[59466] in North American Network Operators' Group
User security or ISP security (was RE: has anyone notice this ?)
daemon@ATHENA.MIT.EDU (Sean Donelan)
Mon Jun 30 03:51:14 2003
Date: Mon, 30 Jun 2003 03:50:41 -0400 (EDT)
From: Sean Donelan <sean@donelan.com>
To: nanog@merit.edu
In-Reply-To: <Pine.LNX.4.51.0306291653320.2133@htf.fo.jrfg.arg>
Errors-To: owner-nanog-outgoing@merit.edu
On Sun, 29 Jun 2003, Jay Hennigan wrote:
> The rogue proxy servers are apparently a man-in-the-middle password sniffer
> of some type affecting at a minimum HTTP and SSH.
>
> http://ask.slashdot.org/article.pl?sid=03/06/19/2325235&mode=thread&tid=126
I'm not going to defend ISP security practices. However as the slashdot
thread showed, as bad as people think ISP security is, most of the time
the problem is not with the ISP.
It appears nothing was wrong with Charter's systems. The user's machine
was infected by a spybot hijacking the user's name queries.
