[12924] in bugtraq
Re: Analysis of Tribe Flood Network
daemon@ATHENA.MIT.EDU (Stefan Laudat)
Fri Dec 10 14:09:59 1999
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Message-Id: <19991210111717.A15851@asit.ro>
Date: Fri, 10 Dec 1999 11:17:17 +0200
Reply-To: Stefan Laudat <stefan@NS.ASIT.RO>
From: Stefan Laudat <stefan@NS.ASIT.RO>
X-To: Mixter <mixter@NEWYORKOFFICE.COM>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <Pine.LNX.4.04.9912090536350.1949-100000@aviation.net>; from
Mixter on Thu, Dec 09, 1999 at 06:20:23AM +0100
> I just wanted to tell you that 'trinoo' has been around for
> more than half a year, originally developed by 'takeover / war'
> groups on IRC to launch attacks against users and IRC servers.
> Since trinoo was never published, I wrote TFN and made it publicly
> available at some security sites, in hope to make some people aware
> of the impact of 'distributed DoS'..
Ahem, there was a public mIRC script called Tribe (two years ago) downloadable
from the whole internet that used the described 'flood net' command set. I used it personally
but I was never aware of that 'feature'. So this TFN is even older. Keep analyzing
your servers, you might been 0wned from a long time >8-)
--
Stefan Laudat
Data Networks Analyst
ASIT SA
----------------------------------------------------------------
Skills page http://www.tekmetrics.com/transcript.shtml?pid=30777
----------------------------------------------------------------
HELP!!!! I'm being held prisoner in /usr/games/lib!
