SEARCH

Enter your search query in the box above ^, or use the forum search tool.

You are not logged in.

#26 2013-10-18 02:04:40

nathanphoenix
New Member
Registered: 2013-10-18
Posts: 2

Re: DDoS Attack 2013-10-17 (resolved)

Here's a suggestion (could be crazy) from a newbie with some experience coding community software: include in the master Crunchbang distribution a simple opt-in daemon that does nothing but the following:

- Maintains a current local snapshot of the latest ISO files and repositories, working only during system downtime (maybe maintain with pysvn or rsync.py, or using apt itself?);

and:

- Watches the master repository hosts for DDOS behavior or other downtime and, should the master repositories become unresponsive (to sync requests, for instance) for a determined period, activates a sandboxed server on the owner's host (with realtime permission request or blanket permissions on file), and pushes the owner's IP to a round-robin dynamic DNS system tied to the master repository name records. Thus, for the period of the DDOS attack or other downtime, every Crunchbang box with its owner's approval, that knew it had a complete local snapshot, would become a viable distribution host aliased to the master distro host's domain name.

Would take a little doing but would render distro hosts essentially DDOS-proof, since every user with connectivity would become a viable host for distro files and ISOs if the main servers were hit. Foreseen hurdles would include code signature verification to ensure that a malicious host could not push out compromised images and .debs (mostly/completely handled already with gnupg signing in Debian?), and of course the round-robin dynamic DNS implementation itself.

Just an idea. Bet it could catch on!

Offline

Be excellent to each other!

#27 2013-10-18 02:18:02

Inodoro Pereyra
#! Die Hard
From: Back in Buenos Aires
Registered: 2013-07-01
Posts: 844

Re: DDoS Attack 2013-10-17 (resolved)

@Chillycampari: I understand what you say. Actually, one of the things that caused me to stick with CB is precisely the fact that the community is among the best communities I've seen so far, and, considering the number of forums I've been (or still am) a member of, and the variety of topics those forums cover, I'd say that means a lot, at least to me.

But there's a difference between shooting your best friend in the head because you like the smell of gunpowder, and doing so because he's trying to rape your daughter. Regardless of what I may think about the morals, or lack thereof, of hacking, I think there's a big difference between gratuitously attacking some site, for whatever reason, and retaliating to what seems to be a focused and organized series of attacks on one's site, to prevent further attacks, and eventually to send a very eloquent message to the attackers.

That is, assuming I had said ANYTHING about hacking, or retaliating, of course...

@Sector11: I knew you would never share my views on that subject... tongue

Last edited by Inodoro Pereyra (2013-10-18 02:18:44)

Offline

#28 2013-10-18 02:21:28

nathanphoenix
New Member
Registered: 2013-10-18
Posts: 2

Re: DDoS Attack 2013-10-17 (resolved)

Hell yeah, retaliate. Retaliate by working toward a distribution system that's immune from such attacks. See above.

Offline

#29 2013-10-18 02:30:56

tamikan
#! Die Hard
Registered: 2012-09-20
Posts: 777

Re: DDoS Attack 2013-10-17 (resolved)

What was it again the best offense is a good defense or the greatest victory is the battle never fought  8o


Top things ]:D
dwb | Firefox Nightly | sakura | emacs | moc | #! | Arch | Doing 1 thing @ the time | Music from the 90s

Offline

#30 2013-10-18 02:33:56

Inodoro Pereyra
#! Die Hard
From: Back in Buenos Aires
Registered: 2013-07-01
Posts: 844

Offline

#31 2013-10-18 02:34:12

chillicampari
Pinball Wizard
Registered: 2009-10-09
Posts: 2,728

Re: DDoS Attack 2013-10-17 (resolved)

Welcome to the forum nathanphoenix and agreed that it's a good time to think of constructive ideas. Fully distributed apt-peering (opt-in) is a neat idea (as are other things mentioned in your first post).

