How should ISPs notify customers about Bots (Was Re: DNS Hijacking

• Previous message (by thread): How should ISPs notify customers about Bots (Was Re: DNS Hijacking
• Next message (by thread): How should ISPs notify customers about Bots (Was Re: DNS Hijacking
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 23 Jul 2007 12:42:22 EDT, Sean Donelan said:

>    b. terminate tens of thousands of user accounts (of users who are mostly 
> "innocent" except their computer was compromised)

Given how often compromised computers have *multiple* installs of badware on
them, just cleaning off *one* bot that happens to be old enough to respond to
their cleaning script is not magically making their system actually safe.
There's probably *other* stuff on the box as well.

So just waving a mostly-ineffective magic wand at *part* of the problem isn't
doing anybody any favors.  Maybe you *should* be doing something drastic enough
to make the user sit up and take notice and *do* something...

(Disclaimer - I can get away with doing that, as "user bails for another
provider and takes his revenue with them instead of fixing the problem" isn't
an issue for my revenue stream. YMMV. :)

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20070723/e05f91f4/attachment.sig>

• Previous message (by thread): How should ISPs notify customers about Bots (Was Re: DNS Hijacking
• Next message (by thread): How should ISPs notify customers about Bots (Was Re: DNS Hijacking
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]