[Dshield] Possible solution for ISP (was DShield's public goals)

Valdis.Kletnieks@vt.edu Valdis.Kletnieks at vt.edu
Wed Jan 11 21:29:26 GMT 2006


On Mon, 09 Jan 2006 12:19:54 CST, Laura Vance said:

> 4a) user fixes problem and submits to a test by whoever (could be a 
> company that does this for profit and charges the end user, not the 
> ISP... Best Buy, Comp USA, new companies, etc.), and whoever tested the 
> system sends notification to the ISP.   All is well in the land.
> 4b) user ignores email, ISP adds their name to the database and 
> terminates their connection.

A non-starter.  You come home from vacation to find your machine was hacked.

*AND* that you can't get on the net to download the patch.

If the user is cut off, how *exactly* does he fix the problem?

> 4b2) or: They go to an ISP that does not participate in the database, 
> but all of the ISPs that do participate block all access from ISPs that 
> do not participate, so they have no access to anything on the Internet 
> anyway.

Getting the participating ISPs to *cut off* connections with non-participating
ones is not going to fly.  NetZero won't cut off EarthLink, no matter how bad
it is, because NetZero doesn't want their phone to ring off the hook about why
their users can't get to EarthLink anymore.  If the phone rings, it costs them
money.  It costs them even *more* money if they become ex-NetZero users.

Go back to early October, and see what happened when Level3 (AS3356) tried
to depeer XO (AS 2828).
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://www.dshield.org/pipermail/list/attachments/20060111/c4f0cc68/attachment.bin


More information about the list mailing list