ISP's are paid by there customers to provide internet access. Sometimes in the form of direct access, other times in theform of hosting services.

During times of Denial of Service (DoS) attacks like anyone they try to stop the attack first, fair enough, but in several cases they are dropping the customer for the "greater good" of the rest of the customers... but is it, they kill the target of the DoS attack, but how is the person that started going to know this? And what about the ISP that then picks up the customer?

ISP's need to realise they are being paid by that customer too, dropping them doesn't solve anything, they should be doing there best to work with other ISP's to find the source. and then working with those ISP's in dealing with that threat.

I myself have seen this happen, but it needs to happen more, any ISP that drops a customer because said customer was the target of a DoS attack must realise they are opening themselves up for crippling lawsuits for not providing the service the customer paid for. ISP's should remember that a DoS attack prevents them from providing a server they are being paid to provide and therefore should go after the source, not the target.

Article by xplora.