Offline

#32 2013-10-18 03:08:58

benginm
#! Junkie
From: In a time-warp to 2002!
Registered: 2012-11-11
Posts: 488

Re: DDoS Attack 2013-10-17 (resolved)

tamikan wrote:

I wonder what's the rank of the hacker(s)

Hackers don't DDoS!

these are called "Crackers". Hi haters 8)

# http://searchsecurity.techtarget.com/definition/hacker

legends > #!ers , it's cool

;/

Offline

#33 2013-10-18 03:32:17

illumin8
#! Junkie
From: Seattle
Registered: 2009-05-30
Posts: 407
Website

Re: DDoS Attack 2013-10-17 (resolved)

mad
This is one of the most benevolent Linux distro communities out there.
Who would be mad enough at #! to go through the effort?
Someone knows...
I wonder if they are aware that Corenominal is not your average Distro creator, and has an...unusual skillset? They might just find out...


Website    500px     DeviantArt
God never ends anything on a negative; God always ends on a positive. -- Edwin Louis Cole --

Offline

#34 2013-10-18 03:33:11

Sector11
#!'er to BL'er
From: SR11 Cockpit
Registered: 2010-05-05
Posts: 15,667
Website

Re: DDoS Attack 2013-10-17 (resolved)

chillicampari wrote:

That'd be a really bad idea (and I'm not saying it jokingly). We've earned the good reputation we have as a community and we're better than that.

Yes, I know and I agree ... it's just talk.  I was hacked once YEARS ago on a Windows machine, but the guy was not as good as he said he was ... and it failed.  I don't know enough to hack my own machine let alone someone else.  I feel sorry for Philip.

It really irks me that people do this type of thing:  " ... just because ... "

Did not mean any harm ...


·  ↓   ↓   ↓   ↓   ↓   ↓  ·
BunsenLabs Forums now Open for Registration
·  ↑   ↑   ↑   ↑   ↑   ↑  · BL ModSquad

Offline

#35 2013-10-18 03:33:22

Inodoro Pereyra
#! Die Hard
From: Back in Buenos Aires
Registered: 2013-07-01
Posts: 844

Re: DDoS Attack 2013-10-17 (resolved)

Sary wrote:

Hackers don't DDoS!

these are called "Crackers". Hi haters 8)

# http://searchsecurity.techtarget.com/definition/hacker

legends > #!ers , it's cool

;/

https://en.wikipedia.org/wiki/Hacker_%2 … ecurity%29

Offline

#36 2013-10-18 03:56:31

chillicampari
Pinball Wizard
Registered: 2009-10-09
Posts: 2,728

Re: DDoS Attack 2013-10-17 (resolved)

Sector11 wrote:
chillicampari wrote:

That'd be a really bad idea (and I'm not saying it jokingly). We've earned the good reputation we have as a community and we're better than that.

Yes, I know and I agree ... it's just talk.  I was hacked once YEARS ago on a Windows machine, but the guy was not as good as he said he was ... and it failed.  I don't know enough to hack my own machine let alone someone else.  I feel sorry for Philip.

It really irks me that people do this type of thing:  " ... just because ... "

Did not mean any harm ...

I know you guys don't mean harm. smile  It irks me too.

Offline

#37 2013-10-18 04:13:37

Inodoro Pereyra
#! Die Hard
From: Back in Buenos Aires
Registered: 2013-07-01
Posts: 844

Re: DDoS Attack 2013-10-17 (resolved)

illumin8 wrote:

I wonder if they are aware that Corenominal is not your average Distro creator, and has an...unusual skillset? They might just find out...

Really???
That would be so AWESOME!!!

I mean...err...wrong..., that'd be so wrong... roll

@Chillycampari and Sector11: I understand that you're nice people. I like to think I'm a nice guy also. But, in the interest of honesty, I'd have to say, in this case, I DO MEAN HARM, to those that are attempting to harm us. Sorry if that makes me a bad person, but the "show your other cheek" policy never sat well with me. I'm more of a "if they hit you with a toothpick, hit them back with a train" kinda guy.

