[72880] in North American Network Operators' Group
Re: Convention networks and viruses
daemon@ATHENA.MIT.EDU (Petri Helenius)
Thu Jul 29 15:06:09 2004
Date: Thu, 29 Jul 2004 22:05:04 +0300
From: Petri Helenius <pete@he.iki.fi>
To: Sean Donelan <sean@donelan.com>
Cc: nanog@merit.edu
In-Reply-To: <Pine.GSO.4.58.0407290306300.27954@clifden.donelan.com>
Errors-To: owner-nanog-outgoing@merit.edu
Sean Donelan wrote:
>As NANOG has experienced during the last several meetings, in any network
>used by a large number of people, there will be a certain percentage of
>people which bring infected computers into the network.
>
>
>
And it would be stupid not to be prepared for it. For wired networks,
it's fairly straightforward, unfortunately many WLAN AP's require
reboots to change access lists to kick parties out. The cycle from
measurement and detection to removal can be automated and be very swift.
We would be happy to assist clueful or less skilled parties in the
processes. Level of automata should be tuned based on application, for
example in conventions the guilty party is within reach while in large
consumer networks incident-by-incident manual intervention is usually
not an option.
Pete
>http://www.nytimes.com/2004/07/29/technology/circuits/29bost.html?pagewanted=3
>Wiring a Convention, Version 2004
>By SETH SCHIESEL
>Published: July 29, 2004
>[...]
> But data services have not been as solid. Many news organizations
> suffered intermittent breakdowns in Internet service, and on Tuesday
> evening the main press pavilion was offline for about 90 minutes. A
> spokesman for Verizon said the company deliberately caused the
> interruption as part of an effort to root out a more deep-seated
> network problem, which the company said appeared to have been caused by
> a virus carried by network devices provided by news organizations. In
> the interim, a handful of data lines provided by other companies,
> including AT&T, served as a backup.
>
>