Slashdot Mirror

← Back to Stories (view on slashdot.org)

Broadband Access Leading to Internet Breakdown?

Posted by Cliff on from the the-dangers-that-come-with-the-territory dept.

TwistedSpring asks: "As bandwidth costs become cheaper and more people adopt cable or DSL over standard dial-up connections, the time it takes to distribute worms and other unwanted or malicious material (read: spam) across the Internet decreases. After noting the current surge in Internet worms and the so-called Darwinist evolution of these things into more and more powerful incarnations, I wonder: will the proliferation of broadband Internet access deal a serious blow to current freedoms on the Internet?"

"Spam, adware, worms and viruses are now able to propagate much faster than ever before. Worms are also growing bigger, more advanced, as it's possible to transfer more viral code in less time. It's as if slow dial-up lines acted as a kind of immune system that prevented effective propagation of worms and made DDoS attacks so much less significant.

I'm not only worried about viruses and spam levels. Part of the reason the MPAA and RIAA are taking such an interest in Internet activity is that file sharing has become so much easier with the availability of broadband, and as usual there are murmerings of regulation. Before the broadband revolution, the involvement of the MPAA and RIAA in Internet affairs was small, and their argument was less convincing.

As broadband grows, will regulation become necessary not just to prevent illegal distribution of copyrighted material but more likely to protect Internet users from themselves (we're already seeing ISPs adding spam e-mail filtering to their default services, for example)? Will the Internet fall in popularity as it becomes more and more frustrating and dangerous to use, or will we simply see a massive improvement in coding practices and more secure software?"

42 of 505 comments (clear)

  1. the time to distribute patches and fixes... by extra+the+woos · · Score: 5, Insightful

    Obviously, the time to distribute fixed and patches goes down as well. As does the ability to spread the word about things going around... I see the "always on" thing as more of a security risk than the higher speed, definately.

    --
    replacing it with NEW Folger's Crystals! (lets see if they notice the difference)
    1. Re:the time to distribute patches and fixes... by BigDuke · · Score: 4, Funny

      And remember don't use Outbreak ... oops I mean Outlook. Its not a virus its just a carrier!!

    2. Re:the time to distribute patches and fixes... by Ronny+Cook · · Score: 5, Funny

      Our company uses Outlook and it's perfectly sa%&^S#^M^?NO CARRIER

    3. Re:the time to distribute patches and fixes... by Canberra+Bob · · Score: 4, Insightful
      And remember don't use Outbreak ... oops I mean Outlook. Its not a virus its just a carrier!!


      The scary part is that we find this comment funny because of the truth in it. M$ has been responsible for a disproportionate number of the worms going around through Windows INsecurity, and yet sadly they will be the first company approached for any legislation relating to this.

  2. We are all here, aren't we? by ObviousGuy · · Score: 5, Interesting

    The web is in danger of nothing. More importantly, the Internet is more important to commerce than ever before.

    Unless a large, physical attack on the wires carrying all this data occurs, everything is pretty much A-OK.

    --
    I have been pwned because my /. password was too easy to guess.
    1. Re:We are all here, aren't we? by z0ink · · Score: 4, Interesting

      Actually, a few smaller attacks could be more damaging. Imagine if the location of NOC's across the US were exposed and attacks were carried out on them. Goodbye internet, hello 404 (if you're lucky enough to have a dns to attempt resolving domains).

      --
      Steal This Sig
    2. Re:We are all here, aren't we? by Epistax · · Score: 4, Funny

      It would have worked too if it weren't for you meddling kids!

    3. Re:We are all here, aren't we? by andynz · · Score: 5, Funny
      Correction. Goodbye US internet. The rest of us would be fine and dandy.

      We would be without Slashdot though. Good god, productivity could skyrocket!

  3. Depends on your definitions by dartmouth05 · · Score: 5, Interesting

    I suppose it depends on how you define the current freedom. I don't believe that it is going to lead to increased censorship. I don't believe it is going to lead to increased tracking or monitoring (although certainly other things, like the recent FBI/DOJ request for increased wiretapping ability may do just that).

    I think that it will lead to increased filtering on the ISP side of things. More ISPs will be using Spam Assasin and similar programs behind the scenes. Undoubtedly, some legitimate e-mails will be caught by these SPAM traps, and the end-user might not have access to them.

    Personally, since Dartmouth College starting running virus scanners and SPAM filters and the like, I constantly get e-mails where the "suspicious" file was automatically removed, and although most of those removals were viruses, I also lose legitimate files that are sent to me. As an end-user, I don't have access to change the settings or tell the system that a file is, in fact, OK. Instead, I have to e-mail the person back and ask them to resend the file to my AOL account.

    I suspect that as more people use cable and DSL and the malware increases, this behind-the-scene tinkering will increase.

    A serious blow to current freedoms on the Internet? I'm not sure. A pain in the ass? Absolutely.

    1. Re:Depends on your definitions by MagicDude · · Score: 4, Interesting

      Slightly offtopic, but I always wondered if it wouldn't be a better idea for virus checkers not necessarily to delete all viruses. Certainly, there are known viruses out there it could delete, but there are also files that the virus software has to make a judgement call on some file it has never seen before. Thus sometimes it ends up deleting useful files. Couldn't the software merely add a large red "WARNING - WE THINK THIS FILE IS A VIRUS. DON'T OPEN IT UNLESS YOU KNOW ARE EXPECTING THIS FILE AND KNOW WHAT IT IS" at the beginning of the E-Mail text so you know that something out there wants to make sure that you're being careful about this file?

    2. Re:Depends on your definitions by CajunArson · · Score: 4, Insightful

      The problem with this is that so many warnings will show up that users will ignore them anyway and get infected. My Linux email client always warns me before opening up attachments and I just click OK. Since there are not Linux email viruses out now, not a big problem. However, if there was one, the popup box would not help me since I instinctively click through it. This is not even considering an entire class of people (I like to call them Darls) that will intentionally try to open dangerous attachments. It really doesn't take a large number of Darls to screw up the fun for everybody.

      --
      AntiFA: An abbreviation for Anti First Amendment.
    3. Re:Depends on your definitions by s20451 · · Score: 5, Funny

      Warning - We think this file is a virus. Don't open it unless you are expecting this file and know what it is.

      [checkbox] Don't show me this message again

      --
      Toronto-area transit rider? Rate your ride.
  4. Err Darwin? by taniwha · · Score: 4, Insightful

    Come on - the virus and worm anaology is a great one to make lots of ... but they aren't evolving under Darwinian survival of then fitest .... if anything it's more of a creationist sort of thing with rival gods throwing their latest creations into the world to battle it out with nature (ie the rest of us who provide the medium for them to live in) and each other

    1. Re:Err Darwin? by Atmchicago · · Score: 4, Insightful

      Yes, until a worm can "mutate" randomly into different strains, and if some of these mutations prove to be beneficial, then we have Darwinian evolution. However, having it randomly change "if" statements to "while" statements, or other such changes, wouldn't work too well, and changing or adding other things most likely wouldn't get anything useful.

      --

      You can lead a horse to water, but you can't make it dissolve.

  5. Is the problem the "how" or the "with what" by MrChuck · · Score: 4, Interesting
    As I see it, it's that the users are using Windows, not that they are coming in high speed.

    While unix boxes went through 25 years (since ARPA contracted UCBerkeley to make this "TCP" thingy) of evolution on networks that were, in retrospect, pretty safe.

    The Morris Worm in '88 woke a lot of us up, but we've known for decades about "doors" and "locks" and such.

    Windows is/was/and will be a consumer operating systems whose main impetus is features to push sales. Security hasn't appeared to be on their radar screen except as a check box ("did you think about security?" Um, yeah. "Good enough for us. Ship it").

    I'm getting hammered by spam and worms and EVERYTIME I nmap back to the sender (okay 0.001% of senders, randomly chosen as I get pissed off), it's a windows box.

    I love broadband.

    I love VOIP to mom and video and streaming stuff to relatives (all legal)

    I hate the bad neighbors running windows. The metaphorical slaughterhouse next door.

    1. Re:Is the problem the "how" or the "with what" by furiousgeorge · · Score: 5, Insightful

      >>As I see it, it's that the users are using
      >>Windows, not that they are coming in high speed.

      Ahh..... bullshit.

      Most of the worms and trojans and crap that are going around lately are all user spawned. They haven't crawled in through a remote exploit. They've been emailed to/downloaded by some genius who will execute any damn thing. I swear, these people would probably pick up a used syringe off the ground and jab it into their own arm to see what would happen.

      Do you think it would be any different if the world was all running Linux? Or Solaris? Or MacOS. Please - stupid people will be stupid no matter what OS you put in front of them. It isn't going to change anytime soon.

      >>I'm getting hammered by spam and worms and
      >>EVERYTIME I nmap back to the sender (okay
      >>0.001% of senders, randomly chosen as I get
      >>pissed off), it's a windows box.

      Geee --- and what percentage of computers out there are windows boxes? What a shocking correlation.

    2. Re:Is the problem the "how" or the "with what" by MrChuck · · Score: 4, Insightful
      Do you think it would be any different if the world was all running Linux? Or Solaris? Or MacOS.

      Yeah. Yeah I do. Because those OSs don't have (1) a dirty syringe attractor and (2) a dialog box that pops up and says "Would you like to jam this into your arm?".

      The underlying windows platform is flawed. There are WEEKLY buffer overflows and it's clear that aside from the VAST amount of unsecure old code in it, that new code is rife with holes too.

      How many times was outlook fixed to stop running code in preview mode (hint, it's >1).

      In bending over backwards to make it easy for users to run things on windows, they leave themselves open. Anyone recall when the "good times virus" that promised a worm from opening an attachment was ridiculous because no program would treat data as executable code!? I miss that now.

      Re: nmapping back?
      When I scan 200 machines and ALL of them are running windows and ALL of them are sending me mydoom, that's not just bad luck of the draw.

      I was blocking 140 mydoom.a messages a minute the day AFTER it started.

      Most of the worms and trojans and crap that are going around lately are all user spawned

      By "lately" you just mean that 12 or so since new years. I guess when you have so many, it's hard to recall back to last summer and the previous 30 security holes.

      When a client groused about the cost of an antivirus program for scanning mail at their college, I pointed out that the WHOLE cost should be borne by the Windows support group. The 10-20% of the school taht wasn't using windows had no (zero, none, nil, nada) need for filtering out viruses that autoexecute in their environment.

      At another (very very large wall st) client, I was delighted to see security and a manager show up and FIRE someone for using outlook. 3 warnings about it and AGAIN, he brought a virus in. They'd figured the cost of each incident and banned it. Bravo!

      So YES, driving a line of cars through town filled with explosives is bad, even if you tell them not so smoke.
      Letting a former addict go hang out with crackheads and spend lots of time with them is BAD.

      Letting ignorant Windows users have machiens that can be reached for the net is BAD. That windows machine is just jonesing for a virus fix.

  6. fix mail by lophophore · · Score: 4, Insightful

    Email is one of the biggest threat vectors.

    When email gets fixed (through authenticated access), the worms and virii will need to find a new way to spread.

    This is in addition to the more obivous effect of cutting down the overall flow of spam.

    --
    there are 3 kinds of people:
    * those who can count
    * those who can't
    1. Re:fix mail by MrChuck · · Score: 5, Interesting
      Except for all the other threats.

