Schneier: ISPs should bear security burden

None -- when you disconnect [correct, block, whatever]
abusive end-systems in your administrative domain. Act
locally, think globally.

In fact, an ISP in AUS just did this last week...

- ferg

I have no problem with disconnecting known abusers. However, there's
lots of other actions implied in the "ISP responsibility" described
that are things like filtering port 25, blocking NetBIOS, etc.
Some ISPs do this.

I'm all for having an AUP and/or TOS that allows you to disconnect
abusers. When I was working for various ISPs, I personally disconnected
a number of such abusers.

However, IMHO, disconnecting abusers is a far cry from "Providing a
clean internet".