Re: Recent Attacks

[Iván Arce <core.lists.firewall-wizards () core-sdi com>]

Don Kendrick wrote:
> Yeap, that what we just finished doing in Virginia. Had a copycat come after
> us Sunday morning. Tracked him down within 2 hour of the attack and he was
> sitting in jail within 24 hours of the attack for felony computer trespass.
>
> Hit em hard and fast.
>
> Don

Don,
 im glad for you but you know...

 that wont solve the problem

 it only solves the symptoms, are you going to turn into a skript-kiddie
chaser
 for life?
 As opposed to the you and Marcus, i believe that examplatory punishment
does not
 prevent other potential criminals from doing their dirty deeds.
 At least history has not proved me wrong so far...
 
 What we need is to prevent the attack from being performed not to send
ICBMs to
 the house of the attacker, that will just make you feel good, it wont
 minimize the damage or pay your losses.


> -----Original Message-----
> From: Marcus J. Ranum <mjr () nfr net>
> To: Ryan Russell <ryan () securityfocus com>; hnd () asu edu <hnd () asu edu>
> Cc: firewall-wizards () nfr net <firewall-wizards () nfr net>
> Date: Tuesday, February 15, 2000 7:38 PM
> Subject: Re: Recent Attacks
>
> > Ryan Russell wrote:
> > > I expect to see ransom demands (either the real attackers or just
> > > opportunists) become announced to the press any time now.
> >
> > That'd be interesting because it'd clear up the issue of motivation!!
> >
> > I've always been bemused by the whole denial of service thing. It
> > seems so pointless. It's just vandalism; not even as cool as virus
> > writing, and virus writing is very uncool.
> >
> > If I was Bezos, I'd offer some amazon.com options for whoever
> > turned in the culprit and sufficient evidence. Then I'd litigate
> > the culprit back to the stone age, including his friends, parents,
> > business associates, school, etc. - anyone involved. Crush 'em
> > real hard, real mean, and real openly.
> >
> > mjr.

btw, what if the culprit turns him/herself in for the stock? and uses
it to pay for the legal advice,etc. 
The guy goes to jail and 10 years from now, when hes out, a fat bank
account will surely keep him out of the net and those evil DDOSes.

erhmm, might be a good idea...

no wait, better yet, instead of litigate, why no just shoot the culprit,
you cant be sure with these people, they keep coming back for more...

-ivan


-- 
"Understanding. A cerebral secretion that enables one having it to know
 a house from a horse by the roof on the house,
 It's nature and laws have been exhaustively expounded by Locke,
 who rode a house, and Kant, who lived in a horse." - Ambrose Bierce


==================[ CORE Seguridad de la Informacion S.A. ]=========
Iván Arce
Presidente
PGP Fingerprint: C7A8 ED85 8D7B 9ADC 6836  B25D 207B E78E 2AD1 F65A
email: iarce () core-sdi com
http://www.core-sdi.com
Pte. Juan D. Peron 315 Piso 4 UF 17
1038 Capital Federal
Buenos Aires, Argentina.              Tel/Fax : +(54-11) 4331-5402
Casilla de Correos 877 (1000) Correo Central
=====================================================================

--- For a personal reply use iarce () core-sdi com