Offline

#38 2013-10-18 04:36:55

intoCB
Scatweasel
Registered: 2012-10-25
Posts: 2,412

Re: DDoS Attack 2013-10-17 (resolved)

Someone's mother used to say "If you tread on my foot, I'll break your leg." Needless to say, she had a fearsome reputation and I avoided her feet.

One of the reasons the inter-community conflict in Belgium remains only a passive-aggressive version of Israel/Palestine is that there is no real history of bloodshed on either side to avenge. Revenge begets revenge. I once met a Bosnian who loved Belgium for the simple reason that in Belgium they have found a way to hate each other without killing each other.

It started on the day of an Ubuntu release. Coincidence? I think not. [Note to paranoid people who might not get that this a joke: this is a joke, don't get all paranoid].

Shame about the DDoS but the world is full of c****, sadly. I guess the motive is either a) financial (to ransom corenominal) b) rivalry/enmity (anyone who is put out by the existence of #!) c) revenge (former forum member whose feelings we hurt 8.( ) d) sport/learning.

Last edited by intoCB (2013-10-18 04:39:33)

Offline

#39 2013-10-18 05:10:54

pvsage
Internal Affairs
From: North Carolina
Registered: 2009-10-18
Posts: 13,970

Re: DDoS Attack 2013-10-17 (resolved)

@intoCB:  I've been thinking about the line from The Untouchables recently:

He sends one of yours to the hospital, you send one of his to the morgue.

Sounds like your friend's mother would have gotten along with Jim Malone. cool

I can think of a very small handful of people who a.) have recently had a falling out with this community and b.) might have the skills needed to pull off something like this.

Offline

#40 2013-10-18 08:02:29

photonucleon
Quantum Geek
From: Hogwarts
Registered: 2013-06-10
Posts: 952

Re: DDoS Attack 2013-10-17 (resolved)

chillicampari wrote:

That'd be a really bad idea (and I'm not saying it jokingly). We've earned the good reputation we have as a community and we're better than that.

True.


- Ai! Aníron Undómiel. -
- Some things are certain. -
- Et Eärello Endorenna utúlien. Sinome maruvan ar Hildinyar tenn' Ambar-metta. -

Offline

#41 2013-10-18 08:58:31

samdraz
#! CrunchBanger
From: Earth
Registered: 2013-03-10
Posts: 233
Website

Re: DDoS Attack 2013-10-17 (resolved)

wonder who really hated #!. and why now? or something to do with 2nd OCt maintanence

Last edited by samdraz (2013-10-18 08:59:15)

Offline

#42 2013-10-18 10:36:37

brontosaurusrex
#! Red Menace
Registered: 2012-06-15
Posts: 1,643

Re: DDoS Attack 2013-10-17 (resolved)

All the hate wont help here, the solution that should be presented will/should be purely technical in nature, that said I do feel a certain amount of hate towards Linode operators (but it's a really small amount).

Last edited by brontosaurusrex (2013-10-18 10:37:22)

Offline

#43 2013-10-18 11:01:10

corenominal
WRONG
From: Lincoln, UK
Registered: 2008-11-20
Posts: 5,131
Website

Re: DDoS Attack 2013-10-17 (resolved)

First off, thank you all for your support, I really appreciate it. Secondly, the attack is currently still ongoing. Grr. It is being actively monitored and I will provide an update when it has subsided.


Ex-developer of #! CrunchBang. Follow me on Twitter smile

Offline

#44 2013-10-18 11:45:09

tamikan
#! Die Hard
Registered: 2012-09-20
Posts: 777

Re: DDoS Attack 2013-10-17 (resolved)

Np Philip what doesn't kill you will make you stronger rawwwwwwr  big_smile


Top things ]:D
dwb | Firefox Nightly | sakura | emacs | moc | #! | Arch | Doing 1 thing @ the time | Music from the 90s

Offline

#45 2013-10-18 12:49:25

mosesgunn
#! CrunchBanger
Registered: 2012-10-20
Posts: 133

Re: DDoS Attack 2013-10-17 (resolved)

This is so strange.

