“Congress “should not allow law enforcement to take it upon
themselves to regulate Internet architecture or technical
standards,” Mark Rasch, Vice President of security firm Global
Integrity, insisted.
His reasons were many. First, and most simply, no one in his
right mind trusts the Feds, an observation borne out by the
reluctance of perfectly sober network administrators to install
National Infrastructure Protection Center (NIPC) software to
detect the DDoS tools Trin00, TFN and Stacheldraht, chiefly
because the NIPC stubbornly refused to release the source
code.”
“Another of Rasch’s common-sense observations: law enforcement
doesn’t need to regulate Internet security. The DDoS attackers
exploited ‘widely-known, widely publicised vulnerabilities,’ to
carry out their attack, he noted.”