Slashdot Mirror
An Anti-DoS Tool That Returns Fire
An anonymous reader submits "Security company Symbiot is about to launch a product that can help companies fight back during a DDoS or hacker attack by launching their own counter offensive. A ZDNet UK story quotes security "experts" questioning the legality of such a product and asking how it will will avoid being fooled by hijacked PCs and spoofed IP addresses..."
"In advance of the product launch, Symbiot's president, Mike Erwin, and its chief scientist, Paco Nathan, have outlined a set of "rules of engagement for information warfare", which they say should be part of corporate security policy to help companies determine their exact response to an incoming attack."
::shudder::
Can you imagine large corporations full of MCSEs engaging in "information warfware"?
libertarianswag.com
Where is the tactical nuke for spam? I want a tool that goes on the offensive against spammers.
Who does SCO attack first? :)
heh, don't link to the company's website, slashdot editors - the /. horde will make with the clicking and they might return fire to your readers. ;)
(oblig. - "Of course, that would require them to be reading the articles")
Symbiot, a Texas-based security firm
Ok, it makes sense now.
entering the word EXIT (followed by pressing the Enter key) is a surefire way to kill those ding-dang DOS session windows.
Another dot-com hoping to sink their feet? Oh yeah, what's this API business? There's dozens of pages of googlecached stuff relevant to it.
Use Minidisc? Join the Minidisc.org forums.
Slashdot has been knocked off the web for good, seemingly due to the fact that several of the daily stories it linked too were running the new "counter-attack" DoS protection.
Then of course there's version 2, which preemptively attacks any remote hosts that could conceivably pose a threat. Inspired by official US Foreign Policy. Ba-dum-ching. ;)
"Mind, as manifested by the capacity to make choices, is to some extent present in every electron." -Freeman Dyson
You may be taking out grandma's computer in Birmingham that has got a 100-year-old cookie recipe that has not been backed up.
Okay, now they're crossing the line. You mess with Granny's Lucious Cookies, and you're in for it. This means war!
Show me on the doll where his noodly appendage touched you.
It preemptively surrenders even before it's attacked.
"Look out, we're being attacked by 127.0.0.1! Return fire!"
So then you forged a message so that it looked like it came from a second victim - and when their mailbox filled up it would bounce them back to the first victim
A fun way to take down T-1 lines back in the day when that was considered more bandwidth than any large university could ever use... Not that I have ever done anything like this
I have mod points and I am not afraid to use them
It's called 'Fists and Elbows (TM)'. You see, it behaves like a furious retard when provoked. It lashes out at whatever it can find. My software does the same thing, only over the network. The moment it detects even the slightest irregularity in the network it launches every attack in the book against any computer it can connect to.
All right I know I'm in here! If I don't come out with my hands up....I'M COMMING IN TO GET ME!!!
- Minutus cantorum, minutus balorum, minutus carborata descendum pantorum.
Ghandi said:
an eye for an eye makes the whole world blind
Scr1ptK1di3X says:
0n3 DDoS 4 4n0th3r DDoS 0wnz 4ll th3 h0l3 int4rw3b!!!1
What a great idea.
- sm
Only Symbolic because this product will get pulled of networks as soon as it is put on.
Oh yeah, gotta slip in the anti-America jab. Well, Canada, why don't you go off and play with your mad cows, inability to pronounce "about" correctly, red flannel shirts and hats with ear flaps, stupid coins that never work in out vending machines, perpetually drunken 18-year-olds, horrid comedy personalities, automatic tax on blank media, invisible and powerless prime minister, and hissy fits over French VS. English?
I'm sure all the companies in YOUR country would prefer server software that responds to DDoS attacks by letting out a high-pitched girly scream and running away on tiptoe while apologizing profusely in English and French?
All in good fun, just trying to point out your stereotype is pretty absurd in this situation.
...
Which launch the "counter-attack" on random servers before it's even attacked, just in case.
What do you know about World Politic? Find out in this quiz
No, no, remember, the government's differentiator is "_we_ get to do things that are illegal for you!"
Slashdot: Failed Car Analogies. Amateur Lawyering. Anecdote Battles.
Just write it off as regrettable "collateral damage" in the "war on cyberterrorism" and reload.
