DDoS

I want to have an open-format discussion about why the internet is broken - from a security perspective. Most of it was designed without much security in mind. We're trying to use things that weren't designed as security features (ex: TTL in DNS records) as actual security features. Most of the time security is just an afterthought.

The topics can be anything: viruses, drive-by downloads, botnets, hackers, DRM, cross-site scripting, dns vulnerabilities, bgp problems, two-factor authentication, electronic voting, SSL, browser/plugin security, operating systems, people putting passwords underneath their keyboards, etc, etc.

Why can Mallory still read my e-mail in 2008?

It doesn't have to be all doom and gloom- we should also discuss possible solutions from the big picture (DNSSec?) to what we can do as developers, web designers, network/server admins, netizens, and citizens.