nanog mailing list archives
Re: dealing with w32/bagle
From: "Sam Stickland" <sam_ml () spacething org>
Date: Fri, 5 Mar 2004 11:54:08 -0000
Curtis Maurand wrote:
On Thu, 4 Mar 2004, Laurence F. Sheldon, Jr. wrote:Jeff Shultz wrote: There are others. unquoteBut nothing that's been developed. Joe user's ip address changes on a regular basis. One would still need to find that machine. DNS gets cached (some go past TTL's I've set.) and is too static to be an effective means to get a file. Most instant messengers have facilities for exchanging files, but both sides need to be connected at the same time. Having that file in an email is better. I like SCP, too. It works well, so well that I use that, instead of ftp. You still have to find the other end that has its address changed every day or two. With email, only one end needs to be connected at any one time. email is about the most convenient and easiest way that I know of to get pictures of little Johnnie to Grandmother in a way that is easy for her to understand. Whatever anyone proposes needs to be that easy. Chances are that Grandma's not a geek like most of us.
In terms of whether the system is open to abuse or not, part of the problem is simplicity you need to achieve for it to take off in the first place. If it's simple, it can be automated. If it can be automated it's open to automated abuse. (NB/OT: Perhaps the only solution is systems that can detect when they are being abused and do something to force manual intervention. That could take whatever form it needs to, from manual account reactivation, more passwords, or reverse turing tests - depending on which party is required to take action. But I don't see systems like this being developed and deployed anytime soon ;) )
Current thread:
- Re: dealing with w32/bagle, (continued)
- Re: dealing with w32/bagle Dominic J. Eidson (Mar 03)
- Re: dealing with w32/bagle Jeffrey I. Schiller (Mar 03)
- Re: dealing with w32/bagle Chris Edwards (Mar 03)
- Re: dealing with w32/bagle Curtis Maurand (Mar 03)
- Re: dealing with w32/bagle Laurence F. Sheldon, Jr. (Mar 03)
- Re: dealing with w32/bagle Curtis Maurand (Mar 04)
- Re: dealing with w32/bagle Jeff Shultz (Mar 04)
- Re: dealing with w32/bagle Laurence F. Sheldon, Jr. (Mar 04)
- Re: dealing with w32/bagle Crist Clark (Mar 04)
- Re: dealing with w32/bagle Curtis Maurand (Mar 04)
- Re: dealing with w32/bagle Sam Stickland (Mar 05)
- One hint - how to detect invected machines _post morten_... Re: dealing with w32/bagle Alexei Roudnev (Mar 05)
- Re: dealing with w32/bagle Valdis . Kletnieks (Mar 05)
- Re: dealing with w32/bagle Richard Welty (Mar 05)
- Re: dealing with w32/bagle Roland Perry (Mar 04)
- Re: dealing with w32/bagle Stephen Milton (Mar 04)
- Re: dealing with w32/bagle Curtis Maurand (Mar 04)
- Message not available
- Re: dealing with w32/bagle JC Dill (Mar 05)
- Re: dealing with w32/bagle Jeff Shultz (Mar 05)
- The attachment mess, was w32/bagle David Lesher (Mar 05)