RE: Nimda et.al. versus ISP responsibility ---> a few thoughts

From: Alejandro Mezcua (amezcuaat_private)
Date: Thu Sep 27 2001 - 16:05:14 PDT

Next message: terry white: "Re: Nimda et.al. versus ISP responsibility"

Previous message: Tony Langdon: "RE: Nimda et.al. versus ISP responsibility"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

There are also other kind of 'ISPs' like myself who only provide
'application level' services but not connectivity. I do provide web &
e-mail services to my clients, mostly hosting web applications which we
develop + integrated mail, but they get their own connectivity providers
to fit their needs.

How should then my connectivity provider filter HTTP traffic for each of
my clients to prevent my wasted bandwidth?

I know i filter e-mail messages, should i ask my provider to filter them
for me, for my own customers?

You can imagine what they'll tell me...

I think you're all seeing the problem from just one perspective but
there are many more situations possible, the 'ISP' market is very
eterogeneous with a lot of different posibilities at present time.

	-----Mensaje original----- 
	De: Kee Hinckley 
	Enviado el: jueves 27/09/2001 22:33 
	Para: Marc Ducharme 
	CC: incidentsat_private 
	Asunto: RE:Nimda et.al. versus ISP responsibility ---> a few
thoughts

	-----BEGIN PGP SIGNED MESSAGE-----
	Hash: SHA1

	At 11:34 AM -0700 9/27/01, Marc Ducharme wrote:
	>I also think that ISPs could react to protect their clients
when worm
	>spreads. Adding a few lines to their routers to block a worm's
profile
	>should not be a big deal.

	Blocking ports to/from all machines inside an ISP network is
simple.
	Blocking ports to/from some machines inside an ISP network
probably
	requires new software/hardware.
	Blocking *content* to/from any machines inside an ISP network is
a
	huge hit on performance and resources.  The difference in
	software/hardware required to route a packet vs. examine the
packet
	is huge.
	- --

	Kee Hinckley - Somewhere.Com, LLC
	http://consulting.somewhere.com/
	nazgulat_private (or ...!alice!nazgul for time travelers :-)

	I'm not sure which upsets me more: that people are so unwilling
to accept
	responsibility for their own actions, or that they are so eager
to regulate
	everyone else's.

	-----BEGIN PGP SIGNATURE-----
	Version: PGP Personal Security 7.0.3

	iQA/AwUBO7OOPCZsPfdw+r2CEQLPJgCdHXVo6nXBKr0pPRqHs8ERDJ+8pwQAoOAZ
	Kz291i2KOfJeQkv8JPZGbmjK
	=XDFf
	-----END PGP SIGNATURE-----

------------------------------------------------------------------------
----
	This list is provided by the SecurityFocus ARIS analyzer
service.
	For more information on this free incident handling, management
	and tracking system please see: http://aris.securityfocus.com

Next message: terry white: "Re: Nimda et.al. versus ISP responsibility"
Previous message: Tony Langdon: "RE: Nimda et.al. versus ISP responsibility"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Sep 27 2001 - 16:41:12 PDT