      More of consequence in my mind are the MILLIONS of machines acting as bots for a DDOS attack. It's less spam (spam is bad, m'kay?) than the ENOURMOUS connection points that are running and spreading viruses that can harm me.

      My house has been Windows-free since it was on the Internet (1983 or so). When I helped remove a rootkit from a brother of a friends linux box (again, a nat box woulda done wonders), he looked at my rack with ~9 working machines (the others are elsewhere) and asked which windows *I* ran. I looked at the SGI, Sun, NeXTs, Alpha and couple Intel boxes and said, "none. But I have a linux box to play games on."

      My systems are generally fine until 5000 windows boxes running worms wake up and decide to visit and visit and visit until my bandwidth is used up.

      Spam annoying as hell.
      Viruses dangerous to everyone around.

  7. ISPs by Joe+U · · Score: 5, Insightful

    Wasn't IPv6, combined with proper filtering supposed to curb these problems?

    Alot of the blame falls on the ISP, they helped turn the Internet into a always-on appliance, now they have to make it robust.

    Why does my ISP allow packets off my network that obviously don't originate from it? Is it considered a feature to allow DoS attacks? Why is port 25 open by default? Why isn't NetBIOS closed by default? Where is the IPv6 testbed that my ISP was supposed to have had 3 years ago?

    Granted, the average Joe User can be an idiot, but part of the ISP's job is to make the Internet more idiot-proof.

    1. Re:ISPs by joe90 · · Score: 5, Insightful
      Granted, the average Joe User can be an idiot, but part of the ISP's job is to make the Internet more idiot-proof.


      The Internet is not AOL. The "idiots" computer is part of the Internet when it's connected. The ISP's job is to provide network connectivity to the rest of the network - NOT to make the Internet more idiot proof.

      --

      Fast, cheap & reliable. Pick two.
    2. Re:ISPs by timmarhy · · Score: 5, Insightful

      no no NO. i can't believ this is +5 insightful. the job of the internet SERVICE provider is just that, to provide the internet service. heaven forbid a world where isp's start to apply upstream filters and controls on my account. besides the obvious costs with these kinds of things there are the applications this might break, and no one will know it's breaks them till it happens. isp's you provide me with internet access, and it'll decide what i do with it from there thank you.

      --
      If you mod me down, I will become more powerful than you can imagine....
  8. I work for an ISP... by grioghar · · Score: 5, Interesting

    ...And every little old lady that comes in and purchases a DSL circuit for email makes me cringe.

    All I can think is that she's just another virus infection waiting to happen on my network.

    For some, it's senseless and stupid to have a broadband connection. I mean, my bread and butter requires that people DO have a DSL circuit, but there's no sense of responsibility with their internet connection.

    People bitch all the time about spam, and how to get rid of it. That same person comes in and has a SMTP relay cleaned off their system a month later. They can complain about it, but they don't realize they're part of the problem as well.

    Then there are those that come in and tell me to my face "Bah, I don't care if I have a virus, it just makes things a little slower." Those people piss me off the most. Those same people get pissed when I shut their connections off because they're sending out 20 messages/second, drowing their outbound pipe.

    I swear. Sometimes I think owning a computer should require a license.

    --
    Can you ping me now? Gooood! | Manhappenin.Net - Things to do
    1. Re:I work for an ISP... by mmurphy000 · · Score: 4, Interesting
      For some, it's senseless and stupid to have a broadband connection. I mean, my bread and butter requires that people DO have a DSL circuit, but there's no sense of responsibility with their internet connection. People bitch all the time about spam, and how to get rid of it. That same person comes in and has a SMTP relay cleaned off their system a month later. They can complain about it, but they don't realize they're part of the problem as well.

      I've been amazed that more ISPs don't bundle some sort of hardware firewall, like a SOHO router/NAT box, with their service. It would appear to be in their own interests to promote the use of those things, as they'd help slow the propogation of worms a fair bit. Larger ISPs should be able to get them for dirt cheap, as there isn't much more to one of those routers than there is in a cable or DSL modem.

