Fridrik Skulason <frisk(_at_)f-prot(_dot_)com> wrote:
In an ideal world, yes. In practice this may be somewhat more difficult
than you expect. Consider the following: anyone who "allows" his machine
to be compromised in the first place might simply not consider security
to be high priority, and may not respond to a notification that his
system is compromised by closing the security hole.
Then you add them to a blacklist based on domain names.
Problems in one area of the network should not affect other,
well-behaved, areas of the network.
Alan DeKok.
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg