Slashdot Mirror

← Back to Stories (view on slashdot.org)

Paul Vixie On DNS Changer: We're Dealing With Malware the Wrong Way

Posted by timothy on from the should-be-using-branding-irons dept.

AlistairCharlton writes with this snippet: "Victims of the DNS Changer malware think they have better things to do than check their internet security, and as a digital society we're dealing with malware in completely the wrong way. These are the thoughts of Paul Vixie who worked with the FBI in intercepting servers used by a gang of Estonian hackers who made millions of dollars from redirecting internet users away from the websites they requested, directing them to advertisements instead." The linked article also offers an interesting description of how the FBI's quiet takeover of a botnet came to be.

10 of 163 comments (clear)

  1. Definitely the wrong way by SJester · · Score: 5, Insightful

    I'm not sure why it's even the government's obligation to "close the deal" (from TFA) and help a victim fix their infected systems. If the victim felt they "have more important things to worry about" than prevent infection, then felt they "have more important things to worry about" than routinely scan their system, AND THEN when told that they were infected they "have more important things to worry about" than fix it themselves and pay out of pocket... maybe the government has "more important things to worry about", too. tl;dr If you didn't wear a condom, and you didn't get tested, and you found out you had syphilis and didn't care - why should I?

  2. Cornficker by SJHillman · · Score: 5, Funny

    "Taking the Cornficker virus as another recent example of computer malware, Vixie predicts an uncertain future where computer users don't understand or simply don't care about the risks involved."

    Cornficker is related to the Conficker malware, but prefers to fick it's victims with vegetables instead. Many vicitms did not mind.

  3. Summary: Area Man Has Gut Feelings by Lord+Grey · · Score: 4, Insightful

    From TFA:

    Summing up, Vixie says: "These victims seem to feel that [they] have more important things to worry about. My gut feeling is that they're wrong, but I can't seem to prove it. My other gut feeling about all this is that we, as a digital society, are doing this all wrong."

    My gut feeling is that International Business Times didn't really have a useful article but needed some more ad space, so they wrote this thing.

    For the few of you considering actually reading the article: There is nothing new to see there. Move along.

    --
    // Beyond Here Lie Dragons
  4. the lies we tell ourselves and each other by speculatrix · · Score: 4, Insightful

    "I'll get round to doing backups one day"

    "I'll renew my antivirus licence next day pay"

    "The cheque is in the post"

    "I'll pull out in time"

    All are the many lies people tell themselves and each other.

    Basically as humans we tend to only do things which will have an immediate impact, and are capable of doublethink over things which might not happen or can be deferred.

    1. Re:the lies we tell ourselves and each other by Chrisq · · Score: 4, Funny

      "The cheque is in the post" "I'll pull out in time" .

      Hey, is that you Dad?

  5. Time to take the tinfoil hat off... by fermat1313 · · Score: 5, Insightful

    But presumably somebody at the FBI realised that they could collect all that lovely data on where everybody was going on the internet, and all without the need for a single warrant

    Care to show a source, even a single one, for that? The FBI handled this right, asking ISC to install and run the DNS servers. I really doubt the ISC would play ball with any extra-legal requests for data.

    Amazing how much pure paranoia is modded up around here

    1. Re:Time to take the tinfoil hat off... by h4rr4r · · Score: 5, Insightful

      How is this handling it right?

      Dropping the requests on the floor and teaching these folks a valuable lesson would have been handling it right.

    2. Re:Time to take the tinfoil hat off... by fermat1313 · · Score: 4, Informative

      Exactly. We know we never have to worry about a private corporation using personal data for profit, right? And no company would ever play ball with the feds in return for a juicy government contract. And its a good things they have a good reputation. I mean, someday companies might even have to start hiring PR people and the like to try to hide the evil things they do behind a good reputation.

      Who said anything about a private corporation. Do you know what ISC IS?

      They are a non-profit organization whose sole purpose is to support the infrastructure of the Internet. They build open-source software (like BIND and implementations of DHCP). Sorry, but you really should research before you spout off.

  6. Correct link to cited Vixie post by wkcole · · Score: 5, Informative

    As has become all too common the /. summary is linked to a negative-added-value article at the totally worthless IBT.

    Paul's actual post is at CircleID: http://www.circleid.com/posts/20120327_dns_changer/ and is over 3 months old. Not news. As is normal for Paul it is well written and smart but if you've been following DNSChanger, you've read this already.

  7. Re:The FBI shouldn't have set up the alternate ser by PerfectionLost · · Score: 5, Funny

    Or better - all requests to lemonparty.org.

    NOT work safe, in case you were wondering. That was awkward.