Re: Dyn DDoS this AM?
Remember ping packets containing +++ATH0 ? Kind regards, Alexander Maassen - Technical Maintenance Engineer Parkstad Support BV- Maintainer DroneBL- Peplink Certified Engineer -------- Oorspronkelijk bericht --------Van: Alain Hebert <ahebert@pubnix.net> Datum: 21-10-16 23:37 (GMT+01:00) Aan: nanog@nanog.org Onderwerp: Re: Dyn DDoS this AM? Just a FYI, That "horrific trend" has been happening since some techie got dissed on an IRC channel over 20 years ago. He used a bunch of hosted putters to ICMP flood the IRC server. Whatever the community is behind, until the carriers decide to wise up this will keep happening, that is without talking about the industries being developed around DDoSes events. Enjoy your weekend. ( I ain't on call anymore anyway =D ) ----- Alain Hebert ahebert@pubnix.net PubNIX Inc. 50 boul. St-Charles P.O. Box 26770 Beaconsfield, Quebec H9W 6G7 Tel: 514-990-5911 http://www.pubnix.net Fax: 514-990-9443 On 10/21/16 11:52, Brian Davies via NANOG wrote:
+1!
Well said, Patrick.
B
On Friday, October 21, 2016, Patrick W. Gilmore <patrick@ianai.net> wrote:
I cannot give additional info other than what’s been on “public media”.
However, I would very much like to say that this is a horrific trend on the Internet. The idea that someone can mention a DDoS then get DDoS’ed Can Not Stand. See Krebs’ on the Democratization of Censorship. See lots of other things.
To Dyn and everyone else being attacked: The community is behind you. There are problems, but if we stick together, we can beat these miscreants.
To the miscreants: You will not succeed. Search "churchill on the beaches”. It’s a bit melodramatic, but it’s how I feel at this moment.
To the rest of the community: If you can help, please do. I know a lot of you are thinking “what can I do?" There is a lot you can do. BCP38 & BCP84 instantly come to mind. Sure, that doesn’t help Mirai, but it still helps. There are many other things you can do as well.
But a lot of it is just willingness to help. When someone asks you to help trace an attack, do not let the request sit for a while. Damage is being done. Help your neighbor. When someone’s house is burning, your current project, your lunch break, whatever else you are doing is almost certainly less important. If we stick together and help each other, we can - we WILL - win this war. If we are apathetic, we have already lost.
OK, enough motivational speaking for today. But take this to heart. Our biggest problem is people thinking they cannot or do not want to help.
-- TTFN, patrick
On Oct 21, 2016, at 10:55 AM, Chris Grundemann <cgrundemann@gmail.com <javascript:;>> wrote: Does anyone have any additional details? Seems to be over now, but I'm very curious about the specifics of such a highly impactful attack (and it's timing following NANOG 68)...
https://krebsonsecurity.com/2016/10/ddos-on-dyn-impacts- twitter-spotify-reddit/ -- @ChrisGrundemann http://chrisgrundemann.com
On Sat, 22 Oct 2016, Alexander Maassen wrote:
Remember ping packets containing +++ATH0 ?
THat only worked because of patents: https://en.wikipedia.org/wiki/Time_Independent_Escape_Sequence Inband signaling is bad, mmmkay? -- Mikael Abrahamsson email: swmike@swm.pp.se
(Inband signalling - bad except for BGP?) General comment: why are we blaming the client devices for the lack of security? This is like Microsoft villifying linux in the late 90s because "there's no restrictions on use or packet crafting on the client side" - of course there isn't, in Windows either -- cant trust the client side, ever. Check out online gaming, so many h4x 'n bots. Let's stop trying to fix the clients, there'll always be bad actors/crappy coding. Let's fix the networks. Pay-to-play? People are sensitive in the pocketbooks. NetCoin or something to purchase dataflows? I dont know. Also sounds terrible. ("That's an internet tax!!!111"). But Something Must Be Done[tm], by us, soon, or we'll be dealing with govt cures which will be worse than the disease. Regulating devices will never happen. Have you checked out world trade regulations? The US can't get Chinese firms to stop shipping deadly-to-the-touch chemwep/drug carfentanil, how we gonna enforce security standards on COTS electronics? (More govt soln's/approvals too. Fear.) We have control of the networks. Lets do something. (cant find the carfentanil story on nytimes anymore, pulled? http://www.nytimes.com/aponline/2016/10/07/world/asia/ap-as-china-chemical-w... ) /kc On Sat, Oct 22, 2016 at 04:54:47PM +0200, Mikael Abrahamsson said:
On Sat, 22 Oct 2016, Alexander Maassen wrote:
Remember ping packets containing +++ATH0 ?
THat only worked because of patents:
https://en.wikipedia.org/wiki/Time_Independent_Escape_Sequence
Inband signaling is bad, mmmkay?
-- Mikael Abrahamsson email: swmike@swm.pp.se
-- Ken Chase - Guelph Canada
participants (3)
-
Alexander Maassen
-
Ken Chase
-
Mikael Abrahamsson