North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: How should ISPs notify customers about Bots (Was Re: DNS Hijacking

  • From: Joe Greco
  • Date: Mon Jul 23 18:48:32 2007

> On Mon, 23 Jul 2007, Joe Greco wrote:
> >> Please enlighten me.
> >
> > Intercept and inspect IRC packets.  If they join a botnet channel, turn on
> > a flag in the user's account.  Place them in a garden (no IRC, no nothing,
> > except McAfee or your favorite AV/patch set).
> Wow, you are recommending ISPs wiretap their subscribers.
> I suspect some privacy advocates will be upset with ISPs doing that.

"Some privacy advocates" will be upset with ISP's doing what Cox is doing.
Maybe you missed that.  If we assume that it is okay for Cox to actually
intercept the IRC sessions of their users, we're wayyyy far into that
mess anyways.  I'm saying "do it right" if you're going to do it at all.

Personally, I'd prefer that they didn't do it, but that set of solutions
is more complex.

... JG
Joe Greco - Network Services - Milwaukee, WI -
"We call it the 'one bite at the apple' rule. Give me one chance [and] then I
won't contact you again." - Direct Marketing Ass'n position on e-mail spam(CNN)
With 24 million small businesses in the US alone, that's way too many apples.