Operation Ghost Click

A. Pishdadi apishdadi at gmail.com
Fri Apr 27 23:33:52 CDT 2012

On Fri, Apr 27, 2012 at 10:55 PM, <Valdis.Kletnieks at vt.edu> wrote:

> On Fri, 27 Apr 2012 21:39:20 -0500, you said:
> 3) Many times, there are multiple customer computers behind a NAT.  Do you
> really want the hassle of an irate user calling in because you just broke
> the
> dad's VPN to work, because one of their kids has some cruft on their
> computer?
> (And no, don't try to tell them they should have bought business class
> service
> or similar crap, that *will* lose you a customer).
> The malware isn't infecting the end-uses router therefore if there is
multiple users behind that NAT'd router as long as there not infected they
won't be shut off when those DNS servers go dark.

And if daddy is dumb enough to let his 8 year old son use his PC or laptop
w/o proper monitoring and gets infected thats his fault. I know I dont let
my 10 year old use my work computers , and he knows how to code , but he is
still a child and clicks stupid things.

Your basically telling me the ISPs should not take any responsibility, well
then how can we get pissed off when a host lets a spammer spam for a week
straight and is aware and doesn't shut them off, or notices a DDOS attack
is stemming from there network, a customer has 5-6 servers he pays for with
unmetered gigabit ports and is clearly blasting someone to hell and back
with spoofed packets , but because there margins are so thin they shouldn't
turn him off and cancel him so they do not have to cut into there

In the network world your either on the content side or the eyeball side,
and the eyeball networks seem to have double standards when it comes to
network abuse. Until this ends and the double standards stop the amount of
malware and attacks will never go decrease.

I say to your 'it costs the isp money' to do cleanup, that it costs content
providers money to do cleanup of constantly being scanned and probed and
hacked by what is mostly hacked end-user machines who got owned browsing
the internet because they went to a website that had a virus installed by
another end-users machine who was compromised the same way, its a vicious
circle and as an operator of a content provider im tired of the other half
of the internet not taking there share of the responsibility.

/End of rant..

More information about the NANOG mailing list