HackerTrans
TopNewTrendsCommentsPastAskShowJobs

catminou

no profile record

comments

catminou
·há 3 anos·discuss
"ddos" via DMCA requests is an actual thing. There are actual methods that a few ddos-as-a-service providers provide (aka booters or stressers) that will fling tons of DMCA/abuse reports at your hosting/cloud provider to get them to take action on you.
catminou
·há 3 anos·discuss
I wonder how many folks learned of tcl/tk cause of eggdrop.
catminou
·há 3 anos·discuss
I remember in the 90s a classmate in my junior high lived across the street from the house that Ted grew up in (evergreen park, il). When all this was going down he mentioned how before it went public that there was a suspicious amount of people visiting that house and removing things in boxes (I guess Teds brother owned the house and still had his writings in the attic).
catminou
·há 3 anos·discuss
At the time I recall a lot of drama around Fincher taking it on ("mtv music video director takes on alien project"). Also there is the case of how did the egg get on the sulaco, which isn't clear.
catminou
·há 3 anos·discuss
I didn't see it mentioned here but if you watch the documentary on Alejandro Jodorowsky attempting to make Dune - the collection of folks he brought together (for a project that didn't happen) ended up being key folks in making Alien. Talk about bringing the right talent together

That said - love Alien and will occasionally rewatch it. It's "space trucker" environment with low tech interiors really took on a different approach compared to other works in scifi. It's tranquil scenes and score are also pretty unique. Even the trailer feels a bit ahead of it's time when compared to trailers today.
catminou
·há 3 anos·discuss
For botnets, yes.

For L7 request floods - they spin up a few dozen machines and use open & private proxies to funnel http requests thru. Sometimes those proxies are misconfigured squid, sometimes it's private proxy services, sometimes it's compromised machines converted into proxies (which may be open or require auth / has been sold).

For L3/L4 amplification/reflection they're buying machines where they can spoof and using UDP amplification lists (other people's machines) to reflect off of (and obviously not getting permission to, etc.).
catminou
·há 3 anos·discuss
Security updates is the important part. Particularly when dealing with vulnerable equipment which can be compromised and botnet malware dropped on it. A 0 day in a popular DVR/NVR or home router can lead to tens of thousands of devices that can throw a lot of heat. ISPs have been not great in this space so it's left to a small community to chase down the manufacturers to push updates out. The tragic part is for some devices - the company has gone out of business.

The scary part of auto update is when a company does a bad job of it. For example: letting the auto update site domain expire or point to an IP at a hosting provider that someone might pick up and if the devices don't do proper endpoint validation folks can use it to force downloads of compromised images.

All of these things have happened.
catminou
·há 3 anos·discuss
Is it going to be Beetlejuice goes Hawaiian like originally planned? (That was the actual pitch for several years)
catminou
·há 3 anos·discuss
India is well known for blocking CDNs IPs for a variety of reasons (don't like the content, or because you can VPN on top of them).

I've seen some CDNs who don't use anycast and rely primarily on DNS to cycle thru the IP pools vended in India because the government is slow to add new addresses to block and they maintain a cool down period before reintroducing them.

The shitty part is that the entity in India issuing this never reaches out to the CDNs to communicate exactly what they object to.
catminou
·há 3 anos·discuss
Folks sometimes start as consumers of ddos services and at some point realize they can run their own service and make money, buy API access into other booters to begin (reselling but the customer doesn't know) and then they figure out how to build their own infra (dedicated servers, front end, payments etc.).
catminou
·há 3 anos·discuss
I recall looking at the various charts and from what I recall the "discolored water" notation was sourced from a chart several decades before and was offset by a few miles (incorrectly charted in the first place).
catminou
·há 3 anos·discuss
Don't forget the VPN providers who turn their customers machines as egress nodes without making it obvious they're doing so.
catminou
·há 3 anos·discuss
My recollection is that they're still selective in the US. Maybe that's changed.
catminou
·há 3 anos·discuss
Ok you're being sent to pops in northern Virginia, that's a big problem. Lemme reply back with some other commands to figure out which DNS resolver public IPs you are coming from..
catminou
·há 3 anos·discuss
I agree in that the Canadian ISP market has had a rough ride for a long time. Until the mid 2000s when Cogent and other folks (GTT) rolled into Canada, TELUS, Bell and other companies were charging obscene rates for IP transit.

For several years the TELUS and Bell peering PNIs (OC12s back then) would run hot regularly in domestic Canada - for years.

You'll never get them to peer openly, but at best you can get them to offer market rates for paid peer (which is what folks have tried to do in the US).
catminou
·há 3 anos·discuss
https://www.google.com/amp/s/www.politico.com/amp/story/2019...
catminou
·há 3 anos·discuss
What are you using for DNS?
catminou
·há 3 anos·discuss
Are you near Utah? The fact you are being routed to a cloudfront pop in IAD is kinda broken.

What are you using for your DNS resolver?
catminou
·há 3 anos·discuss
Because they believe you are customers.

This is no different than me approaching Verizon or at&t and demanding they peer with me.
catminou
·há 3 anos·discuss
This has nothing to do with torix. This has to do with bell and telus sees you as customers, not peers.