nanog mailing list archives

Re: Operation Ghost Click

From: "A. Pishdadi" <apishdadi () gmail com>
Date: Fri, 27 Apr 2012 23:33:52 -0500

On Fri, Apr 27, 2012 at 10:55 PM, <Valdis.Kletnieks () vt edu> wrote:

On Fri, 27 Apr 2012 21:39:20 -0500, you said:


3) Many times, there are multiple customer computers behind a NAT.  Do you
really want the hassle of an irate user calling in because you just broke
the
dad's VPN to work, because one of their kids has some cruft on their
computer?
(And no, don't try to tell them they should have bought business class
service
or similar crap, that *will* lose you a customer).


The malware isn't infecting the end-uses router therefore if there is

multiple users behind that NAT'd router as long as there not infected they
won't be shut off when those DNS servers go dark.

And if daddy is dumb enough to let his 8 year old son use his PC or laptop
w/o proper monitoring and gets infected thats his fault. I know I dont let
my 10 year old use my work computers , and he knows how to code , but he is
still a child and clicks stupid things.

Your basically telling me the ISPs should not take any responsibility, well
then how can we get pissed off when a host lets a spammer spam for a week
straight and is aware and doesn't shut them off, or notices a DDOS attack
is stemming from there network, a customer has 5-6 servers he pays for with
unmetered gigabit ports and is clearly blasting someone to hell and back
with spoofed packets , but because there margins are so thin they shouldn't
turn him off and cancel him so they do not have to cut into there
'margins'...

In the network world your either on the content side or the eyeball side,
and the eyeball networks seem to have double standards when it comes to
network abuse. Until this ends and the double standards stop the amount of
malware and attacks will never go decrease.

I say to your 'it costs the isp money' to do cleanup, that it costs content
providers money to do cleanup of constantly being scanned and probed and
hacked by what is mostly hacked end-user machines who got owned browsing
the internet because they went to a website that had a virus installed by
another end-users machine who was compromised the same way, its a vicious
circle and as an operator of a content provider im tired of the other half
of the internet not taking there share of the responsibility.

/End of rant..

Current thread:

Re: Operation Ghost Click, (continued)
- - Re: Operation Ghost Click Paul Graydon (Apr 26)
    - RE: Operation Ghost Click Frank Bulk (Apr 26)
  - Re: Operation Ghost Click Jeff Kell (Apr 26)
    - RE: Operation Ghost Click O'Reirdan, Michael (Apr 27)
    - Re: Operation Ghost Click Jeroen van Aart (Apr 27)
    - Re: Operation Ghost Click Ameen Pishdadi (Apr 27)
    - Re: Operation Ghost Click ryanL (Apr 27)
    - Re: Operation Ghost Click Ameen Pishdadi (Apr 27)
    - Re: Operation Ghost Click Valdis . Kletnieks (Apr 27)
    - Message not available
    - Message not available
    - Re: Operation Ghost Click A. Pishdadi (Apr 27)
    - Message not available
    - Message not available
    - Re: Operation Ghost Click A. Pishdadi (Apr 27)
    - Re: Operation Ghost Click Florian Weimer (Apr 28)
    - Re: Operation Ghost Click Rich Kulawiec (Apr 28)