I'd love to see a technical solution to collect revenue from these leeches :-) On a more on-topic issue (hopefully Michael Newbury is reading this...), isn't it about time that the main carriers started allowing BGP community tagging for the purpose of blackholing DDoS targets? Technically, this isn't difficult to do - see http://www.secsup.org/CustomerBlackHole/ which gives examples for both Cisco & Juniper. Allowing this would help ISPs to achieve a quicker resolution to the problem, without having to get hold of an upstream engineer to put such a block in place (and remove it later). We all end up winning - we get greater control of our networks, and the carriers don't have their engineers tied up on after-hours callouts because a customer is being DoS'd Cheers, Gordon