Feeds

Reno, FBI feast on bad network security

Manna from Heaven shows why FIDNET is so important....

  • alert
  • submit to reddit

Protecting users from Firesheep and other Sidejacking attacks with SSL

The recent spate of high-profile distributed denial of service (DDoS) attacks comes as a blessing to US Attorney General Janet Reno and her Justice Department, which only this week requested a $37 million increase in funds for cyber crime fighting. Because DDoS attacks have been automated to an extent that allows any imbecile with a Linux box to take out large swaths of Internet infrastructure, few exploits could have argued so effectively for increased vigilance by the Feds. For Reno, whose ambitions apparently include assigning a personal FBI agent to every US citizen, it was the political equivalent of Manna from Heaven. "To keep pace with cyber criminals in the new Millennium...we have set up a system through the National Infrastructure Protection Center (NIPC) to better coordinate with private entities to ensure that cyber crime is promptly reported to law enforcement," Reno declared during a Washington press conference dealing with the recent DDoS attacks. But there is work yet to be done. "We are committed to taking steps to ensure that e-commerce remains a secure place to do business," she noted. We were left to speculate about just what those "steps" might involve. She appeared confident, but we were not. The very nature of the Internet makes it impossible for the Feds to patrol cyber space effectively, at least without inserting themselves to an extent that almost anyone would regard as a nuisance. Furthermore, the sorts of security measures that business would have to employ to secure itself as Reno wants, and from DDoS attacks in particular, would be a hindrance to commerce. For a Web site, filtering comes at the expense of customer access. For an ISP, it comes at the expense of subscriber services. Any way you slice it, it comes at the expense of revenues. And filtering or not, if a box is connected, regardless of how well it may be defended, it can be hacked. Reno doesn't get it: companies that can't afford to take any risk with their data simply don't belong on-line. The others will always have to live with some risk. After reading her statement, Reno was immediately ushered off stage in a gesture reminiscent of James Brown leaving the house, presumably to spare her the embarrassment to come, which was borne instead, and most heroically, by FBI Computer Investigation Section Chief Ron Dick. Journalists wanted to know who might be behind the attacks. The Feds had no idea, Dick allowed. They wanted to know why such an attack had been launched; which operating systems had been compromised; where the attacks had originated; how many clients were involved and where they were located; whether or not a hostile foreign government might have been involved; and whether Y2K remediation efforts might have enabled the installation of DDoS tools on so many boxes. Dick didn't know. FBI officials don't appear to know much of anything, except that they desperately need heaps more money, and that Western Civilisation desperately needs their increasing intervention in all matters digital. Indeed, it was such a good setup for DoD that conspiracy paranoiacs will soon be claiming that the FBI conducted the attacks themselves, to justify increased spending and increased intervention in Net-related law enforcement. "This was the kind of thing we hoped would never happen, but it did," Dick said. And this is why we need lots more money, and a network monitoring scheme called FIDNET, the subtext reads. ®

Website security in corporate America

More from The Register

next story
Phones 4u slips into administration after EE cuts ties with Brit mobe retailer
More than 5,500 jobs could be axed if rescue mission fails
Israeli spies rebel over mass-snooping on innocent Palestinians
'Disciplinary treatment will be sharp and clear' vow spy-chiefs
Apple CEO Tim Cook: TV is TERRIBLE and stuck in the 1970s
The iKing thinks telly is far too fiddly and ugly – basically, iTunes
Huawei ditches new Windows Phone mobe plans, blames poor sales
Giganto mobe firm slams door shut on Microsoft. OH DEAR
Phones 4u website DIES as wounded mobe retailer struggles to stay above water
Founder blames 'ruthless network partners' for implosion
Found inside ISIS terror chap's laptop: CELINE DION tunes
REPORT: Stash of terrorist material found in Syria Dell box
OECD lashes out at tax avoiding globocorps' location-flipping antics
You hear that, Amazon, Google, Microsoft et al?
Show us your Five-Eyes SECRETS says Privacy International
Refusal to disclose GCHQ canteen menus and prices triggers Euro Human Rights Court action
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.
Security and trust: The backbone of doing business over the internet
Explores the current state of website security and the contributions Symantec is making to help organizations protect critical data and build trust with customers.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.