Language Selection

English French German Italian Portuguese Spanish

Mock trial shows ISPs aren't to blame

Filed under
Security

Your Internet service provider isn't to blame if your company is hit with a distributed denial-of-service attack. That was the verdict of IT security professionals in a mock trial staged by Gartner at its IT Security Summit last month, in which ISPs were charged with not doing enough to keep subscribers' computers from being compromised and used as tools in attacks on corporate networks.

The plaintiffs, two fictional companies, argued that ISPs could do more to prevent so-called zombie machines from being used in attacks if they scan subscribers' computers, monitor traffic and shut down suspicious network uses. Real-life cybersecurity lawyer Ben Wright compared the ISPs' lack of enforcement to the owner of a dangerous piece of property (such as a shooting range) who doesn't buy a fence to keep others out.

But Stewart Baker, a partner with Steptoe & Johnson, who defended the fictional ISPs, argued that it would be a violation of privacy for ISPs to check subscribers' computers. Baker suggested that it's a computer owner's responsibility to protect against malicious viruses and worms.

The audience of hundreds of IT security professionals served as the jury, using electronic voting boxes to record their opinions. Only 30 percent backed the fictional plaintiffs. Fifty-four percent supported the ISP position, and 16 percent chose neither.

In a distributed denial-of-service attack, hackers often take over thousands of computers by sending out a worm that collects them, through an Internet relay chat server, into a network called a botnet. The bad guys then use these machines to mass attack and crash a Web server.

Source.

More in Tux Machines

Software: Narabu, ucaresystem, Telegram Messenger

  • Introducing Narabu, part 2: Meet the GPU
    Narabu is a new intraframe video codec. You may or may not want to read part 1 first. The GPU, despite being extremely more flexible than it was fifteen years ago, is still a very different beast from your CPU, and not all problems map well to it performance-wise. Thus, before designing a codec, it's useful to know what our platform looks like.
  • ucaresystem Core v4.0 : Added option to upgrade Ubuntu to the next release
    Since Ubuntu 17.10 has just been released, I have added new feature to the ucaresystem Core that can be used by the user to upgrade his distribution to the next stable version or optionally to the next development version of Ubuntu. For those who are not familiar with the ucaresystem app it is an automation script that automatically and without asking for your intervention performs some crucial Ubuntu maintenance processes, which otherwise would be done one by one and pressing Y / N each time.
  • 10 Reasons Why I Switched To Telegram Messenger
    Whatsapp may be the best player in the game when it comes to instant messaging apps, but Telegram Messenger is the entire game itself. Because Telegram is not just an app, it is an entire communication platform. It is not bound by restrictions or limitations like other apps.

Graphics and Games: RandR and AMDGPU, Opus Magnum

  • "NonDesktop" Proposed For RandR: Useful For VR & Apple Touch Bar Like Devices
    Besides Keith Packard working on the concept of resource leasing for the X.Org Server and resource leasing support for RandR, he's also now proposing a "NonDesktop" property for the Resize and Rotate protocol. The resource leasing has already been worked out as a candidate for the next update, RandR 1.6, while now this veteran X11 developer is proposing a new "NonDesktop" property for identifying outputs that are not conventional displays.
  • More AMDGPU Changes Queue For Linux 4.15
    Adding to the excitement of Linux 4.15, AMD has queued some more changes that were sent in today for DRM-Next. Already for Linux 4.15, the AMDGPU Direct Rendering Manager driver should have the long-awaited "DC" display stack that brings Vega/Raven display support, HDMI/DP audio, atomic mode-setting and more. Other pull requests have also brought in a new ioctl, UVD video encode ring support on Polaris, transparent huge-pages DMA support, PowerPlay clean-ups, and many fixes, among other low-level improvements.
  • Opus Magnum, the latest puzzle game from Zachtronics, is released into Early Access
    The developers behind the challenging puzzle games TIS-100 and SHENZEN I/O are at it again and have released their latest title into Steam’s Early Access today.
  • Open your wallets, there's some great Linux games on sale right now
    It's time to throw your wallet at your screen, as we're going to take a look at some awesome Linux games on sale.

System 76 and Purism Laptops

  • POP!_OS is a developer-focused minimalist Linux distro from System 76
    There aren’t that many Linux hardware manufacturers around. Of the few that exist, System 76 is amongst the most well-known. It offers a slew of laptops and desktops, all shipping with the popular Ubuntu distro pre-installed, saving customers hours of wasted time dealing with driver hell. But it recently announced it’s changing gears and creating its own Linux distro, which will replace Ubuntu on its systems, called POP!_OS.
  • Purism’s Linux laptops now ship with Intel Management Engine disabled
    Most computers that ship with recent Intel processors include something called Intel Management Engine, which enables hardware-based security, power management, and remote configuration features that are not tied to the operating system running on your PC. For free software proponents, this has been a pain in the behind, because it’s a closed-source, proprietary feature designed to provide remote access to a computer even when it’s turned off. While it’s designed to provide security, it also poses a potential security and privacy threat, since it’s a proprietary system that can only be patched by Intel
  • Purism Now Shipping Their Laptops With Intel ME Disabled
    Purism has announced today all laptops to be shipping from their company will now have the Intel Management Engine (ME) disabled. Thanks to work done by security researches in recent years for finding ways to disable ME, especially in light of recent security vulnerabilities, Purism's Coreboot-equipped laptops are now shipping with ME disabled out-of-the-box. Those already with a Librem laptop are able to apply a firmware update to also disable it.

Ubuntu Leftovers: GNOME, Birthday and More