About this blog…

I am employed by Netnod as head of engineering, research and development and am among other things chair of the Security and Stability Advisory Committee at ICANN. You can find CV and photos of me at this page.

As I wear so many hats, I find it being necessary to somewhere express my personal view on things. This is the location where that happens. Postings on this blog, or at Facebook, Twitter etc, falls under this policy.

The views expressed on this post are mine and do not necessarily reflect the views of Netnod or any other of the organisations I have connections to.

SSAC report #25 on Fast Flux

SSAC has released a report on Fast Flux that might be interesting to read for people that are trying to make it easier to find bad guys on the net. Fast flux implies rapid modification of IP addresses associated with a system that hosts a malicious activity, or hosts a domain name that is used for such activities. All to try to make it harder to find and close the services in question.

The report ends with the following:


Fast flux hosting is a serious and mounting problem that affects name services in all GTLDs. SSAC encourages ICANN, registries and registrars to consider the practices mentioned in this Advisory, to establish best practices to mitigate fast flux hosting, and to consider incorporating such practices in future accreditation agreements.