 
phattieg
join:2001-04-29
Winter Park, FL
 ·Verizon Wireless B..
·Sprint Mobile Broa..
| WOW, it took them this long... You know, it DOES suck that people have to be constantly subjected to attacks by these infections. You would think that the attackers would have done this sooner, but then again, I would imagine it's more time consuming to edit a page, and wait for your bots to come to it, versus just popping in a chatroom the bots are always in, and issue the command in realtime. Either way, this is no different than tracking BitTorrent files, as you have to have a point of reference in either case. It won't be long before there is trackers for this too. Give it to ol' Steve Gibson (www.grc.com). He'll have fun scaring the kids doing it.
--
SIPPhone/Gizmo # 17476200648 / PIMPNET Chatline / Ran by Asterisk & Slackware 10.1. | |
| BosstonesOwn
join:2002-12-15
Everett, MA
clubs:
 ·Comcast
·Comcast Formerly ..
| hmm Makes it easier to disrupt and take control over also. Should be as easy as hijacking the domain or even the ip with a known good page or what ever is used to control the bot net.
If they use a domain they simply hijack the ip it looks up to until they break the net.
if they use an ip they can request the ip from the isp and just run a config to allow the systems to patch themselves then uninstall the bot software and backdoor or user that they used to gain access.
--
"It's always funny until someone gets hurt......and then it's absolutely friggin' hysterical!" | |
|  | 
shane349
Premium
join:2005-03-21
Delta, OH | Re: hmm you cant hijack an ip.. if i want an ip from the planet rr will laugh at me. dont see that happening.. if that could be done, i would believe alot more irc servers wouldnt be here right now.. | |
| | | 
Fatal Vector
join:2005-11-26
| Re: hmm
For every scheme this scum can come up with, there is a counter. They may be clever, but there are a lot more people out there just as clever, if not more so. Just give it a little time. Sooner or later, the scum will run out of places to hide ad the pressure mounts. | |
| | | | 
dvd536
as Mr. Pink as they come
Premium
join:2001-04-27
Phoenix, AZ
| IRC IRC was the elegant way to do this. worked great until channels / servers started getting locked then the bots couldn't join. the same thing would happen with a web server. remove the page/access and your whole army goes AWOL. lol
--
You can never be too rich, too thin or have too much Bandwidth | |
| | 
lucky644
Premium
join:2002-02-04
| Re: IRC said by dvd536  :IRC was the elegant way to do this. worked great until channels / servers started getting locked then the bots couldn't join. the same thing would happen with a web server. remove the page/access and your whole army goes AWOL. lol Not difficult if you hack into a unsecure server somewhere and install your own IRC network.
Channels won't get locked or closed, all you have to worry about is the server going down, which is why you have several... | |
| | | |
|
|
IRC Botnet Control No Longer Fashionable