      Now, I know, NAT isn't perfect and causes problems -- I run into a fair amount of "d'oh" moments myself when I want to do something, like BitTorrent, and my port isn't open. But, for "little old ladies" and the like, you'd think it'd be a net benefit to the ISP to distribute the firewalls.

      Any ideas, besides hardware cost and "how do I set this up" support costs, why ISPs don't do this more?

      --
      The Busy Coder's Guide to Android Development
  9. My Take... by ItMustBeEsoteric · · Score: 5, Interesting

    I work at a local mom and pop computer store, and it seems like somewhere around half of all PCs brought in with problems stem from broadband used improperly.

    We had one guy come in, who had always-on Comcast cable, the same provider I use myself. He had bought a PC from us roughly 2 weeks before, and was hell bent that the "piece of shit" we sold him was to blame. Of course, no antivirus, no firewall, AOL for broadband added...so much spyware. That AdAware count was, I kid you not, 3,250 or so.

    As a person who has to deal with people like this quite often, it's not hard for me to see the side of an ISP who would LIKE to impose restrictions. There is also part of me who wouldn't be against it. As much as I would like unfettered access, I know most people (those on /. aside) can't deal with it. They destroy the usuability of their PCs with it.

    So I have mixed feelings on all this. What would I like to see? You have no fetters, at first. Then, you start acting as a spam relay or something, you get restrictions (I know, this happens, and I applaud for it). You act as a waypoint to spread viri and trojans, cut back another notch. And so on. This should all be spelled out in the license agreement, but I think it's nearing necessary.

    Internet usage is not a RIGHT. It's a PRIVILEDGE. And it's one you should have to be responsible to keep.

    1. Re:My Take... by grioghar · · Score: 5, Interesting

      Internet usage is not a RIGHT. It's a PRIVILEDGE. And it's one you should have to be responsible to keep.

      Word, brother. I love it when people come in and bitch about how slow their new computer is that they just bought from us a month ago.

      I smile, nod, and ask them to bring it in, usually to scoffs. They get the machine here, I fire it up, and there's Gator, WeatherBug, DateManager, Kazaa, iMesh, etc.

      I smile, nod, and tell them it's going to be $65 (our hourly in-shop rate) for me to clean it up because their problem is a software one. Either that, or I can restore their machine back to the way it was when they bought it for free.

      As much of a BOFH that makes me sound, I get pleasure out of the looks on their face when torn between their ignorance and their wallet.

      Worse part is, they could do the same thing I'm gonna do for free at home if they had a clue.

      Like they say, you get paid for what you know, and pay for what you don't know...

      --
      Can you ping me now? Gooood! | Manhappenin.Net - Things to do
    2. Re:My Take... by Fortress · · Score: 5, Insightful

      It's easy to look down on uninformed people who want to learn how to use the Internet, and complain that they are the ones ruining it for all of us. You could instead take the opportunity to teach these newbies how to protect themselves online. Why did you sell him a PC with no firewall or antivirus? There are free versions of each available, so I see it as partly your responsibility for selling a machine that was so wide open to attack. As to Internet usage being a priviledge rather than a right, I couldn't disagree more. It is this sort of elitist rhetoric that gives all of us geeks a bad name. The Internet is for all of us, not just the few that you or anyone else determines is worthy of it.

  10. Darwin = change by tomstdenis · · Score: 4, Insightful

    Those who change will survive. E.g. learn to patch your system, avoid insecure behaviour and tighten up your network [e.g. firewall, NAT, etc...].

    Those who don't will find their computer experience horrible and "die off" as far as the market is concerned.

    Tom

    --
    Someday, I'll have a real sig.
  11. I, for one.. by Orgazmus · · Score: 5, Insightful

    am going to write that lame joke you thought I would.

    Instead i would like to say that the Internet is not a medium that should be regulated or cencored.
    If the dumb users are getting hurt by its wildness, that same darwinism should do its work.