@chillicampari:  I agree.  The Crunchbang reputation is solid.  We do not need to mess with it!

@corenomial:  Keep it up!  We're all behind you!

Offline

#46 2013-10-18 15:01:16

Sector11
#!'er to BL'er
From: SR11 Cockpit
Registered: 2010-05-05
Posts: 15,667
Website

Re: DDoS Attack 2013-10-17 (resolved)

@ Inodoro Pereyra

I may think, voice about such things, but would never stoop to their level even if I had the capability'  ... firm believer in "What goes around ... comes around."  Sooner or later the piper will get you!

I've been on the bad end of that enough in my life, now I 'try' to avoid that kind of conflict, I'm human, so not always successful.  But never consciously, will I set out to hurt anyone, which is what this would be.


·  ↓   ↓   ↓   ↓   ↓   ↓  ·
BunsenLabs Forums now Open for Registration
·  ↑   ↑   ↑   ↑   ↑   ↑  · BL ModSquad

Offline

#47 2013-10-18 15:13:37

LanaVishnu
New Member
From: Petaluma, CA
Registered: 2013-04-15
Posts: 9

Re: DDoS Attack 2013-10-17 (resolved)

Is there any possibility of putting up a new mirror of the crunchbang repo?

Offline

#48 2013-10-18 15:19:31

bauwle
#! Member
Registered: 2013-07-29
Posts: 58

Re: DDoS Attack 2013-10-17 (resolved)

Those people are evil  sad

Offline

#49 2013-10-18 15:26:12

Sector11
#!'er to BL'er
From: SR11 Cockpit
Registered: 2010-05-05
Posts: 15,667
Website

Re: DDoS Attack 2013-10-17 (resolved)

@ nathanphoenix

I'm total noob with stuff like this, but if I read right:

- Maintains a current local snapshot of the latest ISO files and repositories, working only during system downtime (maybe maintain with pysvn or rsync.py, or using apt itself?);

Wouldn't that be "similar" to a 'part time torrent'?  The whole concept you wrote sound interesting though.

Is this it? ...

DDoS on main #! Server - 'immediately' (grain of salt) X number of "hosts" make available their 'mirrors' of the #! repo/ISO's in that time of need that go offline when the attack is over.

Question:  Would the DDoS attacker then be able to start attacking the "hosts"  ?

tamikan wrote:

What was it again the best offense is a good defense or the greatest victory is the battle never fought  8o

That -or- is the best part!  OPINION


·  ↓   ↓   ↓   ↓   ↓   ↓  ·
BunsenLabs Forums now Open for Registration
·  ↑   ↑   ↑   ↑   ↑   ↑  · BL ModSquad

Offline

Be excellent to each other!

#50 2013-10-18 15:39:52

Malice
#! Member
From: Poland
Registered: 2013-10-15
Posts: 50

Re: DDoS Attack 2013-10-17 (resolved)

Yeah, I am against empty words. We could try to guess who's behind this. We could try to come up with idea why someone would do this. We all know we don't like it. Attacking us is really mean and bad. But mean words from us, even if targeted to "hackers", should imho not take place.

I mean, what can we do? Just wait. We are attacked. It sometimes happens. It's sad. But we can't do anything, sadly. That's the way internet works.

But I agree, it sucks. Hope this ends quickly.

Offline

Board footer

Powered by FluxBB

Copyright © 2012 CrunchBang Linux.
Proudly powered by Debian. Hosted by Linode.
Debian is a registered trademark of Software in the Public Interest, Inc.
Server: acrobat

Debian Logo