15 Feb
2006
15 Feb
'06
6:19 a.m.
One of method missing is doing top down random walks of ip6.arpa.
Given the difficulty of finding IP addresses for free, perhaps the commercial people will take over the whole botnet business. Then it is simple to find IPv6 addresses to attack. Simply buy webserver logs on the open market similar to the way the bad guys now buy lists of credit card numbers. People are always the weak link in any security scenario, no matter how bulletproof the technologists may claim it is. IPv6 may have less impact on the fact of botnet activity and more impact on the sociology of the participants. --Michael Dillon