    And if we will see more secure software? Dont hold your breath.

    --
    The system had the verbosity of HTML combined with all the readability of compiled assembly viewed as bitmap images
  12. Connection? by ADRA · · Score: 4, Interesting

    I don't know about you all, but if you have an open node in the net you WILL be owned on 56K or broadband. The virus might -spread- faster, but it won't destabilize the long term growth of the net.

    You'll be surprised at how fast ISP's implement manditory transparent virus/worm filering if the problem ever reaches the levels that you're implying. 2/4 ISP's that I've dealt with filtered back orifice without notifying customers.

    Question:
    Would anyone mind spending $2/month extra for an ISP to implement manditory WORM/Virus filters? If you want to play with them, use your LAN! This would solve all the worlds hunger problems!!!

    --
    Bye!
  13. For crying out loud, INSTALL A FIREWALL, already! by mbessey · · Score: 4, Insightful

    I still find it mystifying that any ISP would allow/encourage users to directly connect completely unprotected machines to a high-speed internet connection.

    Sure, Windows could be better in terms of security, but that wouldn't even be a problem if all those insecure services were behind (even a minimal) firewall.

    -Mark
    (My DSL account came with a "free" firewall-enabled router)

  14. Not breakdown, probably divide by fembots · · Score: 5, Insightful

    A digital divide is probably more likely, as most people on broadband are accessing fuller multi-media experiences while poor souls have to avoid big-combo sites.

    I think from the history of technology advancement, things always get bigger, better, faster, strong etc, and they usually don't break themselves down in the process.

    Take our transportation for example, when the gravel roads got too crowded, we paved them, then widened them, then built highway motorway causeway, then we moved to train, light-rail, bullettrain.

    At first we only tried to travel a short distance if you had to do it by foot, when we have cars, we want to travel further and eventually it is too far for cars, and we move to flights etc etc.

    The cycle just keeps going.

    --
    Rock that crushes, Paper & Scissors that don't matter.
  15. This is not the looming threat. by Sheetrock · · Score: 5, Insightful
    The general consensus is that bandwidth is infinitely expandable.

    The problem is the transformation of most nodes of the Internet from peers to clients. That's what's going on with broadband; they lure you to the service with speed and reliability then after you're in they let you know you can't run any services and they're putting a mandatory (and poorly-run) spam filter on your incoming mail.

    You're no longer part of the network. You're only a consumer and spectator. Spam is bad but RBLs like SPEWS and the admins that force them on their users can be worse. There used to be a time when you could hook into the Internet and go pretty much anywhere you wanted to go; today everybody wants to lock you down and force you to pay for things you once enjoyed for nothing or move to a different server because of some political battle over spam. When people like John Gilmore get screwed for running a mailserver, or a website like Something Awful has its business operations hampered, I can see the writing on the wall.

    We need to get back to the days of having Internet access being a utility, much like electricity or water, where one could hook in and use it any way one will. The looming threat is control, lockdown, and homogenization that promises to render this medium as stale as commercial radio.

    --

    Try not. Do or do not, there is no try.
    -- Dr. Spock, stardate 2822-3.




    1. Re:This is not the looming threat. by pavon · · Score: 4, Insightful

      You're no longer part of the network. You're only a consumer and spectator.

      No you are not. You can contribute to the content on the internet in a million ways. You can add content to forums and Wikis. You can chat with friends in IRC and IM. You can write email to anyone. You can have your own site at places who will give you space for free. Or you can pay for space on a multitude of hosts, at a wide range of pricing options. You can contribute to the internet as much as anyone on an unfettered T1.

      The only thing you can't do is be a system administrator. And that is a good thing. These connections need to be administered - improperly administrated computers are what make virus and spam possible. 99% of people on broadband are not qualified to administer network security, and it is absolutely rediculus for slashdotters to get angry at them for failing to live up to that expectation. The ISP's are the IT department for the home user, and they need to start acting like it.

