[45317] in North American Network Operators' Group
WEF cyber-protest (was Re: distributed attack, high or not)
daemon@ATHENA.MIT.EDU (Sean Donelan)
Thu Jan 31 02:46:47 2002
Date: Thu, 31 Jan 2002 02:45:35 -0500 (EST)
From: Sean Donelan <sean@donelan.com>
To: "Steven M. Bellovin" <smb@research.att.com>
Cc: "Joseph T. Klein" <jtk@titania.net>, <nanog@merit.edu>
In-Reply-To: <20020131031418.382937B4B@berkshire.research.att.com>
Message-ID: <Pine.GSO.4.40.0201310238250.16671-100000@clifden.donelan.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Errors-To: owner-nanog-outgoing@merit.edu
We're entering protest season. The World Economic Forum opens
today in New York City. Some protesters have launched what they
call a cyber-protest using several different tools. So far it
appears directed at a few selected, although well-known, corporations.
http://www.geocities.com/net_strike_net/english_active.html
On Wed, 30 Jan 2002, Steven M. Bellovin wrote:
> It's a classic DDoS attack, aimed at you. Someone has lots of zombie
> machines out there; at some point, they sent a command packet to all of
> them, saying "bombard such-and-such an IP address for 3600 seconds".
>
> Common? It happens frequently to someone. Precursor? Entirely
> possible, though there's no way to know for sure. But it can be very
> bad -- see http://news.zdnet.co.uk/story/0,,t269-s2103098,00.html
> for what happened to a British ISP.
