> So you're saying that business networks typically have completely random IPs setup by their ISP?
No. If 3taps was using a static IP address to
access Craigslist, then IP address is at least
somewhat meaningful as evidence, but mostly
Internet users do not have static IP addresses
and mostly only organizations that want to
operate Internet servers, or Web servers,
do. Why? Because mostly to get to a server,
a user uses a domain name which uses the
domain name system (DNS) which requires
a static IP address.
Yes, in the specific case 3taps asked for trouble
and got it.
But the article seems to suggest that this case
is a threat to ordinary Internet users who,
maybe, get an unusually large number of Web pages
from a Web site. So, there is also some interest
in the more general situation. There IP address
is poor evidence.
To me, in the general case, say, Web sites that
send data to anonymous users, without strong
authentication, etc., should just f'get
about the lawyers, suck it up, and f'get about
users downloading data. Else the Web site
can use strong authentication of users,
charge for access to the site, etc.
The article, and the court case it references, are about 3Taps. 3Taps had a static IP which was banned, and additionally received a Cease and Desist letter. The court case is very clear that the combination of these factors demonstrate that 3Taps' access had been revoked, and that therefore their continued access (through proxies) constituted an intentional, unauthorized access of a protected system.
If the article "seems to suggest" something other than that, either the article is wrong, or you're reading it wrong. This is only a threat to "ordinary" internet users if they're given clear indication that they are no longer allowed to use a site (something like a C&D letter to go along with an account or IP ban.)
No. If 3taps was using a static IP address to access Craigslist, then IP address is at least somewhat meaningful as evidence, but mostly Internet users do not have static IP addresses and mostly only organizations that want to operate Internet servers, or Web servers, do. Why? Because mostly to get to a server, a user uses a domain name which uses the domain name system (DNS) which requires a static IP address.
Yes, in the specific case 3taps asked for trouble and got it.
But the article seems to suggest that this case is a threat to ordinary Internet users who, maybe, get an unusually large number of Web pages from a Web site. So, there is also some interest in the more general situation. There IP address is poor evidence.
To me, in the general case, say, Web sites that send data to anonymous users, without strong authentication, etc., should just f'get about the lawyers, suck it up, and f'get about users downloading data. Else the Web site can use strong authentication of users, charge for access to the site, etc.