Slashdot Mirror


Security Experts Doubt SCO's Claims of DoS

devilkin writes "As a recent Slashdot story indicates, SCO claims their website was the target of a DoS (Denial of Service) attack. Was it really? The people at Groklaw think otherwise..."

34 of 510 comments (clear)

  1. Let's do a Slashdot insta-poll by Anonymous Coward · · Score: 5, Funny

    It wouldn't be an over-exaggeration to say that a bulk of SCO-related talks happen here on Slashdot. Even NY Times and other mainstream media frequently refer to Slashdot, when they need a quote from "open-source community", "Linux users" and other group that is mentioned in the article. Thus any DDOS attack organization wouldn't probably go unnoticed on this site.

    So here's a question - have you or any friends of yours taken part in SCO DDOS attack? If the overwhelming answer on Slashdot is no, then I guess we know the value of SCO's claims.

    1. Re:Let's do a Slashdot insta-poll by lactose_incarnate · · Score: 5, Funny

      Yeah, I've been illegally attacking servers. Heh, who is going to answer that question?

    2. Re:Let's do a Slashdot insta-poll by Anonymous Coward · · Score: 5, Funny
      have you or any friends of yours taken part in SCO DDOS attack?

      Well I tried to view their website after this was mentioned on Slashdot. Does that count?

      Disclaimer : many of the others participating in the Slashdotting are not my friends

    3. Re:Let's do a Slashdot insta-poll by pyros · · Score: 5, Funny

      have you or any friends of yours taken part in SCO DDOS attack? If the overwhelming answer on Slashdot is no, then I guess we know the value of SCO's claims.


      That's specious logic.


      A single machine on cable or DSL can SYN flood a machine. The attacker sends a stream of SYN packets with forged source addresses, the victim machine replies back to the bogus IP and waits.. and waits.. and waits.. It takes negligible bandwidth to do this.



      I'm intrigued by your ideas, and would like to subscribe to your newsletter.

    4. Re:Let's do a Slashdot insta-poll by Boing · · Score: 5, Funny
      So here's a question - have you or any friends of yours taken part in SCO DDOS attack?

      Nice try, Darl.

    5. Re:Let's do a Slashdot insta-poll by geoffspear · · Score: 5, Funny
      Sure, it may seem simple to you, but if you were running a business you'd probably think it made sense to sell a product instead of spending millions of dollars on flimsy lawsuits against corporations with virtually limitless resources to throw at legal defense and countersuits.

      Anyway, my point was that it's not fair to assume they're lying just because a smart person could circumvent the attack. It's equally probable that they're stupid and telling the truth.

      --
      Don't blame me; I'm never given mod points.
  2. Soon... by Anonymous Coward · · Score: 5, Funny

    SCO will sue Groklaw for illegal use of the term "DDoS", which of course SCO lays claim to.

    1. Re:Soon... by KilobyteKnight · · Score: 5, Funny

      SCO will sue Groklaw for illegal use of the term "DDoS", which of course SCO lays claim to.

      Clearly, the letters "D", "o", and "S" are part of SCO IP.

      "S" is the first letter in their company name. "D", being the letter after "C" is obviously a derivitave work of the second letter. "o" is simply an attempt to hide the misuse of the third letter "O".

      Unquestionably, SCO owns DDoS.

      --
      When will Windows be ready for the desktop?
    2. Re:Soon... by Hektor_Troy · · Score: 4, Funny

      Funny ... I thought this was about SCO being owned by DDoS ...

      --
      We do not live in the 21st century. We live in the 20 second century.
    3. Re:Soon... by mgg4 · · Score: 5, Funny

      Clearly, the letters "D", "o", and "S" are part of SCO IP.

      Actually, I thought the letters were "P", "o", and "S".

      --
      -- This space for rent.
  3. I'm shocked... by BigDork1001 · · Score: 4, Funny
    Oh, I'm so shocked. SCO might have lied about something. Is nothing held sacred anymore? Oh what is this world coming to???

    --
    "Armed forces abroad are of little value unless there is prudent counsel at home" - Cicero
  4. I dont know if SCO was DOS'd by Anonymous Coward · · Score: 3, Funny

    But I sure know that groklaw is DOS'd.

    Connection refused.

  5. Remember, do not go to www.sco.com/216.250.128.12 by Anonymous Coward · · Score: 3, Funny

    That just causes more problems for their servers.

  6. DDOS..... by Vengie · · Score: 5, Funny
    Blake Stowell was quoted as saying, "From preliminary research, we appear to be under some form of 'Slashdot Effect' -- involving both duplicate stories and annoying links."
    --
    When in doubt, parenthesize. At the very least it will let some poor schmuck bounce on the % key in vi. (Larry Wall)
    1. Re:DDOS..... by Grizzlysmit · · Score: 3, Funny
      Blake Stowell was quoted as saying, "From preliminary research, we appear to be under some form of 'Slashdot Effect' -- involving both duplicate stories and annoying links."

      Slightly off topic but it's gotta be said, who else finds it appropriate that this mans initials are BS :-D.
      --
      in my life God comes first.... but Linux is pretty high after that :-D
      Francis Smit
  7. slashdotted already. by RobertTaylor · · Score: 5, Funny

    "SCO claims their website was the target of a DoS (Denial of Service) attack. Was it really?"

    Groklaw certainly has just been ;)

    Cheers,
    rob.

