[101559] in North American Network Operators' Group
Re: Q: What do ISPs really think about security issues?
daemon@ATHENA.MIT.EDU (Paul Ferguson)
Thu Jan 10 21:24:47 2008
From: "Paul Ferguson" <fergdawg@netzero.net>
Date: Fri, 11 Jan 2008 02:20:46 GMT
To: ops.lists@gmail.com
Cc: robt@cymru.com, nanog@nanog.org
Errors-To: owner-nanog@merit.edu
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- -- "Suresh Ramasubramanian" <ops.lists@gmail.com> wrote:
>On Jan 11, 2008 1:17 AM, Rob Thomas <robt@cymru.com> wrote:
>
>> I'll second this point. We've had great luck working with providers
>> globally, but only after folks (such as Sean) took us under their
>> wing and mentored us on the processes and setups that best help
>> ISPs. That alone would make a great *NOG presentation.
>
>Setups that best help *ISPs*? The fun part is that there's this
>fundamental disconnect even within ISPs .. their CERT guys or security
>guys go talk to each other, their abuse desks go talk to each other,
>their packet pushers go talk to each other .. at
>nspsec/gadicon/whatever, at MAAWG, at *NOG ..
>
>There's little or no cross pollination between these groups, if at
>all. It is this kind of gap that needs to be bridged, just as much
>as the gaps between ISPs and LE, ISPs and the anti phishing community
>(banks etc, + the takedown vendor crowd), ISPs and the security
>community etc etc needs bridging.
Thanks, Suresh.
I think you hit the nail on the head with regards to some of the
frustrations being experienced in this area.
- - ferg
-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.6.3 (Build 3017)
wj8DBQFHhtJ/q1pz9mNUZTMRAlChAJ9fDiHIMse7DZ5qovd8HuDdST1bFACgiVxG
tSx+KeSbzqoAOueRzX4JCNQ=3D
=3DQvO0
-----END PGP SIGNATURE-----
--
"Fergie", a.k.a. Paul Ferguson
Engineering Architecture for the Internet
fergdawg(at)netzero.net
ferg's tech blog: http://fergdawg.blogspot.com/
