Slashdot Mirror

← Back to Stories (view on slashdot.org)

Should ISPs Cut Off Bot-infected Users?

Posted by CmdrTaco on from the excising-the-tumor dept.

richi writes "There's no doubt that botnets are a major threat to the safety and stability of the internet — not to mention the cleanliness of your inbox. After years of failure to act, could we finally be seeing ISPs waking up to their responsibilities? While ISPs can't prevent users getting infected with bots, they are in a superb position to detect the signs of infection. Contractually, the ISP would be reasonably justified in cutting off a user from the internet, as bot infection would be contrary to the terms of the ISP's acceptable-use policy."

3 of 486 comments (clear)

  1. Re:Craziness. by Haedrian · · Score: 3, Informative

    You're not exactly 100% right.

    Firstly, people who are infected often spread the infection amongst other computers, using the social aspect. Maybe you won't open an email from someone you don't know, but your best friend?

    Secondly, you're protecting them as much as you're protecting yourself - if they buy something online, their details might be stolen.

    Thirdly, they might not realise, and spread the virus anyway through other means, but disconnection makes it sure.

    Fourthly, even if your computer is uber-filtered, DDOS attacks, spam sending and other nasties can be done using a botnet, so even if you're not part of it, there's no way around that.

  2. Re:Lets ask in different context by Yalius · · Score: 3, Informative

    The first time, we take the member's word that they've cleaned or replaced the computer. After that, if it recurs, we need to see either an invoice from a repair shop or retail shop for repair of purchase of a computer. We provide CDs here in our office with removal tools, and we do provide removal and cleanup services.

    We also provide download links for security software right from our tech support portal, and a complimentary CD with the same software with every new subscriber. 3 times a year we offer a class on intro to pc and internet security. If someone's still getting infected after all the resources we've made available, then tough love may be just what's needed.

  3. Re:Yes by paulej72 · · Score: 4, Informative

    We have implemented this at Princeton University. Port 25 blocked, unless you specifically ask for it. All users who were using outside email services also had to change to use port 587 to connect to their mail servers.

    We are trying to be good net citizens an not have mail bots running from our network.