[95025] in North American Network Operators' Group
Re: botnets: web servers, end-systems and Vint Cerf
daemon@ATHENA.MIT.EDU (Gadi Evron)
Sat Feb 17 20:57:50 2007
Date: Sat, 17 Feb 2007 19:46:42 -0600 (CST)
From: Gadi Evron <ge@linuxbox.org>
To: Sean Donelan <sean@donelan.com>
Cc: nanog@merit.edu
In-Reply-To: <Pine.GSO.4.64.0702172033200.21735@clifden.donelan.com>
Errors-To: owner-nanog@merit.edu
On Sat, 17 Feb 2007, Sean Donelan wrote:
> On Sat, 17 Feb 2007, Gadi Evron wrote:
> > Yes, but that is because the successful ISPs currently often implement
> > their own if they have the resources and R&D power. The really big ones
> > have it automated, the small ones have it limited to be "activated by an
> > abuse desk person".
>
> And I also know "many" ISPs that developed home-grown systems and had to
> abandoned them due to various problems.
>
> Until you understand the differences and why various attempts haven't
> worked, you are doomed to repeat the same mistakes; and unlikely to
> be successfull beyond a few limited environments.
Agreed. Do you have any of these lessons you can share?
> Is there a significant difference between the "many" ISPs implementing
> walled gardens and other ISPs as far as infection rates?
>
Yes.
