lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Date: Sat, 18 Feb 2006 22:18:41 +0200
From: Gadi Evron <ge@...uxbox.org>
To: bugtraq@...urityfocus.com
Subject: [operational update] Looking behind the smoke screen of the Internet


In the following (quick & dirty) write-up (which is too big for sending
into bugtraq) I start by discussing some recent threats network 
operators should be aware of, such as recursive DNS attacks.

Also, a bit on the state of the Internet, cooperation across different
fields and how these latest threats with DDoS also relate to worms and
bots, as well as spam, phishing and the immense ROI organized crime sees.

Then I try and bring some suggestions on what can be done better, and
where we as a community, as well as specifically where us, the "secret
hand-shake clubs" of Internet security fail and succeed.

Over-secrecy, lack of cooperation, lack of public information, and not
being secret enough about what really matters.

On the surface you can read about the attacks, how registered domains
with a name created by a specific algorithm to serve as a botnet command
and control server, while spammers use name servers other than their own
to spamvertise from and switch back, while the DNS RR's change IP
addresses every few minutes.
Below the surface you will have to see what you understand as I get
different responses from different people.

Looking behind the smoke screen of the Internet: DNS recursive attacks,
spamvertised domains, phishing, botnet C&C’s, International
Infrastructure and you

The write-up can be found here:
http://blogs.securiteam.com/index.php/archives/298

Thanks,

	Gadi Evron.

-- 
http://blogs.securiteam.com/

"Out of the box is where I live".
	-- Cara "Starbuck" Thrace, Battlestar Galactica.

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