RE: DOS ATTACK

From: McCammon, Keith (Keith.McCammonat_private)
Date: Wed Oct 30 2002 - 13:41:47 PST

Next message: Gary Flynn: "Re: DOS ATTACK"

Previous message: Kurt Seifried: "Re: DOS ATTACK"
Maybe in reply to: Hunt, Jim: "DOS ATTACK"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[Let the flame wars begin...]

Well, first of all, law enforcement typically won't intervene unless it can be demonstrated that 1) the offense has resulted in considerable financial loss, or 2) some other law is being broken (i.e., the transfer of stolen CC numbers or kiddie porn).  Relative to large-scale DDoS attacks and credit card theft, bandwidth loss due to excessive use of the iframe is going to take a long time to amass the numbers required to get someone's attention.

And secondly, why tie up already over-taxed LE resources, when 1) there is already a commonly-known complaint chain in place to deal with such things (report to technical contact, report to ISP, report to upstream, report to law enforcement), and 2) in the vast majority of cases a simple *technical* fix will correct the *technical* problem faster than anyone in the aforementioned chain could probably respond?  

Just some things to chew on :)

Cheers

Keith

> -----Original Message-----
> From: Gary Flynn [mailto:flynngnat_private]
> Sent: Wednesday, October 30, 2002 8:23 AM
> To: Incidentsat_private
> Subject: Re: DOS ATTACK
> 
> 
> 
> I believe it says a lot about the sorry state of the Internet
> when all the suggestions to a crime of vandalism or harassment
> consist of technical measures and nobody has suggested law
> enforcement. Are we all reduced to fiefdoms needing our own
> department of defense and without the protection of our
> legal system? Where else are such frequent crimes so nonchalantly
> expected and dealt with by the victim?
> 
> I realize that law enforcement probably has more pressing
> problems needing its limited resources but this is getting 
> pathetic.
> 
> -- 
> Gary Flynn
> Security Engineer - Technical Services
> James Madison University
> 
> Please R.U.N.S.A.F.E.
> http://www.jmu.edu/computing/runsafe
> 
> --------------------------------------------------------------
> --------------
> This list is provided by the SecurityFocus ARIS analyzer service.
> For more information on this free incident handling, management 
> and tracking system please see: http://aris.securityfocus.com
> 
> 

----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

Next message: Gary Flynn: "Re: DOS ATTACK"
Previous message: Kurt Seifried: "Re: DOS ATTACK"
Maybe in reply to: Hunt, Jim: "DOS ATTACK"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Oct 31 2002 - 11:25:05 PST