[98145] in North American Network Operators' Group
Re: DNS Hijacking by Cox
daemon@ATHENA.MIT.EDU (Mattias Ahnberg)
Wed Jul 25 08:14:02 2007
Date: Wed, 25 Jul 2007 13:20:52 +0200
From: Mattias Ahnberg <mattias@ahnberg.pp.se>
To: peter@peter-dambier.de
CC: NANOG <nanog@merit.edu>
In-Reply-To: <46A66B5A.70407@peter-dambier.de>
Errors-To: owner-nanog@merit.edu
Peter Dambier wrote:
> The problem is, you dont know what is behind that probably NATted ip
> address. Probably you have 3 unix machines running smtp and uucp
> and a single infected windows box and maybe some VoIPs and ...
This is why I spoke of merely intercepting web traffic to inform,
to not interrupt other services that may use the same link. I am
in the same situation myself, sharing lots of stuff via the same
fiber to my house. I even have TV through it.
So I actually thought of that.
And an ISP probably knows a bit more about their customer base
than what we do, so this idea would ofcourse have to adapt to
that. But as said, its a complicated matter and probably not a
good idea either way before we know who is supposed to do what
and for whom.
--
/ahnberg.
