izy
Premium,MVM
join:2000-09-21
Naples, FL
| reply to N3OGH
Re: People need to take security more seriously
I'd have to disagree. ISP's cannot "force" users to run anything on their computers. The can "advise" but not "force"
It is however an ISP's responsibility to prevent network abuse on THEIR networks, such as a hosted phishing site.
What does it take a whole 5 minutes for an ISP's tech to knock a phished system off their network???
It's innevitable that a phishing site will pop-up on ANY ISP's network, it's the speediness of the ISP to respond to such reports of these sites and knock them offline ASAP. It would be interesting if justin  could create some statistics on response times per ISP when it comes to fixing these problems. The data is all there in »/phishtrack  |
|
Insder
There never was a second I in my name
Premium
join:2005-04-27
Salem, MA
| Trust me, I've been getting better response times from Asian providers and european providers than from the US. A US provider, Paetec, had a phish come up and back down three times before they finally stopped letting the customer handle it, while Belgicom of Belgium took the site offline within a day and emailed me back telling me it's taken care of. It's insane how bad US support is, it's like nobody cares. Even HiNet of China sends me better responses than most US ISPs.
--
The one, the only, the Insder. :: Fighting phishing for life. |
|
N3OGH
Bear patrol must be working like a charm
Premium
join:2003-11-11
Philly burbs
 ·Verizon FIOS
 ·Verizon Online DSL
| reply to izy
said by izy :I'd have to disagree. ISP's cannot "force" users to run anything on their computers. The can "advise" but not "force"... Why not? It's their network, you abide by their terms. Have you read your TOS lately? My ISP Verizon has some pretty heavy handed language in it.
Example:
"Verizon may terminate the Service upon notice to you for any reason."
And the acceptable use policy specifically states:
Verizon reserves the right to deny Service to you, or immediately to terminate your Service for material breach, if your use of the Service or your use of an alias or the aliases of additional users on your account, whether explicitly or implicitly, and in the sole discretion of Verizon: (a) is obscene, indecent, pornographic, sadistic, cruel or racist in nature, or of a sexually explicit or graphic nature; (b) espouses, promotes or incites bigotry, hatred or racism; (c) might be legally actionable for any reason, (d) is objectionable for any reason, or (e) in any manner violates the terms of this Acceptable Use Policy."
So, you're going to tell me that an ISP that states in their TOS that they can terminate my service for downloading the latest "girls gone wild" video, or looking at porno pictures can't tell me I have to use a firewall?? |
|
izy
Premium,MVM
join:2000-09-21
Naples, FL
| said by N3OGH :So, you're going to tell me that an ISP that states in their TOS that they can terminate my service for downloading the latest "girls gone wild" video, or looking at porno pictures can't tell me I have to use a firewall?? Yup, they can monitor/restrict the flow of data to and from your computer but they can not tell you what software you must have installed on your PC. Now if they forced users to run a hardware firewall that would be great, but if my ISP told me to run a software firewall I'd drop them like a bad habit. |
|
moonpuppy
join:2000-08-21
Glen Burnie, MD
·Verizon Online DSL
| reply to izy
said by izy :I'd have to disagree. ISP's cannot "force" users to run anything on their computers. The can "advise" but not "force" said by izy :It is however an ISP's responsibility to prevent network abuse on THEIR networks, such as a hosted phishing site. The above 2 statements seem to be playing both sides of the field.
If someone is affecting network performance because they have been comprimised, then the ISP is well within their rights to disconnect them until they fix their machine. Therefore, they can "force" a customer to clean their system or not be allowed back on.
The very same argument can be used to those so-called "bandwidth hogs" that others complain about when they use too much downloading whatever they want.
ISPs need to be careful that they don't siconnect just anyone and use the "comprimised system" excuse to cover up a mistake. That being said, I have seen many of the scams exposed here and they have more than enough evidence to support their claims. |
|
izy
Premium,MVM
join:2000-09-21
Naples, FL
1 edit | said by moonpuppy :If someone is affecting network performance because they have been comprimised, then the ISP is well within their rights to disconnect them until they fix their machine. Therefore, they can "force" a customer to clean their system or not be allowed back on. You need to re-read my statement. |
|
moonpuppy
join:2000-08-21
Glen Burnie, MD | I did. A few times actually.
A user can be forced to run anti-malware progrmas IF they have been compromised once before if they want to be allowed back on the network. |
|
