> the CWG (specifically chris lee and some other folks) did > some calucations, the effect of DNS queries for operators > should be minimal. > i.e. no sizable increased load. At the same time, we have a sig being developed for snort and what might be a way to externally scan computers for the infection.