Re: Best practices on logical separation of abuse@ vs dmca@ role inboxes

[Rich Kulawiec <rsk () gsp org>]

On Fri, Aug 03, 2018 at 10:04:17PM -0700, Eric Kuhnke wrote:
> If you were setting up something new from a clean sheet of paper design -
> do you consider it appropriate to have an abuse role inbox that's dedicated
> to actual network abuse issues (security problems, DDoS, IP hijacks,
> misbehavior of downstream customers, etc), and keep that separate from DMCA
> notifications?

Separate, because you'll need to design/implement different defenses for
them.  For example: abuse@ *must* accept traffic with attached malware,
since victims of abuse may forward messages containing said malware.
But dmca@ doesn't need to and shouldn't.

---rsk