[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Botnets and tracking and busting scriptkiddies

To: Egoist <mastah@xxxxxxxxxxxx>
Subject: Re: [Full-disclosure] Botnets and tracking and busting scriptkiddies
From: Michael Holstein <michael.holstein@xxxxxxxxxxx>
Date: Mon, 14 Mar 2005 15:47:28 -0500

DD> Now simply do a /join #badguyschan key DD> The first thing you want here is the topic which will tell you what the DD> Handel of the attacker is and what date he set up this bot net DD> If he is in channel do a /uwho and a /dns to get his ip to hand over to DD> the victim companies and or the feds for a quick crucifiction ,

Crucial point missed : don't do any of this from your primary Internet connection unless you can weather the storm of a pissed-off scriptkiddie with 3000 bots on cablemodems (guess who figured this one out the hard way a few years ago?).

A $9/mo dialup or a dsl that has "real" dynamic addressing is a *very* good idea when investing and/or aggrivating botnet controllers.

Happy whacking...

Michael Holstein CISSP GCIA
Cleveland State University.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://www.secunia.com/

References:
- RE: [Full-disclosure] Botnets and tracking and busting scriptkiddies
  - From: Dominique Davis
- Re[2]: [Full-disclosure] Botnets and tracking and busting scriptkiddies
  - From: Egoist

Prev by Date: Re: [Full-disclosure] Re: Microsoft to give holes info to Uncle Sam first
Next by Date: RE: [Full-disclosure] Good security books
Previous by thread: Re[2]: [Full-disclosure] Botnets and tracking and busting scriptkiddies
Next by thread: RE: [Full-disclosure] Good security books
Index(es):
- Date
- Thread