
> a whois query from whois.crsnic.net of "=209.112.48.1.". Somehow, the
> folks at awregistry.net were able to create host records on our IPs that
> have HOSTNAMES that are our customer's IP addresses. This doesn't break
> the DNS, but it does make whois output really wacky, and awregistry.net
> claims they can't delete the host records (which they say is the only
> way to stop them being exported to whois.crsnic.net) because they're now
> in use at another registrar, bulkregister.com.
>
> Ah, the confusion....
>
> On Tue, Jun 19, 2001 at 05:23:24PM -0700, Derek Balling wrote:
> >
> > Is there some mechanism in place, if $SOMEONE has registed $IP as a
> > hostname with NSI Registry, except that $IP doesn't belong to them,
> > it belongs to you, and you'd now like to use it as a nameserver?
> >
> > Seems a trivial DoS against "The system", (since - from my
> > conversations with NSI - they seem completely unwilling to deal with
> > the problem), to simply register a domain, "NSISTUPIDHOSTPOLICY.COM",
> > and start creating sequential hostnames ...
> > A1.B1.C1.D1.NSISTUPIDPOLICY.COM, A1.B1.C1.D2.NSI.... etc., until
> > you've allocated largish chunks of the IP spectrum. People can then
> > either use the hostname you've provided, or complain to NSI to get
> > the host removed (good luck).
> >
> > Thoughts?
> >
> > D
> >
> > --
> > +---------------------+-----------------------------------------+
> > | [EMAIL PROTECTED] | "Conan! What is best in life?" |
> > | Derek J. Balling | "To crush your enemies, see them |
> > | | driven before you, and to hear the |
> > | | lamentation of their women!" |
> > +---------------------+-----------------------------------------+
>
> --
> Paul Chvostek <[EMAIL PROTECTED]>
> Operations / Development / Abuse / Whatever vox: +1 416 598-0000
> IT Canada http://www.it.ca/
