How should ISPs notify customers about Bots (Was Re: DNS Hijacking
Sean Donelan
sean at donelan.com
Tue Jul 24 17:41:48 UTC 2007
On Tue, 24 Jul 2007, Joe Greco wrote:
> So I'm supposed to invent a solution that does WAY MORE than what Cox
> was trying to accomplish, and then you'll listen? Forget that (or
> pay me).
Since it was a false positive, isn't the correct answer to not include
irc.vel.net in the Bot C&C list rather than trying to come up with more
convoluted solutions?
Is it that much different than when a group makes a mistake implementing a
USENET Death Penalty, SPAMHAUS DROP list, Bogon lists, Walled Gardens,
even BCP38++, etc? Anytime you expect ISPs to do more than forward
packets (and right or wrong some vocal groups and politicians think ISPs
should do even more to stop network abuse), there is always a chance
someone or something will make a mistake.
More information about the NANOG
mailing list