Re: [Full-Disclosure] Calcuating Loss
Date: Wed May 12 2004 - 16:32:36 EDT
"Schmidt, Michael R." <Michael.Schmidt@T-Mobile.com> writes:
> Well one of the biggest issues that allows people to remain
> anonymous is DHCP. If everyone on the internet was required to get
> a static IP address, or to log which IP they were using - using a
> secure technology then everyone could be tracked, sure a few "super"
> hackers could still manage to escape detection I am sure, but there
> is nothing that is the equivalent of a drivers license on the
> internet.
No. First thing to do is find an easily compromised box - still pretty
unlikely to be a honeypot even these days - and get on there. Once
you've installed a backdoor, secured the box and wiped the logfiles,
it gets much harder to trace back. Especially if that's done two or
three times.
Only the very stupid launch serious attacks from their own machine.
-- James Riden / j.riden@massey.ac.nz / Systems Security Engineer Information Technology Services, Massey University, NZ. GPG public key available at: http://www.massey.ac.nz/~jriden/ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.htmlReceived on Wed May 12 19:18:28 2004
This archive was generated by hypermail 2.1.8 : Wed May 12 2004 - 20:04:17 EDT
