ZDNet UK / News and Analysis / Application Development

If you can't trust FBI-issue software...

By Robert Lemos, 14 February 2000 11:29

Topics

Linux, Hackers, Solaris, FBI, denial-of-service, national infrastructure protection centre, nispc, space rogue, uncle sam

NEWS Would you like Uncle Sam inside your PC? Last December, the National Infrastructure Protection Centre -- a joint effort between the FBI and the US Department of Justice -- released a utility for Solaris and Linux computers that it claims will detect and eliminate the software agents which distributed-denial-of-service attack software uses to bombard other computers with a flood of data. Now, in the aftermath of this week's spate of denial-of-service attacks, that software has drawn renewed attention. And, not surprisingly, some security specialists are not quite convinced that Uncle Sam software is a good thing. "It's from the FBI and I think they should get a certain level of trust," said "Space Rogue," a white-hat hacker and security researcher at @Stake "But I don't know if it is the FBI's job to post software." Back in December, NIPC Director Michael Vatis said in a statement that the software was "one step further" than its core mission. "A central part of the NIPC's mission is to help protect critical computer networks by alerting private industry and government agencies of potential threats before an attack occurs," Vatis said. "In this case, we have gone one step further by developing a software application that can be used to detect the presence of a significant hacker tool and neutralise it." Space Rogue pointed out that the software posted by NIPC has no source code attached -- meaning that security specialists cannot check that it works as advertised. Also, because a US agency developed the software, organisations in other countries may not want to use the applications; in fact, it could be illegal for them to do so. Last week, Yahoo!, Buy.com, Time Warner's CNN.com, eBay, E*Trade, Amazon.com, Microsoft's MSN.com and ZDNet were attacked at different times by Web vandals who flooded each site with a deluge of data, essentially clogging up their Net connections. Service at the sites was either down altogether or severely slowed for several hours. David Brumley, assistant computer security officer, Stanford University, stressed that the government has good reasons for keeping the source code locked up: Attackers could use such code to create a version that can't be detected. Brumley has released his own utility called RID for scanning for attack programs. "The NIPC were not keen on releasing a remote scanning tool (like mine), because a hacker could use my tools to look for daemons placed by others and using those to launch their attack," he said. What do you think? Tell the Mailroom. And read what others have said. For full coverage see the Denial of Service Roundup. Take me to the Hackers News Special

Related stories

Mixter: A hunted hacker

Jane Wakefield: Bullies, teenagers and Net giants

Special: Denial of Service round-up

Amazon launches Kindle app for Mac

Salesforce opens up Chatter developer preview

Post your comment

In order to post a comment you need to be registered and logged in

Log in or create your ZDNet UK account below

Will not be displayed with your comment

By signing up for this service, you indicate that you agree to our Terms and Conditions and have read and understood our Privacy Policy. Questions about membership? Find the answers in the Membership FAQ

ZDNet UK Live

John Molloy

Apple are currently pushing to get tv content on the iPad by April 3rd. This could possibly be seen as a spoiler for that announcement I suppose....

5 hours ago by John Molloy
Andrew Donoghue

Hey - presume you mean something that builds on Apple's existing TV device? Apple have already had a couple of runs at building Apple TV and it's...

11 hours ago by Andrew Donoghue on Google's TV timing may reveal more to come
BVE2011

Google, Sony, Intel may build TV project www.zdnet.co.uk/news/emerging-tech/2010/03/18/google-sony-intel-may-build-tv-project-40088359/

ator1940

70,0000 to 90,0000 computers? A very small number considering some of these botnets are in the millions, and there are so many of them operating,...

12 hours ago by ator1940 on Microsoft says it decimated Waledac botnet
ator1940

I agree Roger, and why can't they write secure code? What will happen when they find stolen code in windows? They have a track record of...

12 hours ago by ator1940 on Microsoft lashing out at Linux, open source
ator1940

Do you think it will really take days?

12 hours ago by ator1940 on Microsoft previews Internet Explorer 9 with HTML 5 support
neilfab

@evilmanic have you seen the new hp on zdnetuk

Xwindowsjunkie

Wonder how many days it will take before somebody codes an exploitive hack for IE9?

24 hours ago by Xwindowsjunkie on Microsoft previews Internet Explorer 9 with HTML 5 support
roger andre

There are some really good people in Microsoft and I wonder, how embarassing it must be for them to see how the organisation behaves from it's...

1 day ago by roger andre on Microsoft lashing out at Linux, open source
ajclarke

Great new look for ZDNET UK web-site http://bit.ly/9R5eAA to check it out @ZDNetUK #zdnet

feedfrog

Microsoft previews Internet Explorer 9 with HTML 5 support - zdnet.co.uk http://bit.ly/9FSh23

kencogold

We were just pondering on when IE will get HTML5 and CSS3 onboard! this is excellent

1 day ago by kencogold on Microsoft previews Internet Explorer 9 with HTML 5 support
riptari

RT @suziedaniels: relaunched www.zdnet.co.uk raises the bar yet again! its so fast it makes my eyes bleed.

Bob Preece

This is brilliant - I borrowed one and straight away saw that a few AP`s were set up to the wrong country. It gives interference levels on each...

1 day ago by Bob Preece on Fluke Networks AirCheck Wi-Fi Tester
_SimonArnoldme

http://www.zdnet.co.uk/news/networking/2010/03/11/european-parliament-votes-down-acta-treaty-40085614/ (Where does this leave #Debill?)

suziedaniels

relaunched www.zdnet.co.uk raises the bar yet again! its so fast it makes my eyes bleed.

eparody

Redesign complet pour ZDNet UK et AU, Twitter au centre http://www.zdnet.co.uk/ http://www.zdnet.com.au/

cdutheil

RT @eparody: Redesign complet pour ZDNet UK et AU, Twitter au centre http://www.zdnet.co.uk/ http://www.zdnet.com.au/

ABridgwater

I just joined the ZDNetUK LinkedIn group http://bit.ly/aGgPhc

gerardv

Sharepoint 2010 in photo's http://www.zdnet.co.uk/reviews/communication-and-collaboration/2010/03/04/sharepoint-2010-screenshots-40070577/

Latest in Application Development

Amazon launches Kindle app for Mac

Salesforce opens up Chatter developer preview

Mozilla to update open-source licence

Featured white papers

Achieving PCI Compliance for:Privileged Password Management & Remote Vendor Access

For multi-store outlets, including retail, banking, grocery, gas, hospitality, convenience stores and others, reducing (or avoiding) the cost of in-store system support and maintenance while maintaining compliance with PCI and other requirements has become a strategic challenge.

Download now

Web 2.0 Security Threats: How to Protect Your Enterprise Network

Speaker: Dr. Chenxi Wang, Principal Analyst, Security and Risk Management, Forrester Research, Inc. As Enterprises are increasingly connected to the Internet and as hard organizational boundaries are fast disappearing, security professionals are facing fresh challenges in Enterprise computing.

Download now

MindManager - Tutorial for New Users - Short

This tutorial is for new MindManager users and teaches you how to get started, by creating maps, reading maps and organizing your information.

Download now

Inside ZDNet UK

Broadband Speed Test

How fast is your broadband?

Welcome to the new ZDNet UK

Welcome to the new ZDNet UK

White Papers

Free technology white papers

Downloads

Browse our free downloads

Jobs

Search for a new job

Hot Topics

ZDNet UK hot topics

Join ZDNet UK

Join ZDNet UK