[croes]

Relevant because Cloudflare manipulated the DNS using a false reasoning

[cuu508]

1.1.1.2 blocks malware, and archive.today performs DDOS. Where's the false reasoning?

[croes]

It‘s not a C&C/Botnet

[cuu508]

It is C&C -- it instructs their site visitors to DOS a specific site.

[zahlman]

By this logic, all malicious JavaScript (obvious example is cryptominers I guess, assuming no JS sandbox escape) is C&C, yeah? As it "instructs site visitors" to do something harmful locally?

[croes]

A C&C controls a botnet, where is the botnet?

[cuu508]

The browsers of their site visitors.

[croes]

If you need to be on the site it’s not a botnet and there is no C&C server coordinating the attack. It‘s just the JS on the site that makes the attack.