North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: YAY! Re: Atrivo/Intercage: NO Upstream depeer

  • From: Russell Mitchell
  • Date: Wed Sep 24 00:06:03 2008

Apologies, Yahoo was set to "Rich Text" :(

-----

Hello All,

It seems you all missed the memo.As of about 11PM PST
Last night 09/22/08, Esthost has been ENTIRELY Shutdown. 
They no longer have ANY Machine on my network.

I'm currently starting to monitor some of the public media, such as google, DroneBL, as well as several Anti-Malware community websites for abuse.
Being that Esthost is now entirely GONE, we should not have any further issues.
In the case that something does arise, such as an exploited host, we're currently developing a game plan for response to the issues. 

To make the best effort towards combatting abuse on our network, here's what I have planned so far for ANY Type of abuse:
Step 1, Suspend Power to the affected machine.
Step 2, Call/Email the client whom the affected machine is leased to.
Step 3, Allow the client the option to investigate the machine further (Nullroute access via KVM)=
Step 4, Verify the reported content, domain, user, or exploit is patched/eliminated from the machine.
Step 5, Remove the Nullroute. Allow the machine to return to the network. 

Any comments? This is the result of a zero tolerance policy regarding abuse.

If it's clear that the server owner is the cause of the abusive material etc, the client will then be immediately cancelled. No questions. 
It seems that this approach will be the best supported by the anti-abuse communities, so please let me know your input.

Thank you for your time. Have a great day.

---
Russell Mitchell
InterCage, Inc.