[97984] in North American Network Operators' Group
Re: DNS Hijacking by Cox
daemon@ATHENA.MIT.EDU (Sean Donelan)
Mon Jul 23 10:59:20 2007
Date: Mon, 23 Jul 2007 10:47:30 -0400 (EDT)
From: Sean Donelan <sean@donelan.com>
To: Perry Lorier <perry@coders.net>
cc: NANOG list <nanog@nanog.org>
In-Reply-To: <46A4AD61.6090607@coders.net>
Errors-To: owner-nanog@merit.edu
On Tue, 24 Jul 2007, Perry Lorier wrote:
> doing it[1]. If you're interested in finding people that Undernet detects as
> being open proxies or such like, put an IDS rule looking for ":[^ ]* 465 [^
> ]* :AUTO ".
Of course, then someone would flame the ISP for running a sniffer/wiretap
on their network.
ISPs are pretty much damned no matter what they do or don't do.
