[80384] in North American Network Operators' Group
Re: Schneier: ISPs should bear security burden
daemon@ATHENA.MIT.EDU (Barry Shein)
Fri Apr 29 16:10:59 2005
From: Barry Shein <bzs@world.std.com>
Date: Fri, 29 Apr 2005 16:09:24 -0400
To: NANOG list <nanog@merit.edu>
In-Reply-To: <Pine.CYG.4.58.0504280903580.3260@citabria>
Errors-To: owner-nanog@merit.edu
On April 28, 2005 at 09:09 adil@adis.on.ca (Adi Linden) wrote:
> > Its not up to the ISP to determine outbound malicious traffic, but its up
> > to the ISP to respond in a timely manner to complaints. Many (most?) do not.
>
> If they did their support costs would explode. It is block the customer,
> educate the customer why they were blocked, exterminate the customers PC,
> unblock the customer. No doubt there'll be a repeat of the same in short
> time.
This mantra is often repeated but their costs are going to explode
anyhow as the defensive blocking of them goes on, world-wide, and
their customers want to know why they can no longer send email or
browse in random, and ever-growing, chunks of IP space (and,
frustrated, find new providers.)
Only that situation is going to be much more expensive to fix since
it's others' IP space they'll need to get policy changes in, not their
own.
-Barry Shein
Software Tool & Die | bzs@TheWorld.com | http://www.TheWorld.com
Purveyors to the Trade | Voice: 617-739-0202 | Login: 617-739-WRLD
The World | Public Access Internet | Since 1989 *oo*
