Schneier: ISPs should bear security burden

• Previous message (by thread): Schneier: ISPs should bear security burden
• Next message (by thread): Schneier: ISPs should bear security burden
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[In the message entitled "Re: Schneier: ISPs should bear security burden" on Apr 28, 10:20, "Steve Sobol" writes:]
> There are some basic rules of thumb you can use. The problem is that they're
> not guaranteed to work. The best solution was created years ago (Gordon
> Fecyk's DUL, which lists IP ranges the ISPs specifically register as
> dynamic/not supposed to host servers) and eventually came under the purview of
> Kelkea/MAPS, but there wasn't a ton of ISP buy-in. If we could create a
> similar list and actually get ISPs to register the appropriate netblocks (and
> not mix in IPs where servers are allowed, and IPs where they aren't, in the
> same block), that'd be great.

Dunno what a ton of ISP buy-in is, but the MAPS DUL now contains about
190,000,000 entries.  We've been working on it very hard for the last year or
two.  Most ISP-level subscribers figure it stops a pretty large percentage of
the compromised-home-computer spam.

-- 

• Previous message (by thread): Schneier: ISPs should bear security burden
• Next message (by thread): Schneier: ISPs should bear security burden
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]