nanog mailing list archives
Re: short Botnet list and Cashing in on DoS
From: Gadi Evron <ge () linuxbox org>
Date: Sat, 09 Oct 2004 06:08:08 +0200
Only when they do something about it.
Trouble? When they have 40K extra users to pay for bandwidth (easily eats up a T1 or two), it's damage enough. Besides, would you like someone to launch "cyber A-Bombs" (phaa) from your network?
1. Worrying about personal privacy of their users, not wanting to bend too many rules to fight these drones that *appear* like regular users.Appear? If you own one of the blocks below, please do something about it.
And I know people who mail abuse reports for hundreds of such *lists*, something /rarely/ gets done.
One thing they focus on it taking down control web pages. For example if the runner would give a command: 'update http://etc.com/evil.trojan.exe' or if the drones spam themselves on irc.. then it's all about the abuse teams. Some are really responsive, some just ignore.
Last time I took the time to inform ISP's about such a list was when it was a 700 large army of *nix boxes. Haven't seen one of those for years before that. It was 3 months ago or so.
It was rather funny really. Lesson learned: don't use hostnames like "securebox" or "secureserver1" or such.
sadsa``` ~orion@67.98.36.19 Don't Touch Me `o`hj`h` ~orion@67.98.36.19 Don't Touch Me TaiFrunze ~orion@66.136.184.186 Don't Touch Me
{snip}I try and take care personally of drones and abusers I see coming from Israel.. it's way too much work and annoyance as it is, thanks though.
Most ISP's truly don't want this as their own problem. I personally don't blame them. Luckily the ISP I work for has no home users.
If you have any problem in Israel, whether with finding a contact or reaching law enforcement - feel free to email me and I'd be glad to find you a contact.
Gadi.
Current thread:
- Re: short Botnet list and Cashing in on DoS, (continued)
- Re: short Botnet list and Cashing in on DoS Randy Bush (Oct 07)
- RE: short Botnet list and Cashing in on DoS Hannigan, Martin (Oct 07)
- Re: [nanog] RE: short Botnet list and Cashing in on DoS Dan Mahoney, System Admin (Oct 07)
- Re: short Botnet list and Cashing in on DoS Gadi Evron (Oct 07)
- Re: short Botnet list and Cashing in on DoS Paul Vixie (Oct 07)
- Re: short Botnet list and Cashing in on DoS Randy Bush (Oct 07)
- RE: short Botnet list and Cashing in on DoS Drew Weaver (Oct 08)
- Re: short Botnet list and Cashing in on DoS Matthew S. Hallacy (Oct 08)
- Re: short Botnet list and Cashing in on DoS Gadi Evron (Oct 08)
- Re: short Botnet list and Cashing in on DoS Matthew S. Hallacy (Oct 08)
- Re: short Botnet list and Cashing in on DoS Gadi Evron (Oct 08)
- Fixing stuff (was Re: short Botnet list and Cashing in on DoS) Sean Donelan (Oct 09)
- Re: Fixing stuff (was Re: short Botnet list and Cashing in on DoS) Stephen J. Wilcox (Oct 09)
- Re: Fixing stuff (was Re: short Botnet list and Cashing in on DoS) Mikael Abrahamsson (Oct 09)
- Re: Fixing stuff (was Re: short Botnet list and Cashing in on DoS) Gadi Evron (Oct 09)
- Re: Fixing stuff (was Re: short Botnet list and Cashing in on DoS) Sean Donelan (Oct 10)
- Re: short Botnet list and Cashing in on DoS Matthew S. Hallacy (Oct 08)
- Re: short Botnet list and Cashing in on DoS Ricardo "Rick" Gonzalez (Oct 09)
- Re: short Botnet list and Cashing in on DoS Andrew D Kirch (Oct 12)
- Re: short Botnet list and Cashing in on DoS Richard A Steenbergen (Oct 13)
- Re: short Botnet list and Cashing in on DoS David Barak (Oct 13)
- Re: short Botnet list and Cashing in on DoS william(at)elan.net (Oct 13)