Virus Guy <Virus@Guy.com> wrote in news:4F614B2B.E7CE1761@Guy.com:

> Dustin wrote:
>
>> > You're trying to act as the infected machine's DNS server and
>> > it's Gateway, but I guess it really can work only for http or
>> > https.
>>
>> I think you owe several people an apology... We tried to explain
>> this to you...
>
> You made no such explanation, with your hahe's and lol's.

Well, I did. I laughed a bit at you too, but in fairness; I did tell you
to google how a DNS server really worked. At that point, you called me a
dumbass and proceeded to confuse web server for DNS server with your
explanation...

Btw, Had you not been such an arse about my humour, I'd likely explain
in theory how you actually could have the web and DNS servers working
together to pull off your nasty. They'd have two IPs, one internal, one
external. Wouldn't take a rocket scientist to figure out what needs to
be done next.

> My idea for the surrogate DNS server would allow those machines to
> function most of the time *AND* give their owners the message that

Your idea? You invented the DNS system?

> But what IS happening is that the surrogate DNS server is NOT giving
> those owners any message at all.

Of course not. It's resolving names to IP's, that's er, it's job.
Many clients that expect, IP data in response will not be all that
impressed if they get a url instead. I could just see xnews, pegasus,
or pidgin going "WTF?" and showing me the debug windows. lol

> If you're going to operate a temporary surrogate DNS server in the
>first place - you tell me which strategy is better.

My take on it is this...

I personally think the machine should remain offline until a competent
individual can repair the damage and setup security policies to keep it
from happening again.

As it will no longer have working DNS on it's own, the malware will have
to bring it's own server list, or, the machine is dead in the water and
no longer poses much threat to other systems. As it's owner either
doesnt know, OR more likely doesn't care, the internet loses nothing
with their departure. It gains.

When the owner gets a bill, they'll pay slightly more attention. I'm
tired of irresponsible people. Not holding them liable only increases
the problem.




--
Character is doing the right thing when nobody's looking. There are too
many people who think that the only thing that's right is to get by, and
the only thing that's wrong is to get caught. - J.C. Watts