[97983] in North American Network Operators' Group
How should ISPs notify customers about Bots (Was Re: DNS Hijacking
daemon@ATHENA.MIT.EDU (Sean Donelan)
Mon Jul 23 10:45:42 2007
Date: Mon, 23 Jul 2007 10:43:14 -0400 (EDT)
From: Sean Donelan <sean@donelan.com>
To: nanog@merit.edu
In-Reply-To: <200707230427.l6N4R02r065380@aurora.sol.net>
Errors-To: owner-nanog@merit.edu
On Sun, 22 Jul 2007, Joe Greco wrote:
> We can break a lot of things in the name of "saving the Internet." That
> does not make it wise to do so.
Since the last time the subject of ISPs taking action and doing something
about Bots, a lot of people came up with many ideas involving the ISP
answering DNS queries with the addresses of ISP cleaning servers.
Just about every commercial WiFi hotspot and hotel login system uses a
fake DNS server to redirect users to its login pages. Many universities
use a fake DNS server to redirect student computers to cleaning sites.
What should be the official IETF recognized method for network operators
to asynchronously communicate with users/hosts connect to the network for
various reasons getting those machines cleaned up?
As far as I know, PPPOE is the only network access protocol that includes
the feature of redirecting a host to a network operator's system; but
Microsoft has decided not to implement it.
