> This is at least a step forward in network hygiene and I'm not > impressed with the notion that this sets up spoof messages; you could > say the same thing about any communications from an ISP. How else > should Comcast notify users?
I would suggest picking up the phone. I've worked at an ISP that _did_ notify users who appeared to have pwn3d boxes, and that's what we did. If Comcast thinks they don't have the people to do that, I say that's _their_ problem; their choices are to hire those people, train their users to fall for spoofs, or be a danger to the entire net. Well, at least unless someone comes up with a fourth option. /~\ The ASCII Mouse \ / Ribbon Campaign X Against HTML mo...@rodents-montreal.org / \ Email! 7D C8 61 52 5D E7 2D 39 4E F1 31 3E E8 B3 27 4B _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
