North American Network Operators Group|
Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical
and here are some answers [was: Quarantine your infected users spreadingmalware]
Edward W. Ray wrote:
That is why we have hundreds of millions of bots in the wild.IMHO, a user should have to demonstrate a minimum amount of expertise and have a up-to-date AV, anti-spyware and firewall solution for their PCs.
The mostly-user ISP's will have to eventually do something or end up being either regulated, spending more and more and more on tech support and/OR abuse personnel, or written down as blackhat AS's.
Some PRODUCTS, PRO and AGAINST links from people on quarantining of infected users, thanks to all those who shared so far!
Products so far (haven't tried or verified them myself):
Eric Gauthier's Ethernet-oriented quarantine system (from NANOG in 2003): http://www.nanog.org/mtg-0402/gauthier.html
Other choice papers from Jose's blog: