Re[2]: [ga] WHOIS policy primer

[Allan Liska <allan@allan.org>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: MD5

Hello Jeff,

Wednesday, August 28, 2002, 2:55:26 AM, you wrote:

JW> Allan and all assembly members,

JW> Allan Liska wrote:

>> -----BEGIN PGP SIGNED MESSAGE-----
>> Hash: MD5
>>
>> Hello Jeff,
>>
>> Wednesday, August 28, 2002, 12:52:20 AM, you wrote:
>>
>> >>
>> >> Examples of times when I have needed to get in touch with a domain
>> >> owner:
>> >>
>> >> 1. Receiving virus infected e-mails from a user of a domain.  Yes, I
>> >> can /dev/null the e-mails, but I want the account cleaned up -- the
>> >> ISP is not going to do that, the owner of the domain will.
>>
>> JW>   Some ISP's do clean these sorts of problems up if you can clearly
>> JW> show what or from where/whom that potential virus came from.
>> JW> However it is not up to you to act as the Domain Name Police
>> JW> for viruses...
>>
>> Some, but not all.

JW>   No, most but not all is more accurate...

>>  Since ISPs cannot reliably be expected to clean up
>> viruses, especially from customers that do not use their mail servers
>> your rebuttal is invalid.

JW>   But they can and frequently do clean up viruses.  Hence your
JW> original argument is invalid on that point alone.  However the
JW> rare chance that a Domain Name holder is the cause or originator
JW> of a virus of one kind or another is still best handled by the Admin
JW> Contact, as most Domain Name Registrants have no idea as to
JW> how to deal with viruses...


So, when was the last time Earthlink called you to tell you had a
virus?  I have worked with several large ISPS, at not one has ever
called a customer and instructed them how to clean a virus off their
machine.

No large ISP, that I am aware of, offers virus filtering on their mail
servers as the default.  If it is offered at all, it is an optional
extra service.  Of course, I have only worked with business-class
ISPs -- but they handle the bulk of the traffic on the Internet, so
their practices are probably the best to watch.

It is not a rare occurrence that a virus originates from someone
within a domain.  Melissa, Klez, and other worm/virus hybrids are all
prime examples of this.  When these types viruses hit, the quicker I
can get ahold of someone responsible for the domain, the quicker the
damage from within the domain can be contained.  Once again, the ISP
is not going to be able to run a virus scanner on their user's
desktop.  The domain administrator will.


allan
- --
Allan Liska
allan@allan.org
http://www.allan.org

-----BEGIN PGP SIGNATURE-----
Version: 2.6

iQCVAwUAPWxfSn+n87oa5a9VAQHCugQAidYLzcBRo4ghoxuX8oqPBTNw9egebLYz
fSH0dhShfAkGgTgY1BF4TLhH4YYdxhG+405b0ZpWdMmS2qHJgUSivdSSzgiY2dEs
+LvZSn+AsqepPpugmKkrH+jWk67lg5xTMoBlD/HzXXy95fG19w7uQ6RPdHHvS4kc
0tnCFFT6q3c=
=4ZoV
-----END PGP SIGNATURE-----

--
This message was passed to you via the ga@dnso.org list.
Send mail to majordomo@dnso.org to unsubscribe
("unsubscribe ga" in the body of the message).
Archives at http://www.dnso.org/archives.html