What are people doing about this? Is anyone planning to blanket whitelist UDP/123 like most residential ISPs currently do for SMTP? Port scanning their customers pre-emptively to see who's vulnerable? Keeping an eye on rate shapers to see odd bursts in upload speed?