[98023] in North American Network Operators' Group
Re: How should ISPs notify customers about Bots (Was Re: DNS Hijacking
daemon@ATHENA.MIT.EDU (Sean Donelan)
Mon Jul 23 17:35:07 2007
Date: Mon, 23 Jul 2007 16:31:19 -0400 (EDT)
From: Sean Donelan <sean@donelan.com>
To: Joe Greco <jgreco@ns.sol.net>
cc: nanog@merit.edu
In-Reply-To: <200707232015.l6NKFoeu066929@aurora.sol.net>
Errors-To: owner-nanog@merit.edu
On Mon, 23 Jul 2007, Joe Greco wrote:
>> Although this seems to be the first bit mistake in over two years, does
>> that make the practice unacceptable as another tool to respond to Bots?
>
> The practice of blocking public EFnet servers?
As I've said multiple times, sometimes mistakes happen and the wrong
things end up on a list. I doubt that was the intent.
Many people have suggested blocking C&C servers used by bots over the
years.
> Yes, when there are better solutions to the problem at hand.
Please enlighten me.
