Yakov Shafranovich <research(_at_)solidmatrix(_dot_)com> wrote:
Laws are useless unless they are enforced, same for standards. Who will
make sure that the procedures you drafted are actually used in a correct
fashion?
Everybody else. There's no need for a central organization if
everybody, individually, decides to enforce the standards. See the
deployment of a new protocol: All that's required is software for
people to use, and people willing to use it.
What happens if people start blocking ISPs and networks without a
good enough reason like some blacklist operators have done?
Anyone can block traffic to/from their site for their own reasons.
Additionally, what happens if a portion of the community colludes
against a specific network or operator?
As in the Usenet Death Penalty? What happens is that the operator
fixes their problems.
There is ia standard; it is in the RFC pertaining to mandatory role
accounts.
I assume you are referring to RFCs 2821 and 2142. They define the
postmaster@ and abuse@ addresses. However, it seems that in many cases
ISPs want to have additional mailboxes or simply do not honor the RFC,
which is why systems like abuse.net are used.
So why are those sites still on the net?
The answer is clear: there is no penalty for violating RFC's, for
abusing the net, or for attacking other net users. Therefore there is
no negative feedback to minimize these activities.
Every engineer should know that systems without negative feedback
generally devolve into chaos, and die.
Alan DeKok.
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg