Security Incidents mailing list archives

Re: Disassembling botnets

From: Harlan Carvey <keydet89 () yahoo com>
Date: Wed, 6 Apr 2005 07:11:53 -0700 (PDT)

I really want to have those responsible brought
to justice, but based on my complaints to previous
ISPs of the largest attackers on the DDoS net, I'm
afraid all I'll get is a canned "We have informed
the customer" or similar response.


For what it's worth, I can see part of the issue
here...you want the perps brought to justice, but
you're telling the ISP.  If you want justice, why
aren't you calling law enforcement?





------------------------------------------
Harlan Carvey, CISSP
"Windows Forensics and Incident Recovery"
http://www.windows-ir.com
http://windowsir.blogspot.com
------------------------------------------

--------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it with real-world attacks from 
CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 
to learn more.
--------------------------------------------------------------------------

Current thread:

Disassembling botnets Z (Apr 06)
- RE: Disassembling botnets P.B. Wagenaar (Apr 06)
  - Re: Disassembling botnets Felikz (Apr 06)
- <Possible follow-ups>
- Re: Disassembling botnets Harlan Carvey (Apr 06)
- Re: Disassembling botnets Jeff Bryner (Apr 06)