Slashdot Mirror
US Planning Response To a Cyber Attack
We've all heard of Google bombing; the US Government may be taking the expression rather literally. Planning is now underway across the government for the proper way to respond to a cyber attack, and options on the table include launching a cyber counterattack or even bombing the attack's source. The article makes clear that no settled plan is in place, and quotes one spokesman as saying "the preferred route would be warning the source to shut down the attack before a military response." That's assuming the source could be found. From the article: "If the United States found itself under a major cyberattack aimed at undermining the nations critical information infrastructure, the Department of Defense is prepared, based on the authority of the president, to launch a cyber counterattack or an actual bombing of an attack source."
I didn't want those zombied servers anyway.
Sheesh, evil *and* a jerk. -- Jade
I wonder what their response would be to the attack of a botnet. Carpet bombing, maybe?
That's an option that the Feds have that the average whitehat doesn't: calling in airstrikes against the DOSer.
There's a lot wrong with this. Off the top of my head...
Any sustained attack on network infrastructure, on the scale that they're talking about, is almost certainly going to be a distributed attack. Botnets have no patriotic allegiance, their locality is a function of machine vulnerability (eg: N. Korea's dependence on Active-X), not politics.
If I'm crafting an attack, I don't have to even tell the truth about my IP address, TCP allows the sender to specify a (fake) IP address. Obviously I won't get any replies, but I don't care if I'm simply out to cause damage
Geolocation of IP addresses is pretty much a black art as well - there's far too much variability by IP address to try and localise to the precision needed for bombing the source. My hostip.infowebsite only attempted to locate to the
Not to mention that it's a pretty big precedent to set... At least they're talking about talking, before bombing; the problem is that if you make a threat to bomb someone, you have to be prepared to carry it out. Countries can't afford to be seen to be bluffing when it comes to things like this, the impact on future negotiations is too high.
Simon.
Physicists get Hadrons!
So if we can spoof enough IP's we can get the USA to bomb any country of our choosing.... interesting.
The best test environment is production. - Me
chrome://browser/content/browser.xul
Well, this has some great potential for denial of service attacks by forging the source of a cyber attack.
At first I thought the US government might be using it's PageRank power to make terms like "nuclear threat" bring up URL's like iran.gov (or whatever their whitehouse.gov correlary might be). In fact it was just a weak attempt to use the word bombing twice and mislead.
Instead, the US is just aknowledging that attacks on it's internet infrastructure can be responded to just like physical attacks.... by military attack.
Is anyone suprised that if one place was pinpointed as the source of the attack on any countries infrastructure it might be a target? I'm not. The net is more important than some buildings at this point.
The only thing I'm suprised is to expect any attack to be from one place... I'd expect it to be distributed. But thats ok, we have bombs for that too. ouch.
There's nothing Intelligent about Intelligent Design.
Uhh... woudln't just be easier to bomb the source. It's not like we don't know where Micro$ofts head quarters are.
The real Sig captains the Northwestern. This one captains
Won't work if the pipe you're trying to use is flooded with useless data, since you're not actually stopping the attack at the source and your bandwidth is limited. You've only prevent them from getting into your network, not actually stopping the DOS which is kind of the point.
I would rather see cyber counter attacks. Yes, a lot of the targets would be innocent bots, but the counter attack could be as simple as taking them off line. If you remove enough bots, the attackers either have to give up, or begin to use bots closer to their own computers, until eventually they would have to use their own computers. Taking that many computers off line through cyber attacks is not something to be undertaken lightly, but if the incoming attack is sufficient to have a significant negative impact on infrastructure, then its probably justified. And maybe, if we start having massive cyber battles that this seems to imply, maybe Joe Public will stop clicking install this now banner ads and allowing his computer to become a bot. But probably not.
http://bgcommonsense.blogspot.com
Please cease and desist linking to site xxx.mil ( reacted ) or whitehouse.gov or else we will bomb you.
Signed G.W. Bush.
> I can't wait for Bush and his Pentagon to protect us from cyberwar. After all, the Bush doctrine of using one attack on us to justify attacking someone who hadn't attacked us, distracting us from the original attacker, is really paying off.
Hey, current thought among the Bush administration and the neocon "thinkers" that got us in to all this, is that if you blow one war you should start another one so you can try again.
Sheesh, evil *and* a jerk. -- Jade
General, the bombers are ready to go and the cruise missiles are fully fueled. And our intel group has pinpointed the source of the attack. It's coming from 127.0.0.1 .
No, North Korea won't get bombed. They have got nuclear weapons, but they haven't got any oil.
You can be quite sure, even now before the attack has started, that the intelligence will point to Iran being responsible. In fact, it is most likely that Iran will be have to be bombed before the cyber attack starts, in order to preempt it
.... well you can kiss Redmond, WA goodbye ;)
---- "Logoff! That cookie shit makes me nervous!" - A. Soprano
...the network fights back? Huh? D'ye ever think of that? And then it'll launch all the old ICBMs, oh yes, and then androids will stalk the smoking ruins hunting down and shooting the last holdout remnants of the Republican Party.
