This message did not go out to nanog. I subscribed and resubscribed to nanog.
and nanog-post. I don't get any response at all such as (you aren't authorized
to post or some such...) There seems to be something wrong.

Appreciate it if you can fix it.

Thanks,

--Dean

>Date: Wed, 23 Jun 1999 01:43:44 -0400
>To: Jeremy Porter <jerry@freeside.fc.net>, Alex Bligh <amb@gxn.net>
>From: Dean Anderson <dean@av8.com>
>Subject: Re: Internet failures over the next 3 years
>Cc: Tim Wolfe <tim@clipper.net>, Sean Donelan <SEAN@SDG.DRA.COM>, nanog@merit.edu, srh@merit
.edu
>
>I agree with Jeremy, that the problem is really due to the fact that people
> aren't tracked down, due to lack of tools or interest. I suggest that what
>is needed is not necessarilly better authentication (because its hard to
>back fit into existing protocols), but better auditing and law enforcement tools.
>
>The auditing and identification could be fixed by a trusted/authenticated
>method to start additional logging automatically, so that enough records
>are created to later identify the true source.
>
>Eg, you send an authenticated message to an administrative server at upstream,
>that is able to start logs for a particular source address on all or likely
>routers, to identify the source of the packets. If the source it another ISP,
>then it forwards the request on to that ISP. When security staff
>arrive, they know that an event occured, and have the logs.
>
>Remember in cuckoos egg, they really didn't start getting anywhere until
>they automated the process.
>
>My registry project machine isn't getting a lot of use right now, and I'll
>donate it as a development resource for such a project.
>
> --Dean