Proposal To Limit ISP Contact Data Draws Fire

An anonymous reader writes "A proposal to let Internet service providers conceal the contact information for their business customers is drawing fire from a number of experts in the security community, who say the change will make it harder to mitigate the threat from spam and malicious software, according to a story at Krebsonsecurity.com. From the piece: 'The American Registry for Internet Numbers (ARIN) — one of five regional registries worldwide that is responsible for allocating blocks of Internet addresses — later this month will consider a proposal to ease rules that require ISPs to publish address and phone number information for their business customers. Proponents of the plan couch it in terms of property rights and privacy, but critics say it will only lead to litigation and confusion, while aiding spammers and other shady actors who obtain blocks of addresses by posing as legitimate businesses.'"

This should be simple...

[Oxford_Comma_Lover]

Person A says to cops: "I received spam. Here is copy."
Cop identifies IP.
Cop says to provider "Give me billing info on this IP b/c of spam."
Provider gives billing info. If not, does so after quick court order. If still not, gets shut down.
Cop contacts business. If hijacked computer, refers to techies. If not hijacked, quick court case by DA. IF spam, gets shut down and pays large statutory damages and prohibited from using net again for X years.

Or something like that.

The problem is having a quick, efficient, and intelligent police response in place, and having people know where they can go to get it. We will never stop spam unless we decide to commit sufficient resources to doing so.

We might use civil causes of action, class actions, and/or private atty general statutes. (But have to be careful to limit abuse.)

Re:Get rid of "private" domain registrations first

[TheSpoom]

You have a license plate on your car that's publicly viewable, and you don't have the right to obstruct/hide it. What's the problem with that?

A license plate is an indexed key. To actually obtain the data associated with the key, you have to be in a position of authority (e.g. a police officer).

You have an address on the door to your place that's publicly viewable. What's the problem with that?

You're already there.

You have a face that's publicly viewable when you go on the street - and you don't have the right to wear a mask to hide it, What's the problem with that?

You don't? Tell that to Anonymous.

You have your name, address, bank account number and signature on any cheques you write. What's wrong with that?

You can contest things that happen to your bank account. Nonetheless, I don't let just anyone have the information on my checks.

You have your medical condition and contact info listed on your MedicAlert bracelet. What's wrong with that?

No, I don't. :^P Further, even if I did, people have to get close enough to view it. It's not in a publicly accessible database, like WHOIS data for domains.

I like the ability to anonymously post information to the internets. Part of that is the ability to be free from WHOIS spam as part of a domain registration.