Slashdot: Failed Car Analogies. Amateur Lawyering. Anecdote Battles.
You're fine until someone kills Archduke Ferdinand.
It shuts down the instant you bring it online. To conserve energy.
"They claim to have a way to identify the system responsible for the attack, and then exact retribution."
And of course there is no way they would use this information (if it were true) to shut down the attacker by legal means?
Sound *very* American to me.
It just pretends it has the capability to counter-attack.
Ironically, the word ironically is often used incorrectly.
Let me see:
We now have a product that produces more shit than ever, has no sound concept behind it other than "Let's nuke the shit out of these &&&%$s", probably costs a shitload of money and appeals to PHBs in the extreme.
I'd say: Let's buy some shares.
Which launches DDoS attacks against itself, but then runs out of money and breaks up into smaller, poorer versions of itself.
-- "Government is the great fiction through which everybody endeavors to live at the expense of everybody else."
Speaking of counter-strike, "Terrorists Win".
With a system like this in place, anyway.
My other car is first.
How many of you read the headline and imagined smoke billowing out of a 1337 Hax0r's computer?
Give me my freedom, and I'll take care of my own security, thank you.
Stays away from the fight and just makes money selling the weapons.
Which denies the attacks ever existed dispite reporting them itself last year.
You need a FREE iPod Nano
Your email is hosted by a canadian company and it looks like a work account. Anyhow, lets talk about Canda, whose troops were right with the U.S. troops in Iraq, also your country was the first to go along with U.S. foriegn policy in the U.N
I'd suggest an alternate source for news, son. The CNN news ticker doesn't seem to be doing you any good. Great detective work on the email address thing, too. Lemme guess...you're also an MCSE ?
How to make the world a better place with your 14.4K modem: Setp one-Attack Microsoft spoofing your ip as SCO Step two-Attack SCO spoofing your ip as Microsoft Step three-watch and enjoy as both corporations' stupidity brings the other to their knees Step four-upgrade to cable
If you are about to mod me down, keep in mind that this post was most likely sarcastic.
From now on I will send 20,000,000,000 emails to any creep that sends me crap I don't want. And I know who you are, it states 'From:....' clearly on any email I receive.
Reminds me of a paragraph I once heard:
"In the history of our country, diplomatic relationships with third world dictatorships have always been difficult. In such situations we usually have to deal with a ruling party leader who doesn't listen to the people, won't accept public criticism and only listens to those able to make large donations of money to the party. And the third world dictator isn't any better either."
I like this!!
Tough shit if the system(s) attacking you are hijacked systems, they are attacking you and need to be stopped.
If you are walking down the street and someone yells "RAPIST" and points you out and a crowd of strangers acting only on what they have just heard, jump on you and begin beating you up, is it right for you to just lay there and let the strangers beat on you just because they are acting on misleading information?
No, you would defend yourself with physical force and all means at your disposal. Why should anyone just "lay there and take a beating" ??
It's just a shame you can't pump 440v down the line and fry the attacking systems. Shut them down and stop the attacks. What more damage can you do anyway? The attacking systems are already damaged, why not just do them in so that the owner is forced to notice and repair the problem, versus leaving it alone as it continues to wreak havoc un-noticed by it's owner.
DEATH TO THEM ALL!!
Which swears off all forms of attack, unless it involves giant robots or tentacles.
The ______ Agenda
It used to be that you had to use email worms to conscript people's PCs into your private army of DDoS zombies. By packaging the trojan and calling it a security product you can avoid all that hassle.
We Counter Attack with a DDoS before someone who might have "DDoS of mass destruction" attacks us. .then blame the British.
.
.
.
.
The Kruger Dunning explains most post on
Someone gets this idea every few years. Probably from watching too many bad hacker movies.
Just smile, nod politely, and let the lawyers take care of it.
Let the Internet shootout begin.
What? Like four more years of Bush, or 1000 free Britney downloads?
"Flyin' in just a sweet place,
Never been known to fail..."
I have Snort set to identify any DDoS attack. Once that happens, I have a perl script grab the offending IP address, find a story that ran on Slashdot last week, replace the links in the story with the offending IP address, then resubmit the story. Poof, target is gone. Works every time...