      If you wan't to be your own system administrator, there are accounts for that. You will be much happier if you just get one, and everyone will be happier when the stability of the internet is not dependant on average users being network security experts.

  16. Network Biology by StuWho · · Score: 4, Insightful
    As networks become ever more complex, they become increasingly like ecosystems.

    The best defense against viruses is a healthy immune system, and an organism gains a healthy immune system through exposure to germs and viruses.

    The current "epidemic" of viruses serves only to strengthen the immune systems various groups are developing to regulate the wider ecosystem - the net.

    There will always be change, and one of the drivers of change is chaos.

    --
    "If you think nobody cares if you're alive, try missing a couple of car payments." Earl Wilson
  17. Broadband or Human Nature? by The-Dalai-LLama · · Score: 5, Insightful

    I think the proliferation of broadband has helped the internet become a more valuable tool for the average 2.5-kids-having-explorer-driving-all-American-fami ly, which has caused it to be a greater part of all our lives. As such, it is now on the radar for the type of people who are threatened by anything beyond their control.

    The more we become dependent on the internet, the more interest there will be in regulating it. The level of freedom, possibility, and power that the internet affords to the average person is simply unprecedented. Freedom of the press belongs to those who own a press. With the advent of the internet, the average soccer-mom now has a press that can publish to the entire world for pennies.

    Attempts to regulate and lock-down the net are inevitable. It is the nature of those who seek power for themselves to deny and control the power afforded to others.

    The possibility of always-on connections spewing a constant stream of malware and sludge is just an excuse. The proliferation of broadband is dangerous because it put the issue on the map and a very high level of power in the hands of the people.

    The Dalai Llama
    Citizen of a nation where freedom of speech, bought with the blood of heroes, is used to spread pr0n and reality TV shows.

    --
    My sig could be your sig!
  18. To fix the problem by fdiskne1 · · Score: 4, Insightful

    Yeah, I know. Everyone has their own fix for the problem, but I really think these steps would take care of most of it.


    1. Free firewall software from an ISP for all Windows boxes. I really don't think ZoneLabs would charge too much for an ISP to distribute the free version of ZoneAlarm. Ditto that for AdAware or Spybot S&D.

    2. Free virus-scanning of all email. Don't scan for spam and forward through all virus-stripped email just in case it contains important information. I know, most viruses are ONLY viruses, but you never know what may come later.

    3. Have ISPs monitor port 25. If traffic is seen, test it for an open relay. This could be part of the contract the customer would sign. If it's an open relay, block it and tell the customer to clean up the machine if they want it open.

    4. Once a new major virus such as MSBlast hits, monitor for it's traffic and block appropriately or take them offline until it's fixed. Of course the virtual network with cleaning tools is a good idea, also.

    If this doesn't happen (and I don't expect it to) people with computers HAVE to learn that running a computer hooked up to the Internet is a responsibility. If they can't learn how to manage it properly, they should hire someone to do it. You have to maintain your car and people don't complain too much about it. If they do, people may feel sorry for them, but that's as much slack as they get. Don't fix it? Don't drive.

    --
    But why is the rum gone?
  19. Re:A good reason to use encryption by homer_ca · · Score: 5, Informative

    Yeah, and not just humans either. The worms are starting to use encryption too. Some versions of Bagle are spreading themselves in password encrypted Zip files, with the password in the message body. The pace of the arms race is incredible. Antivirus vendors then updated their scanners to scan the message body for the Zip file password and decrypt the attachment. The virus writers then started sending the password in a bitmap attachment to foil the virus scanners.

    Of course that story was from 2 weeks ago so it's old news. This week the latest variant has no attachment at all. It's just HTML that exploits an IE bug that downloads the worm from the infected computer that sent the message.

