[70657] in North American Network Operators' Group
Re: handling ddos attacks
daemon@ATHENA.MIT.EDU (Danny McPherson)
Thu May 20 23:17:02 2004
In-Reply-To: <Pine.BSF.4.58.0405202208150.25986@manganese.bos.dyndns.org>
From: Danny McPherson <danny@tcb.net>
Date: Thu, 20 May 2004 21:15:48 -0600
To: NANOG <nanog@merit.edu>
Errors-To: owner-nanog-outgoing@merit.edu
On May 20, 2004, at 8:10 PM, Tim Wilde wrote:
>
> Call your local branch of the US Secret Service, if you're in the
> states,
> and ask for their electronic crimes division. If you're not in the
> states, contact your comprable local authority. They can work with
> you to
> coordinate with other jurisdictions, etc.
>
> You may have some luck directly with the local police at the point of
> origin, but it generally helps to have a broader agency involved to
> coordinate matters.
I'd love to hear from anyone who has actually been successful
prosecuting an attacker for launching a "distributed" DOS attack.
I suspect it occurs very INfrequently (with the recent trend in
extortion aside, as it often results in "paper trails") --
unfortunately.
Any pointers?
-danny
