Re: [cobalt-users] German ISPs (was: dip.t-dialin.net IP Range)

[Michael Weil <weil@xxxxxxxx>]

"Jeffery L. JT Vogt" schrieb:
> 
> Michael,
> 
> Wie gehts.

Sehr gut, danke :))
(Means "very fine, thanks")
 
> >The special problem with dip.t-dialin.net is :
> >Most of the german script kiddies are using this ISP because they are
> >almost the only one to provide Germany with a flatrate AND DSL for a low
> >price - so they can keep their computer online all day and scan and scan
> >and scan :(((
> 
> That may, indeed, be the case, but it doesn't excuse T-Online or any
> other ISP from the rather apathetic attitude they take toward security.

Sure. T-Online is having security problems all the time, not only
portscans coming from them, but also the problems with their
support/abuse handling.
The Problem is, they really don't care a lot about other people - even
their own users :(
Except for company customers as we are :)

> The response I've received from them (when I've gotten something more
> than a stock "form letter reply", including via telephone, has been, in
> essence, "Oh well, we don't have to do anything about it, so, who cares."
> 
> I daresay they would be alot less happy if it were happening to them on
> a large scale or, as others and myself have opined, a concerted,
> coordinated effort to blackhole their routes came about.

That might help, but how do they get notice of this ?
Most users, as still most of T-Online users are new to the internet,
will think "i must have done something wrong".

How about kind of blackholing email originating from T-online.de
auto-replying with "T-Online is having security problems and do nothing
about it" ?
That would tell the users what the problem is and T-Online will very
fastly be confronted with this problem.
Besides that would be the solution of the problem of blackholing an
unknown range of IPs.

best regards
Michael