[89046] in North American Network Operators' Group
Re: Quarantine your infected users spreading malware
daemon@ATHENA.MIT.EDU (Jack Bates)
Wed Mar 1 12:43:20 2006
Date: Wed, 01 Mar 2006 11:42:01 -0600
From: Jack Bates <jbates@brightok.net>
To: "Christopher L. Morrow" <christopher.morrow@verizonbusiness.com>
Cc: nanog@merit.edu
In-Reply-To: <Pine.GSO.4.58.0603011628531.9741@marvin.argfrp.us.uu.net>
Errors-To: owner-nanog@merit.edu
Christopher L. Morrow wrote:
<snip>
> agreed, punting this problem to the helpdesk makes the helpdesk manager
> grab his gun(s) and find the security wonk that put a hurtin' on his
> numbers :) Also, it costs lots of money, which isn't generally a good
> plan.
Do you find that web redirection actually stems the flow of calls to the
helpdesk? We find that anything out of the normal usually results in a
customer calling the helpdesk just because they weren't expecting it. We
found this to be true of email notifications as well. The other issue
is, of course, differing what we are doing with those thousands of
annoying ads that make users believe they are infected.
-Jack
