Why won't providers source-filter attacks? Simple.

Mark Andrews marka at isc.org
Tue Feb 4 22:00:39 UTC 2014


In message <977303.7242.1391542533531.JavaMail.root at benjamin.baylink.com>, Jay 
Ashworth writes:
> ----- Original Message -----
> > From: "Paul Ferguson" <fergdawgster at mykolab.com>
> 
> > > (And yes, I know that in the first case, it urges the customer to
> > > cough up the bucks, and in the second case, it's usually not a
> > > revenue generator)
> > 
> > It's a dichotomy that is... unexplainable for me personally.
> 
> Nope: it's easy to explain; you merely have to be a cynical bastard:
> 
> Attack traffic takes up bandwidth.
> 
> Providers sell bandwidth.
> 
> It *is in their commercial best interest (read: maximizing shareholder
> value) *NOT* to filter out DOS, DDOS, and spam traffic until their hand is 
> forced -- it's actually their fiduciary duty not to.

Then the need to be made criminally liable for the damage that it causes.
Yes, the directors of these companies need to serve gaol time.

> *THIS* is the problem we have to fix.
> 
> Cheers,
> -- jra
> -- 
> Jay R. Ashworth                  Baylink                       jra at baylink.co
> m
> Designer                     The Things I Think                       RFC 210
> 0
> Ashworth & Associates       http://www.bcp38.info          2000 Land Rover DI
> I
> St Petersburg FL USA      BCP38: Ask For It By Name!           +1 727 647 127
> 4
> 
-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: marka at isc.org



More information about the NANOG mailing list