Watch Live Thurs 28 May: The Way Forward for the WSIS+10 Review Process

Would you like to learn more about what the WSIS+10 Review process is all about? How can you participate in the process if you are not with a government? What is "WSIS" all about anyway -- and why should you care? Those questions and more will be part of a luncheon briefing on Thursday, May 28, 2015, from 13:15 - 14:45 Central European Time (UTC+2). more

Email Vendors: Time to Build in DMARC

DMARC is extremely useful, yet I've heard some vendors are putting their implementations on hold because of the IETF DMARC working group. You really shouldn't wait though -- it's been in wide use for nearly three years, enterprises are looking at DMARC for B2B traffic, and the working group charter is limited in it's scope for changes. Let's compare this to a similar situation in the past. more

Reusing Existing Easements for Building New Fiber Networks

Casey Lide and Thomas B. Magee of Keller & Heckman highlight an issue that anybody building fiber on utility poles should be aware of. A recent article on their website notes that in some cases, an easement obtained for using private land to bring electric service might not automatically allow an easement for bringing fiber. more

What Is Email Appending and Why Is It Bad?

MAAWG recently released a document on email appending, criticizing the practice and describing it as abusive. But what is email appending? ... This definition is alright but I didn't find it as helpful as it could be. I looked it up on some other sites and I have a better description. more

IPv4 Prices: Supply and Demand in 2023

In early 2022 the discount that had been available for large blocks of IPv4 addresses disappeared. For the first time in years, /16 blocks and larger began to sell at an increasing premium. By Q2-2023, small and medium-sized blocks sold for a 30-35% discount to larger ones. At the same time, the tighter range of prices that had persisted for nearly a decade fractured and blocks traded in wide ranges throughout 2022 and the first half of 2023. more

Logjam, Openssl and Email Deliverability

RHEL6/Centos6 (and presumably RHEL7/Centos7) machines with the latest openssl packages now refuse SSL connections with DH keys shorter than 768 bits. Consider RHEL6 sendmail operating as a client, sending mail out to a target server. If the target server advertises STARTTLS, sendmail will try to negotiate a secure connection. This negotiation uses openssl, which will now refuse to connect to mail servers that have 512 bit DH keys. The maillog will contain entries with "reject=403 4.7.0 TLS handshake failed". more

ICANN Regime Change:  Exit Twomey, Enter Beckstrom

On July 1st 2009, Rod Beckstrom succeeded Paul Twomey as the fourth CEO of the Internet Corporation for Assigned Names and Numbers (ICANN). Rod assumes this important leadership role at a critical juncture in ICANN's ongoing evolution. Saying that he is jumping into the deep end of a pool would not do justice to the magnitude of the tasks before him. The more appropriate analogy might be parachuting from a plane above the Mariana Trench during a typhoon. However, after reading some of his writings, reviewing his biography, and having met with him one-on-one during ICANN's recent Sydney meeting, I am confident that the ICANN Board made the right decision in selecting Rod to lead the organization at this defining moment in Internet governance. more

DNSSEC Taking Center Stage at 2010 Black Hat

On July 28th DNSSEC took center stage at the 2010 Black Hat Conference in Las Vegas. Two years ago, at the same conference, Dan Kaminsky unveiled the infamous DNS bug that many believe became a major catalyst for DNSSEC implementation. To kick things off, Jeff Moss -- founder of Black Hat -- in his opening speech called out the fact that "we have not solved any fundamental problems" and noted that the technical community must catch up. more

Has President Macron Thrown Multistakeholderism Under the Bus at UN IGF 2018 Paris?

Today, President Macron threw down the gauntlet to President Trump and the US administration on Multistakeholderism. In his welcome address to IGF 2018 Paris a few hours ago, President Macron challenged IGF to become more relevant by reinventing itself in factoring in multilateralism into IGF's non-decision-making body and to move beyond the mere talk-ship lip service it has been for the last 13 years. more

ICANN Board Member and Former GAC Chair to Give Evidence in .Africa Case

The controversy over the competing .africa TLD applications has been going on for some time. A recent decision by the International Centre For Dispute Resolution (ICDR) said that ICANN had breached its own by-laws and has questioned why ICANN won't allow a current board member and the former GAC Chair to speak to them and provide evidence. A letter that was published on the ICANN site yesterday suggests that ICANN may have changed their tune... more

ICANN Clarifying Questions - Question 50 Focus (Part 3 of 3)

If the timeline for turn-around of clarifying questions (CQs) remains two-weeks, the long pole in your CQ tent is likely to be revising your Q50 letter of credit or escrow agreement to meet the ICANN requirements. Based upon ICANN comments, it appears that many applicants are having trouble meeting the specific letter of credit (LOC) or escrow agreement language. To remedy this ICANN should consider publishing what it considers acceptable language for an LOC or escrow agreement. more

Help Recognize Internet Pioneers and Heroes – Nominations Open for 2021 Internet Hall of Fame

Do you know someone who deserves recognition for launching the Internet in their region or country? Or someone who made some major technical innovation that made the Internet faster or better? Or someone who is a passionate advocate who influenced other people to make the Internet better? Can you think of someone who helped the Internet reach new people? For example, in a new region or language? Do you know someone who made the Internet more inclusive and accessible to more people? more

If Compliance Were an Olympic Sport

It probably won't raise any eyebrows to know that for practically every penetration tester, security researcher, or would-be hacker I know, nothing is more likely to make their eyes glaze over and send them to sleep faster than a discussion on Governance, Risk, and Compliance (i.e. GRC); yet the dreaded "C-word" (Compliance) is a core tenet of modern enterprise security practice. more

Round Two of New gTLDs: No Crap

So you're still lost, wondering where to start and what to do to submit your application in the next round of new top-level domain application? Well, you can attend webinars and listen to service providers telling you what you have to do with them "to be prepared"... but please... pay no one for this. Here is why. There are two things to know and one thing to do first. more

geoTLDs - Small but Perfectly Formed?

I always geek out a little when I see something ICANN-related breaking out into the real world, like when the bus-stop display has borked, and its LAN is vainly searching for an IP number so it can reboot. Or the ICANN Paris meeting back in 2008 when the board gave the thumbs up to the GNSO policy to launch new gTLDs. One day we were an obscure Californian organisation doing something technical-seeming most people had never heard of, and the next we were working two phones each, giving journalists quotes and information for dozens of front-page news stories around the world. more