Are you people serious? The list would have have thousands of entries a
day if it only took one annoyance to blacklist an entire site on every
pseudo-secure router on the 'Net!
What happens if a hacker breaks in to a not-especially-secure edu site
and then uses that as a launching point for other breakins; would
that site be on everyone's list in 24.1 hours? What happens to
malicious users that attack from, say, netcom sites; suddenly, no
one at your site can get any mail (directly) from anyone using netcom
service.
Shouldn't something like this be handled by a mediatory agency, say,
like CIX? I fully understand the idea of `eliminating the threat' of
deviant users, but to trust simple tcp/ip headers and higher-level
info to give the correct information, further to effectively
disconnect a site from the parts of the Internet, and to do this
on an Internet-wide scale, is not a good thing in the long run.
(I vote for the ident protocol.)
--
Mark R. Lindsey [][] South Georgia Digital Research Institute, 31602-9197
mark @
nox .
cs .
du .
edu [][] http://nox.cs.du.edu:8001/~mark
|
|
