> Hello > > I was wondering what you are doing if some of your customer > (Internetuser) makes scanns to other server and the victim sends > warnings to you to prevent or to stop this action. I usually sends an > e-mail or I take a phonecall to the "hacker" to stop > immediately or to > check if there is some virus in the system.
If it's a virus then you should advice him to re-install his computer fully. If the user is causing those scans with the knowledge that he's doing something "bad" then you might take a deeper look into it. If the other isp simple wants you to stop then you should consider to contact the "hacker" and let him know that he should stop, or disable (temporary or full) his account. (we're talking about portscan's only now - right?) However as far I am aware of - portscanning ain't illegal in switzerland. > Should we as provider take care what the customer is doing? Are we > responsible for that? I'm just curious ... You should start "care" what customers are doing. Right now most of the investigation on DoS/Hacking preventation is coming from the willness of ISP's to deal with it. If you start to ignore requests of other isp's to help out, we may end in ticking timebomb. Regards, -Michael Dornbierer ---------------------------------------------- [EMAIL PROTECTED] Maillist-Archive: http://www.mail-archive.com/swinog%40swinog.ch/
