[88916] in North American Network Operators' Group
Re: Quarantine your infected users spreading malware
daemon@ATHENA.MIT.EDU (Gadi Evron)
Thu Feb 23 14:11:26 2006
Date: Thu, 23 Feb 2006 21:09:26 +0200
From: Gadi Evron <ge@linuxbox.org>
To: Michael Loftis <mloftis@wgops.com>
Cc: nanog@merit.edu
In-Reply-To: <C0CAC90CB36185E5C5D86C20@ZOP-G4>
Errors-To: owner-nanog@merit.edu
Michael Loftis wrote:
> What doesn't help is the ISPs out there who are complete dolts and first
> don't verify reports and second false alarm. They'll cut a user off on
> a single complaint without any evidence or verification. Or worse they
> have some automated system that false alarms without any way to verify
> you're cleaned up. And if you can't get online you can't get cleaned up
> anyway. Catch 22.
I don't really see how any ISP will terminate an account for just one
complaint, after all, it's losing money..
We have seen a few good examples of pretty big ISP's who said here how
quarantine works for them.
Got an example on how ISP's are kicking users out?
