[144227] in North American Network Operators' Group
Re: DDoS - CoD?
daemon@ATHENA.MIT.EDU (BH)
Tue Sep 6 04:04:47 2011
Date: Tue, 06 Sep 2011 16:03:59 +0800
From: BH <lists@blackhat.bz>
To: nanog@nanog.org
In-Reply-To: <30DB1247-4534-4740-BE31-16CDFFDB6A2F@arbor.net>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On 6/09/2011 4:00 PM, Dobbins, Roland wrote:
> I've seen DDoS traffic on UDP/80 as far back as 2002
Hi Roland,
I should be a bit more clear sorry, I too have frequently seen attacks
on 80/udp but mainly as a source (eg. compromised hosting accounts)
rather than the destination. I didn't in the past do a packet capture,
but I lookes at a couple of scripts and the data was usually randm or
just AAAAAA etc. The thing that perplexed me is why it appears to be
Call of Duty data more than anything...
Thanks
