North American Network Operators Group|
Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical
Re: Schneier: ISPs should bear security burden
On 27-apr-2005, at 20:08, Dan Hollis wrote:
I can definitely say
As long as the environmental polluter model continues to be championed andThe problem is that the maliciousness of packets or email is largely in the eye of the beholder. How do you propose ISPs determine which packets the receiver wants to receive, and which they don't want to receive? (At Mpps rates, of course.)
This whole discussion is a clear example of the fallacy of treating "security" as an independent entity, rather than an aspect of other things.
There are many ISPs that do less than they should, though. (Allow spoofed sources, don't do anything against hosts that are reported to send clearly abusive traffic, sometimes even at DoS rates...)