  20. ISP Irresponsibility by Big+Jojo · · Score: 4, Insightful

    ISPs that can't be bothered to filter out the viruses are the primary cause of all this damage.

    Today, almost all viruses are weapons to attack home PCs, installing spambots. If the ISPs had even been marginally responsible as these epidemics started, rather than fostering the spread of ever-more-dangerous virii, today's problems would be several orders of magnitude less than they are.

    That has nothing to do with broadband per se. It has to do with trying to make a buck by externalizing all costs ... changing the Internet from a place where organizations were responsible, to one where irresponsibility became the norm.

    There are lots of real-world examples of people being held responsible for their actions. You can't just go screwing people to give them AIDS, for example. Or firing guns into crowds. And there are plenty of places where littering gives reasonable fines (hundreds of dollars).

    ... oh yeah, ISPs are corporations, and corporations are lately expected to be irresponsible. Thats F*CKED, end of story.

  21. Saving people from themselves... by OneFix+at+Work · · Score: 5, Informative

    I've found that most folks like to be told how to make their computers more secure and decrease their chances of infection/spyware...

    I have made it standard practice to install 3 applications on all Windoze machines that I fix anything on...

    1) Install Avast! Home Edition and set it to do automatic updates of both the Core Program and Virus Database. Because most people don't pay for Anti-Virus upgrades after their free trial version runs out...not to mention the fact that Avast! is better than Norton and most for-pay AV apps anyhow...

    2) Install Spybot Search & Destroy and make sure that the primary user(s) see what the result of the initial scan is (shock value) with instructions on how to use the app...

    3) Install FireFox (no link needed) with the follofing userContent.css...

    If they still insist on using IE I will install Google Toolbar and enable popup blocking...

    I then proceed to replace any spyware apps with free non-spyware apps (WeatherBug -> Weather Pulse, etc)

    As for a firewall, I talked most into buying a wireless router (generally a cheap 802.11b router) to use as a firewall and future network upgrades. I don't think any windoze software firewalls are very good...IPTables is about the ONLY software firewall that I trust...

    After doing this, I find that these systems stay fairly clean and have much fewer problems. Not to mention the owners of said machines tend to be much happier afterward.

  22. Things ARE improving behind the scenes by J.+T.+MacLeod · · Score: 4, Informative

    I work for a small ISP, and things are absolutely improving behind the scenes. Most old broadband network designs were not built with the present day in mind. It was, perhaps, shortsighted, but who saw this coming?

    We're installing dedicated spam/virus filtering machines. We're changing our network drastically, going from a very simple network structure to one where every DSL bridge's ATM channel is carried up to a router doing Proxy-ARP, so we can cut out broadcast traffic and regulate traffic for every customer's connection (cutting down on both viruses spread via broadcast traffic as well as DoS attacks).

    On top of that, we police the network to find users with viruses, then call them and, if they can't do it themselves, clean their PCs for free.

    Things are definitely picking up on the ISP end. Now if only the customers would take a few steps...

  23. Broadband access vs. human global mobility by Noco · · Score: 4, Interesting

    This idea of broadband access creating a "breeding ground" for new malicious code as well as allowing the code to be spread more rapidly and universally seems to parrallel the problems that have been facing public health officials for the last century.

    With the increase in human mobility due to cars, trains, planes, etc. more people can come in contact from disparate places more rapidly and more often. This has resulted in once isolated diseases with limited scope becoming important health concerns. SARS is a prime example. Toronto became an infected city, though thousands of miles away from the epicenter. Yet we develop technology to aid in the detection and treatment of diseases. We don't, though, regulate people's movement. Temporarily there might be economic forces that isolate areas (i.e. airline travel stops due to lack of demand) but such effedts are temporary.

    I don't see a need to necessarily worry that broadband access's negative effects will trigger overregulation. Instead, I think that systems will be developed that mimic biologic systems. Oftentimes, evolution has produced solutions to complex problems in very elegant ways that we could not have developed using traditional methods.