Re: Interesting Apache logs

From: Alan J. Flavell (flavell@mail.cern.ch)
Date: 03/26/02 

From: "Alan J. Flavell" <flavell@mail.cern.ch>
Date: Tue, 26 Mar 2002 13:07:14 +0100

On Mar 26, Barry Margolin inscribed on the eternal scroll:

> >I'm sorry: we (back at the campus - at cern I'm just another user and
> >it's none of my business what their security scanner gets up to) try
> >not to wait for victims to complain: known abuses are tested for, and
> >nipped in the bud. I'm not saying that cases don't slip through, of
> >course they do, but I'd like to see a more pro-active approach from
> >other providers.
>
> You've viewing it from a completely different perspective.

That's as may be, but we're all connected to the global Internet.
If they won't keep their house in order, we need to defend ourselves
from them.

> Operating a private campus network

(for some value of the term "private"...)

> is different from operating an ISP, both in scale
> (you don't have hundreds of thousands of customers, do you?)

Only tens of thousands. Or what do you mean by "customers"?

> Still, some customers felt that
> it was no more proper for the ISP to be probing them than it would be for a
> cracker; it's not the ISP's job to check up on them, they believed.

The monitoring for code-red etc. to which I was referring didn't
involve any probing, only traffic monitoring. In this case it was a
campus activity.

The mail-relaying tests ( http://www.ja.net/mail/anti-spam/active.html )
are of course a different matter, but had been well advertised to
those affected by them.

I can only repeat that ISTM providers need an appropriate AUP. If
their customers expect to be treated as serious professionals, they
(the customers) need to behave that way; if they expect to behave as
clueless newbies, then they mustn't be surprised to have their
provider keeping a closer eye on what they're doing. In the grey area
in between, there needs to be appropriate shades of compromise.

best regards

Relevant Pages

  • Re: building (i think) a many to many relationship
    ... Since one customer can have many providers AND one provider can have ... create the relationship from tblCustomersProviders TO tblCustomer (as ... the relationship from tblCustomersProviders TO tblProvider (as a ... You can even create a combobox on frm Customers which will insert ...
    (microsoft.public.access.gettingstarted)
  • Dispute Leads to Internet Woes for Thousands of Users
    ... Thousands of Internet users struggled to send e-mail and keep their ... providers left large portions of the Internet unable to talk to each ... Communications Inc. refused to accept traffic from rival Cogent ... Inc. "Some customers say they've had trouble getting to our Web site." ...
    (comp.dcom.telecom)
  • Re: Federal Judge strikes down part of Patriot Act
    ... saying investigators must have a court's approval before ... Examples of such businesses include Internet ... service providers, ... could reveal to its customers that it was turning over records. ...
    (soc.retirement)
  • FCC Clarifies VOIP Disconnection Deadline
    ... The Federal Communications Commission won't require Internet phone ... The agency in a notice issued late Monday said providers that have not ... discontinue such service to any existing customers. ... where the companies are not routing 911 calls to emergency response ...
    (comp.dcom.telecom)
  • Re: Federal Judge strikes down part of Patriot Act
    ... Examples of such businesses include Internet ... service providers, ... the agency was allowed to decide on its own - without court review - ... could reveal to its customers that it was turning over records. ...
    (soc.retirement)