[91460] in North American Network Operators' Group
Re: AW: mitigating botnet C&Cs has become useless
daemon@ATHENA.MIT.EDU (Gadi Evron)
Mon Jul 31 01:38:22 2006
Date: Mon, 31 Jul 2006 00:37:52 -0500 (CDT)
From: Gadi Evron <ge@linuxbox.org>
To: Gunther Stammwitz <gstammw@gmx.net>
Cc: nanog@merit.edu
In-Reply-To: <000801c6b41f$ded848a0$0300080a@GSBT>
Errors-To: owner-nanog@merit.edu
On Sun, 30 Jul 2006, Gunther Stammwitz wrote:
> The really interesting question is when botnets are going to use
> p2p-technologies since one wouldn't know how to stop them then.
> Please let that never happen....
>
I am not sayin gyou are wrong, or that dynamic channels won't happen far
more widely. Currently they are not widely used as they are not
needed. Web, IRC, etc. are quite efficient.
That said, there is one problem to solve with every evolved C&C, the more
complex it is the easier it is to follow.
Gadi.
