nanog mailing list archives

Re: [nanog] Re: Over a decade of DDOS--any progress yet?

From: Aaron Peterson <aaron_peterson () harvard edu>
Date: Wed, 08 Dec 2010 11:30:37 -0500

Hello:

On 12/8/10 10:43 AM, JC Dill wrote:

 On 08/12/10 4:28 AM, Arturo Servin wrote:
One big problem (IMHO) of DDoS is that sources (the host ofbotnets) may be completely unaware that they are part of a DDoS. I donot mean the bot machine, I mean the ISP connecting those.
ISPs are not the source. The source is Microsoft. The source istheir buggy OS that is easily compromised to enable the computers tobe taken over as part of the botnet.

Many third party vendors like Adobe, Sun and others are just as culpablein this sense, if not more. A large majority of the vulnerabilitiesleveraged to deploy modern malware / botnets come from these client-sideapplications (e.g. flash, reader, java, etc) and not the OSspecifically. It's beyond the point that we can blame just Microsoft.Yes, they can get better, but they've actually made great strides insoftware security in the last few years. Now that the other vendors arestarting to feel the pain, hopefully they'll start to follow suit.



Aaron

Current thread:

Re: Over a decade of DDOS--any progress yet?, (continued)
- Re: Over a decade of DDOS--any progress yet? James Hess (Dec 07)
- Re: Over a decade of DDOS--any progress yet? Jed Smith (Dec 08)
- Re: Over a decade of DDOS--any progress yet? Arturo Servin (Dec 08)
  - Re: Over a decade of DDOS--any progress yet? Dobbins, Roland (Dec 08)
  - Re: Over a decade of DDOS--any progress yet? JC Dill (Dec 08)
    - Re: Over a decade of DDOS--any progress yet? Jack Bates (Dec 08)
    - Re: Over a decade of DDOS--any progress yet? Seth Mattinen (Dec 08)
    - Re: Over a decade of DDOS--any progress yet? Curtis Maurand (Dec 09)
    - Re: Over a decade of DDOS--any progress yet? Greg Whynott (Dec 09)
    - Re: Over a decade of DDOS--any progress yet? Simon Leinen (Dec 11)
    - Re: [nanog] Re: Over a decade of DDOS--any progress yet? Aaron Peterson (Dec 08)
    - Re: Over a decade of DDOS--any progress yet? Valdis . Kletnieks (Dec 08)
    - Re: Over a decade of DDOS--any progress yet? JC Dill (Dec 08)
    - Re: Over a decade of DDOS--any progress yet? Matthew Petach (Dec 09)
    - RE: Over a decade of DDOS--any progress yet? George Bonser (Dec 09)
    - Re: Over a decade of DDOS--any progress yet? Lamar Owen (Dec 09)
    - Re: Over a decade of DDOS--any progress yet? Rich Kulawiec (Dec 09)
    - Re: Over a decade of DDOS--any progress yet? Matthew Petach (Dec 09)
    - Re: Over a decade of DDOS--any progress yet? Valdis . Kletnieks (Dec 09)
- Re: Over a decade of DDOS--any progress yet? alvaro.sanchez () adinet com uy (Dec 08)
  - RE: Over a decade of DDOS--any progress yet? Drew Weaver (Dec 08)

(Thread continues...)