  8. Security experts? by Lord_Dweomer · · Score: 3, Funny
    Security experts eh?

    Security Expert: "Oh, so um, you claim malicious linux users who you wanted to sue are DDoSing your servers Mr. McBride? Well, let me get out my laptop and check it out."

    *boots up linux distro of choice*

    "Nope, doesn't look like it was that at all, sorry!"

    *evil snicker*

    --
    Buy Steampunk Clothing Online!
  9. SCO just doesn't quit by sulli · · Score: 4, Funny

    First they claim they own Linux, and now DOS! What's next, CP/M?

    --

    sulli
    RTFJ.
  10. Re:Full text: in case of slashdotting by musikit · · Score: 3, Funny

    I'm being told that Linux has a very simple preventative built in. Linux comes with the ability to block ALL SYN attacks.

    all forms of LINUX too bad they are using UNIX

  11. What really happened by Virtex · · Score: 5, Funny

    SCO's web site was only designed to handle one person at a time. Until recently, it worked well enough, but recently two people tried to access the web site simultaneoulsy. This, of course, brought down their server. And since the two people were located at different locations, it was distributed; hence, we have a distributed denial of service (DDoS) attack.

    And now you know the real story.

    --
    For every post, there is an equal and opposite re-post.
  12. Re:Press release? by Blahbbs · · Score: 5, Funny

    SCO probably submitted this story to Slashdot in order to DDoS GrokLaw's web site.... It's working, isn't it?

  13. Re:SYN attacks are not bandwidth hogs by mrpuffypants · · Score: 5, Funny

    who in their right mind merges the public internet server and internal intranet server ???

    who in their right mind sues IBM???

  14. Step 1 by gspeare · · Score: 5, Funny

    I'm sure this is just an overture to...

    Step 2: "Hackers" infiltrate SCO and maliciously make off with all of the supporting evidence for their suits against IBM. Sorry judge!

  15. Here's how to test their claim by IshanCaspian · · Score: 4, Funny

    Why don't we SYN flood their FTP server? If their claims are correct, it should go offline, right?

    --

    But there is another kind of evil that we must fear most... and that is the indifference of good men.
  16. My theories: by CAIMLAS · · Score: 4, Funny

    -SCO sold all their servers to increase revenue.

    -They took everything down to install MS Windows Advanced Server 2004

    - The guy that took over for the sysadmin, after they fired him, tripped and spilled coffee all over the cisco rack. They're waiting for replacements, shipped Express.

    - Daryl opened an attachment

    --
    ~/ssh slashdot.org ssh: connect to host slashdot.org port 22: too many beers
  17. Re:Full text: in case of slashdotting by grub · · Score: 3, Funny


    Coming up in 2006 release of openserver: SYN flood protection...

    What's that, a pair of SCO branded scissors to cut the CAT5?

    --
    Trolling is a art,
  18. Re:Very strange is this; reported BEFORE it happen by ianc7 · · Score: 5, Funny

    Later SCO will claim that this is the same server that held the only copy of their moutain of evidence and all of their source code too.

  19. Re:Full text: in case of slashdotting by CAIMLAS · · Score: 4, Funny

    It makes sense to me that they would claim it's a "SYN flood" simply because SYN has a similar sound to "sin" - it sounds evil! A "ping" flood sounds about as threatening to the average person as a pair of daffy duck children's socks.

    --
    ~/ssh slashdot.org ssh: connect to host slashdot.org port 22: too many beers
  20. It wasn't a DDOS by AndroidCat · · Score: 5, Funny

    It was all their remaining technical people sending out floods of job applications.

    --
    One line blog. I hear that they're called Twitters now.
  21. SCO's next press release: by LuxFX · · Score: 3, Funny

    Dear Mr. Judge,

    I am sorry but we are unable to provide the source code examples you have requested. These examples were stored on our web server and were lost in a recent DDoS attack on these servers.

    By my reckoning, that means we win. Tell IBM to pay up.

    -D. McBride
    CEO, SCO Group

    --
    Punctanym: alternate spelling of words using punctuation or numerals in place of some or all of its letters; see 'leet'
  22. Groklaw; sco.com by blunte · · Score: 4, Funny
    Groklaw has seemed to do fine in the past against /., so the current problems surprise me.

    On a different note, perhaps we should all (all /. readers) visit the SCO site each day, maybe even multiple times a day, to make sure we don't miss out on some important information.

    And remember, you'll want to disable your cache to do this. Oh, and if you have a browser that allows you to set it to auto refresh, that would be a good idea too. It would really be a shame to miss an important press release just because you forgot to hit Refresh often enough...

    Unfortunately, SCO's unknown (linux) server is having some difficulty right now.

    What (obviously) amuses me is that this frequent refreshing of their news page would be justified, given their proclivity for using press releases to disseminate important information.

    --
    .sigs are for post^Hers.
  23. Perhaps by hackhound · · Score: 4, Funny

    They forgot to buy a liscense from themselves, and were forced to shut their server down to keep from getting sued by themselves?

  24. sco.com - visit often! by Tool+Man · · Score: 3, Funny

    Good idea, but just to make sure you get it all, you should mirror the contents. "wget -m" should do the trick, and when the site does get hosed, you'll already have a mirror to share with /. readers!

  25. Con job or cron job? by Roadkills-R-Us · · Score: 4, Funny

    Looks like both to me. Someone at SCO has a cron job running that starts a DDoS (SYN) attack against www.sco.com from their internal network, and sends out a press release at the same time.

    That way Darl doesn't even have to climb out of his lawyers' lap, where he spends the day happily napping and dreaming of Linus as his shoe shine boy.