Security Incidents mailing list archives
RE: Nimda et.al. versus ISP responsibility
From: ahoward () noerrors com
Date: Thu, 27 Sep 2001 17:10:50 -0400
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 MMorell () vdat com wrote:
Now, the question posed is, Should the ISP's be responsible for policing hosts on their networks. The answer is clearly No. This goes against everything the net stands for.
I think there is a mid-ground wherein all ISPs are responsible for both ingress and egress filtering of all traffic on their network to ensure it is valid traffic (e.g.., making sure that customer A cannot inject traffic into the network with a source IP that doesn't belong to them...nearly eliminating spoofing) but stopping short of scanning payloads of packets. Additionally, ISPs should allow customers to choose filtered connections if they wish. Customers should be able to work with ISPs to create traffic shaping rules as to what is and is not OK on the pipe they are paying for. Of course, individuals should be responsible for their own servers but if they are not, ISPs should be allowed to bill them for the extra bandwidth they're wasting and labor they're causing the ISP to expend to deal with their negligence.
If they refuse to do anything about it or to reply back and I still see activity. I will either block that host or subnet if necessary.
But if you block it at your edge router, it still wastes the bandwidth coming to you from your ISP. You should not have to pay for viruses that waste your bandwidth. An ISP should honor requests of its customers to insert egress filters into their edge routers so your router will never see the traffic. = Aaron P. Howard CCNA, RHCE, CNE, MCSE -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (MingW32) - WinPT 0.4.0 Comment: For info see http://www.gnupg.org iD8DBQE7s5aTNntqA0cOAPwRAsCTAJ9QDvXe6ySva5PPReckIUp8R6x5IQCcDxA+ E96hzUt/vSIUHwCRH/azBIE= =aTib -----END PGP SIGNATURE----- ---------------------------------------------------------------------------- This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com
Current thread:
- RE: Nimda et.al. versus ISP responsibility, (continued)
- RE: Nimda et.al. versus ISP responsibility Adcock, Matt (Sep 27)
- RE: Nimda et.al. versus ISP responsibility Tracy Martin (Sep 27)
- RE: Nimda et.al. versus ISP responsibility Homer Wilson Smith (Sep 27)
- RE: Nimda et.al. versus ISP responsibility Tracy Martin (Sep 27)
- Re: Nimda et.al. versus ISP responsibility Neil Dickey (Sep 27)
- RE: Nimda et.al. versus ISP responsibility Michael B. Morell (Sep 27)
- RE: Nimda et.al. versus ISP responsibility Dave Salovesh (Sep 27)
- RE: Nimda et.al. versus ISP responsibility UMusBKidN (Sep 27)
- Re: Nimda et.al. versus ISP responsibility robertm (Sep 27)
- RE: Nimda et.al. versus ISP responsibility Jason Robertson (Sep 27)
- RE: Nimda et.al. versus ISP responsibility Mogull,Rich (Sep 27)
- RE: Nimda et.al. versus ISP responsibility ahoward (Sep 27)
- RE: Nimda et.al. versus ISP responsibility Greg A. Woods (Sep 27)
- RE: Nimda et.al. versus ISP responsibility Jay D. Dyson (Sep 27)
- RE: Nimda et.al. versus ISP responsibility Greg A. Woods (Sep 27)
- RE: Nimda et.al. versus ISP responsibility Stephen Villano (Sep 27)
- RE: Nimda et.al. versus ISP responsibility Chad Mawson (Sep 27)
- RE: Nimda et.al. versus ISP responsibility UMusBKidN (Sep 27)
- RE: Nimda et.al. versus ISP responsibility Jonathan Levy (Sep 27)
- Re: Nimda et.al. versus ISP responsibility Brian Cervenka (Sep 27)
- RE: Nimda et.al. versus ISP responsibility Tony Langdon (Sep 27)
- RE: Nimda et.al. versus ISP responsibility Dean Cunningham (Sep 27)
- RE: Nimda et.al. versus ISP responsibility ahoward (Sep 27)
(Thread continues...)
- RE: Nimda et.al. versus ISP responsibility Adcock, Matt (Sep 27)