[76696] in North American Network Operators' Group
Re: Botnet pointer
daemon@ATHENA.MIT.EDU (Fred Baker)
Mon Dec 20 17:07:09 2004
Date: Mon, 20 Dec 2004 13:52:01 -0800
To: "william(at)elan.net" <william@elan.net>
From: Fred Baker <fred@cisco.com>
Cc: "'nanog@merit.edu'" <nanog@merit.edu>
In-Reply-To: <Pine.LNX.4.44.0412201357340.958-100000@sokol.elan.net>
Errors-To: owner-nanog-outgoing@merit.edu
At 02:01 PM 12/20/04 -0800, william(at)elan.net wrote:
>Can somebody also share good definition of "BOT" and "BOTNET" for glossary
>and description of 2-4 lines? Should I also list it as synonymous with
>Zombie (bot being more hacker-oriented use and zombie being more toward
>spammer-oriented use)?
It is not really synonymous, but the distinction is subtle. How about:
"bot": derivative of "robot". An application on an infected computer used
for orchestrated attacks or for distributed generation of spam, often
distributed in or with viruses or other malware. Similar to "zombie", which
is an older usage specific to distributed denial of service attacks.
"botnet": a set of bots that may be controlled as a single service, and
which may be leased or sold to a user as a unit.
