New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
what makes you think it was an attack? maybe one of your customers tested some good stuff
Network went down until I block that IP from OVH firewall in IP settings, We have nodewatch installed so it reported the attack from OVH IPs. Probably that why OVH never detected anything in OVH Manager.
usually, when such attacks going to a public, that means hackers already found a method to generate capacity which in several times bigger then this, and they will wait, usually it take up to 12 months to leak much powerful private ddos methods to public.
this is just an observation from my side without facts.
Even after he moved his site to Google "shield", it still went down few times yesterday I believe.
It was more looking like he was dealing with configurations rather than an attack.
He obviously wanted to generate some tears with that story, similarly to spamhaus in 2013.
His domain does not resolve to any IPv6, he does not publish an .onion addres either. He could also have used series of proxies from various hosts, but no he does not do that.
That's similar to other pseudo-journalists/Internet experts publishing articles in which they pretend that the attacks "take down the Internet".
Classic FUD.
Not really. This does not scale as you think and the large attacks are pretty public visible by the upstreams and especially exchanges (and that especially in Europe).
What you mean are SSDP and similar which took a while to get "public" and were used before, though this applies to NTP since many years as well - just no one ever saw much need to deal with it.
Well this latest seems to be growing. OVH has now reported 990Gbps and says there's a capability of 1.5 Tbps.
Looks like a LET resident dumped a lot of code related to this botnet:
https://krebsonsecurity.com/2016/10/source-code-for-iot-botnet-mirai-released/
IP logging likely going on so if you're going to poke around the source you best use something like TOR to do so.
Francisco
Man, that HF thread is an utter shitfest. I guess I shouldn't be surprised, given that it's HF and all...
this looks like:
with source released, i don't think so
A 5 minutes overview of the archives reveal all the usual script-kiddies patterns. All the FUD about it is ridiculous.
Being a network administrator certainly isn't going to get any easier any time soon.
We've never had any issues so far.
Edit: we actually had, but it wasn't really a ddos attack. It was someone abusing the looking glass
If i was you, i wouldn't say this in public. You really do not want to make the attackers feel that way believe me.
PM'd
SuperBNC's aegir server was hit earlier today.
https://krebsonsecurity.com/2016/10/feds-charge-two-in-lizard-squad-investigation/
https://www.justice.gov/usao-ndil/file/900826/download
More PoodleCorp and LizardSquad members getting indicted.
They are all probably rolling over on each other. Whole booter/stresser scene is getting blasted by the feds. Which may be good news for web hosts, gamers, etc.
they probably had Yahoo email accounts .. ;-]
good read Place holder https://idea.popcount.org/2016-09-20-strange-loop---ip-spoofing/
That was a long read interesting info, thanks. Looks like they couldn't wait to blame each other and name "leaders" when interviewed by the fbi.
Is it just me or anyone else also facing issues with Voxility always on protection from last few hours?
Are you saying that because off all the historical evidence there is that obscene punishment significantly reduces violations?
It's been tried again and again and again and ... same thing. Take a look at the so called "war on drugs" and even the prohibition era. Producers will produce, customers will buy, people will end up in jail for an disproportionate long time and problem will still be there.
What's with the necro crap today...
Whoops, my bad, sorry.
Take a look at the war on drugs in the Philippines right now.
Too much turkey makes people do strange shit.
See?
nope.
Really?