How do you fight botnets? With rationalism, or with radicalism?
South Korea's recently proposed Zombie PC Prevention Bill, aims to fight them with common sense - by making security software mandatory on users' PCs. What's particularly interesting about the bill, is the backdoor left open, empowering the government to “examine the details of the business, records, documents and others” of users and companies who do not comply.
More details on the bill:
In the past there have been numerous cases of enforced best practices, or how the lack of such may lead to unpleasant results:
What the MPs seem to have forgotten is the fact that antivirus software only mitigates a certain percentage of the risk, and is only part of a well developed defense in depth strategy. Multiple independent reports and tests show that despite that users are running antivirus software, they still get infected with malware.
What do you think is the best way to fight botnets? Rationalism or radicalism. Is running security software a duty, or has the time come for ISPs to take care of their own backyards.