[51241] in North American Network Operators' Group
Re: Eat this RIAA (or, the war has begun?) - Why not all ISPs?
daemon@ATHENA.MIT.EDU (Valdis.Kletnieks@vt.edu)
Wed Aug 21 23:16:54 2002
To: Richard A Steenbergen <ras@e-gerbil.net>
Cc: nanog@merit.edu
In-Reply-To: Your message of "Wed, 21 Aug 2002 21:30:27 EDT."
<20020822013027.GW53265@overlord.e-gerbil.net>
From: Valdis.Kletnieks@vt.edu
Date: Wed, 21 Aug 2002 23:13:39 -0400
Errors-To: owner-nanog-outgoing@merit.edu
--==_Exmh_-438295464P
Content-Type: text/plain; charset=us-ascii
On Wed, 21 Aug 2002 21:30:27 EDT, Richard A Steenbergen said:
> And what IPs precisely are you planning to deny? So far its all idle
> threats, we have no idea where they plan to launch their scans or hacking
> attempts from, or even if they have any clue how to hack anything. I
> highly doubt they'll be attaching riaa.com to it either.
If you read the URL originally referenced, they intend to blackhole riaa.com
itself, and then run a honeynet gnutella network. Anything that pokes their
Gnutella and then does anything else on their net that looks suspicious will
get blackholed.
Just imagine it - lots and lots of ISPs running honeynet Gnutellas, and if
you poke around in it you get blackholed. That would make the RIAA's day. ;)
--
Valdis Kletnieks
Computer Systems Senior Engineer
Virginia Tech
--==_Exmh_-438295464P
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)
Comment: Exmh version 2.5 07/13/2001
iD8DBQE9ZFbjcC3lWbTT17ARAvx/AJkBIULMhF9JJncVJqozXfzl8l01lQCeLCwy
Xcir1rgOyUu3vzcQaPLqjOc=
=fgK+
-----END PGP SIGNATURE-----
--==_Exmh_-438295464P--