Everything I needed to know about life, I learnt from Blake's Seven
I think that we're all reading too much into this. The article is basically saying that if somebody is going to attack the US in a way that would be damaging to the country that US is prepared to retaliate...by any means necessary.
I'm not sure if I agree with everything in the article but it is the Government's job to protect this country and there are a lot of businesses and people that demand on the internet. If some outside source could mess with this it would be devastating to the economy and the country...
... Internet Exploder... Click that link and you and your entire fraking town are history.
Both the RIAA and the MPAA manage to insert sufficient language into some unrelated bill (ala what they tried with the Patriot Act) that authorizes preemptive strikes against p2p networks, saying that they could serve as massive distributed attack vectors against our nation's cyber-infrastructure.
Flip forward a few weeks. I wake up on a typical Sunday like today and start up Azureus. Within a couple of minutes, a tomahawk cruise missile is launched from a regional military installation.
The upside of my imminent demise is my last minutes will be spent mellowly and obliviously perusing mininova, seeing if anyone uploaded a torrent for that one episode of The Daily Show I missed last Thursday.
If only I had stayed up past 10PM that night, I would never have brought this on myself.
When you're a country with a hammer, everything looks like a snowglobe, eh?
you had me at #!
Well some of the world thinks your a crazed bunch of war mongers, but this story, erm, never mind...
What do you bet we'll get stories about Cyber attacks from Iran. This sounds like a war machine trying to make another war, since the last ones not going so well.
I have a magical stone that protects me from tiger attacks. I have been using it for years and not one attack!
This proves it works.
- "Scientia non habet inimicum nisp ignorantem"
The real way to look at it is that there was a successful terrorist attack a year into Bush's responsibility. And since then, Bush has achieved so many more terrorist goals than any little terrorist could on their own that there's little need. Including killing thousands more Americans, destroying our military, bankrupting our treasury and our morals. And most especially destroying our freedoms and sense of security by sowing massive terror every time Bush shows his face in public.
If there had been another planebomb, you'd use that to justify Bush getting even tougher. Just like you're surely cheerleading Bush's current escalation in Iraq. You zombie Republicans are so predictable.
No one believes that gibberish about fighting them there so we don't have to fight them here. Except maybe you, Anonymous Dick Cheney Coward.
--
make install -not war
NY Times - U.S. Presents Evidence of Iranian Weapons in Iraq
The article does mention that the claims about Iran "[are] bound to generate skepticism among those suspicious that the Bush administration is trying to find a scapegoat for its problems in Iraq and, some political analysts and White House critics believe, is looking for an excuse to attack Iran." Beyond that, it appears to be the same sort of echoing of administration propaganda (conveyed by unnamed intelligence officials) that we saw in the run-up to the invasion of Iraq.
What's the ugliest part of your body? Some say your nose, some say your toes, but I think it's your mind. -Zappa
It sounds like something from a William Gibson novel. Only difference is our government isn't a corporation.
I mean, not every end user chooses to be infected, and it's not like it's easy to get a machine secured whilst online before it gets infected. I'm not quite sure that a warhead on the house is the best way to deal with a part of a botnet.
If you really want to take about liability you'll have to start with a company that sells you a car without brakes, thus creating a huge market for brakes, and is now starting to supply the brakes themselves. Whilst still leaving them out of the original car.
Replace car with "Windows" and brakes with "decent security" and all of a sudden they're wonderful and creating shareholder value and carry no liability for their actions whatsoever whilst charging to the hilt for the privilege. Maybe taking decent action against them may help - it's going to be cheaper than bombs unless some White House friends are in need of tax funds again and need some rebuilding projects to camouflage the handouts.
Yes, I'm a cynic. Live with it.
Insert
Work with ISPs in the US, Canada and Europe to take zombied computers offline. They'll get a letter or phone call telling them that their computer was part of a zombie network that was attacking DHS or whoever, and that they wont be allowed back online until their computer is cleaned. Most people only have one choice for broadband (DSL or Cable), and they'll have to go back to dialup (where they wont be much of a threat in terms of dDOS) if they dont get their act together.
Its like when a cop pulls you over for having an unsafe vehicle, its about time that ISPs start patrolling their userbase and send letters/call their users to notify them of their infection.
The Doormat
If you're not outraged, then you're not paying attention.
If the Feds launch a B52, then I think a tin foil hat ain't gonna help. Even an asbestos suit won't help much.
Excuse me, but please get off my Pennisetum Clandestinum, eh!
Instead of dropping nukes, drop free, registered copies of Windows Vista. The problem will take care of itself.
Well yes, it sounds like a Gibson novel, but the *pertinent* difference is that if your governement were a corporation, they'd be a damn sight more accurate at pinpointing and destroying any relevant threats, and they definitely wouldn't be in anywhere near as much debt as they currently are. Plus, they'd use railguns, instead of nukes.
http://xkcd.com/313/