A. I never said the government was "behind botnets." Nor did I refer to any singular government. Yet, Stuxnet did create, in effect, a botnet.
B. A government interested in network security would inform managers of reflection- and amplification-vulnerable systems (such as misconfigured DNS resolvers), as well as design and release open, verifiable, trustable specifications for filtering hardware and packet matching algorithms to block DDoS attacks at the same points they currently tap network traffic.
C. Rented machines can be shut down far more easily than a botnet.
B. A government interested in network security would inform managers of reflection- and amplification-vulnerable systems (such as misconfigured DNS resolvers), as well as design and release open, verifiable, trustable specifications for filtering hardware and packet matching algorithms to block DDoS attacks at the same points they currently tap network traffic.
C. Rented machines can be shut down far more easily than a botnet.