Comments on: The World’s Biggest Botnets – Peer to Peer

By: zupakomputer

zupakomputer — Wed, 12 Mar 2008 12:57:25 +0000

Not meaning to pre-empt anything here topic-wise, but this caught my attention the other day because it’s exactly what I was thinking after learning a bit about router configuring:

http://blogs.zdnet.com/security/?p=919

:all the internal security on a LAN is going to mostly be wasted, if the routers are compromised – especially if they’re compromised to the extent that they aren’t just being bypassed but are being re-configured.

All in most of these problems only occur in the first place because people like to work remotely (well, who wouldn’t rather work @ home / roam around, if either-or are good places to be) therefore require being able to login remotely – has any major company invested in something like a network for VPN access (ie – over the internet) that isn’t directly part of the same secure inner company network; a system that say updates via manual hot-swaps at the end of the working day.

By: Sir Henry

Sir Henry — Fri, 14 Dec 2007 18:19:31 +0000

I agree, this is a rather startling development. I also agree that education is one part of the equation. The problem with the latter, however, is one that will always provide job security to dirty: people will always assume that they will not be the victim or that they will not be affected. Too many times have I heard people state, “Out of the millions of people on the internet, what are the chances of me being singled out?” An unfortunate mistake in logic where I promptly explain to them what a botnet actually is and how it could very easily single out a myriad of users. I do believe that I have scared some sense into a number of people as a result.

By: Nobody_Holme

Nobody_Holme — Wed, 21 Nov 2007 00:44:37 +0000

Memo to self: stop with the off-topic rants.
Also, stupid web users are fine, as long as they dont live with me *crys in a corner*

By: Pantagruel

Pantagruel — Tue, 20 Nov 2007 12:53:29 +0000

The UvA article is a nice read and paints a good picture of the structure behind P2P and the problems for the nearby future. Eventually security buffs will find a way to plug this hole. The only questions remain how fast and what cost to the average internet user.
It seem to me that in this day and age every internet aware application should be scrutinized thoroughly for potential exploits and security holes, this ofcourse will only limit the amount of exploits. Add in the “everything for free ” attitude of the bulk of P2P users (not all P2P traffic is illegal stuf, i know, some GPLed distro’s are spread through P2P) makes the P2P client/server environment a viable platform for botnets (not to mention spreading trojans and virii)

By: Goodpeople

Goodpeople — Tue, 20 Nov 2007 10:01:37 +0000

Darknet is right. I did a little research on the topic and came across this document. Quite an interesting read.

http://staff.science.uva.nl/~delaat/sne-2006-2007/p17/report.pdf

Scary, but not unstoppable seems to be the conclusion.

By: Darknet

Darknet — Tue, 20 Nov 2007 06:55:17 +0000

I think you guys are somewhat missing the point, this IS a new threat. What we are talking about here is not an infection vector (e.g. P2P networks and software) we are talking about a new generation of worm type malware that USES P2P technology to communicate and propagate. The Botnet itself is based on P2P principles, it’s not infecting people using P2P software.

By: dirty

dirty — Tue, 20 Nov 2007 00:20:57 +0000

Check out this poll on packet storm

Human Stupidity is ranked the most factor to exploit:
http://www2.packetstormsecurity.org/cgi-bin/cbmc/voting.cgi?votebooth=defined&label=funnestbug.31337&vtype=current

By: dirty

dirty — Mon, 19 Nov 2007 23:32:31 +0000

@goodpeople and nobody_holme
Stupid web users = job security

but every once in a while i do believe corporal punishment should be a valid option for them, jk

By: Goodpeople

Goodpeople — Mon, 19 Nov 2007 23:24:17 +0000

btw Nobody_Holme,

Let me know when you’re going to war. I’ll come and help you..

By: Goodpeople

Goodpeople — Mon, 19 Nov 2007 23:03:54 +0000

@Dirty,

I agree that risk and implications have increased dramatically. But isn’t that the consequence of more and more people getting connected?

Like I said before: Education is the only answer. But then again, that doesn’t always work.. I can hardly expect my mother in law to understand what the net is all about. But she does want to download an occasional movie. (which btw is perfectly legal in The Netherlands).

So, from time to time I wipe her laptop clean and do a complete reinstall. I only wish that I had trashed the pre-installed version of XP and installed Mandriva on the day she bought it. That would have made my life somewhat easier.