I agree here. It'd be a bit much and cause people to unsubscribe if there's not some digest type format. The malware would still have to be sandboxed in some fashion to be overly relevant. Just having information from nepenthes will give you limited information. Also, unless there's a way to keep duplicate information from making its way to the list, it would be extremely noisy with tons of reports on the same thing.
Steven -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of James Pleger Sent: Wednesday, August 27, 2008 9:56 PM To: Jeremy Cc: botnets@whitestar.linuxbox.org Subject: Re: [botnets] reviving this list, allowing sharing I think that is a bit too high volume for this list, maybe throwing honeypot logs to an aggregator and then sending a daily digest would be more appropriate. James Pleger e: [EMAIL PROTECTED] On Wed, Aug 27, 2008 at 6:10 PM, Jeremy <[EMAIL PROTECTED]> wrote: > I propose that each and every one of us on this list configure our > nepenthes boxes with the email address of this distribution list, so > we can share information about new botnet clients in real time. > > Thoughts? > > -Jeremy > > On Wed, Aug 27, 2008 at 4:41 PM, Gadi Evron <[EMAIL PROTECTED]> wrote: >> To report a botnet PRIVATELY please email: [EMAIL PROTECTED] >> ---------- >> Hi. When this list was started a while back a lot of sharing and discussion >> was happening. >> >> This make us take a step back at the time. Today, when most of this >> information can do far more good than harm, it is my strong belief open >> information sharing on botnets, malcious web sites and similar subjects will >> be useful. >> >> Feel free to share data, and let's see how it goes. We, on our end will work >> to mitigate the risks you send in. >> >> Who is first? >> >> Gadi. >> _______________________________________________ >> To report a botnet PRIVATELY please email: [EMAIL PROTECTED] >> All list and server information are public and available to law enforcement >> upon request. >> http://www.whitestar.linuxbox.org/mailman/listinfo/botnets >> > > > > -- > -----BEGIN PGP SIGNATURE----- > Version: 1.0 > > 5468657365206172656E27742074686520626F747320796F75277265206C6F6F > 6B696E6720666F722E2E2E746865792063616E20676F2061626F757420746865 > 697220627573696E6573732E2E2E6D6F766520616C6F6E672E2E2E00 > -----END PGP SIGNATURE----- > _______________________________________________ > To report a botnet PRIVATELY please email: [EMAIL PROTECTED] > All list and server information are public and available to law enforcement upon request. > http://www.whitestar.linuxbox.org/mailman/listinfo/botnets > _______________________________________________ To report a botnet PRIVATELY please email: [EMAIL PROTECTED] All list and server information are public and available to law enforcement upon request. http://www.whitestar.linuxbox.org/mailman/listinfo/botnets _______________________________________________ To report a botnet PRIVATELY please email: [EMAIL PROTECTED] All list and server information are public and available to law enforcement upon request. http://www.whitestar.linuxbox.org/mailman/listinfo/botnets
