Slashdot Mirror
Gambling Sites Battle DDoS Attacks
the-dark-kangaroo writes "Gambling sites are fighting back against extortion from hackers using Distributed Denial of Service (DDoS) attacks. According to the report released by the BBC many of these attacks are coming from infected home PCs which have succumbed to a worm or virus. The gambling sites are bringing in reinforcements: Pipex, Cisco and security firm Energis are creating 'intelligent' traffic monitoring systems to help stop these attacks."
A moment of silence for the kneecaps of the virus writers if/when discovered.
Ok, I'm not sure about those other companies that were mentioned, but Cisco is a U.S. company. And internet gambling is illegal in the United States. Now, don't get me wrong, I don't give a shit whether people gamble on the internet, and I see the anti-internet-gambling laws as having as much to do with protecting monopolies as anything else.
Now that I've said that, how is this not a legal issue for Cisco? Surely the FBI, DEA, and assorted other federal agencies would be all over Cisco if they were helping Colombian drug cartels in any way whatsoever. How do they "get away" with it? Aren't they essentially aiding and abetting what in the U.S. is considered a criminal enterprise? I mean, as an individual I can go place bets at some offshore casino and fly under the radar, but a big company like Cisco is going to have a hard time doing that, especially if their help is on the front page of Slashdot and other news sources.
Hear recorded Slashdot headlines on your phone! New service beta testing. Just call (248) 434-5508
Yah, and I'd feel sorry for them if they'd play nice and stop writing worms to crawl blogs and paste poker spam in the comments. You wouldn't believe the amount of spam I had to clear from my blog comment area already. Imagine my surprise when I saw the same poker spam in the comments of every single post in my blog on some computer graphics project I'm working on... Feel sorry for them? Not really.
Install windows on my workstation? You crazy? Got any idea how much I paid for the damn thing?
I wonder if the ISP's will continue selling solutions where the PC is connected directly to the internet. We've all seen the tests. It takes less than 5 minutes for a Windows PC to be taken over (or 0wned as they say). But - a simple router with NAT helps immensly. Would it help if the ISP's were forced to only sell internet access with at least a router?
Underholdning.info
Okay, I understand that we're talking about gambling websites. But these same methods can be used to take down just about any website. Society makes the final call on what is legal and illegal. Some might say the hackers are using their ethics to take down a vice. But if that was the hackers goal, why ask for money? Second, the tax revenue gambling generates often goes to schools. By taking them down, it would seem harm is being done in unexpected places. Politicans are responsible for planning funding, and if a bubble bursts, the community is in trouble.
Second, do we want one, or a small group of people, telling society what they can and can't do? What if a group of Jehova's Witnesses hackers decided to remove ALL porn off the web. People would freak out. One man's utopia is another mans hell.
Rosco: "If brains were gunpowder, Enos couldn't blow his nose."
Why is gambling a shady biz? I don't gamble myself, but as long as they don't come to my house and force me to gamble, I don't see the shady part.
Tax on those poor at math? Perhaps. But, why shady?
"Consistency is contrary to nature, contrary to life. The only completely consistent people are the dead." A. Huxley
Though a lot of online casinos do that*, not all do that and it is somewhat unfair to lump all of them in as deserving of the dDoSes.
/. story about it too
Some interesting stats about online gambling:
- Those dDoSes hit 2GB/sec. More than Energis' internal network can cope with.
- The primary dDoSers (some russian guys) were caught and arrested last year, there was a
- The mafia have been involved with some US sites, but I know of at least one that got shut down when the entire board of the company got arrested
- The WTO is trying to make the US ban on Internet gambling illegal
- The biggest online casino is israeli-founded/based www.888.com who do multiple billion per month in turnover. You can get house win from that by taking off about 98-99.5%. (turnover counts every value of every spin of a slot machine or every wager, remove the odds of winning % for the house win)
In conclusion, the world does not have the same laws as the US (gambling is perfectly fine in the UK for instance) and some people run responsible gambling sites and still have to put up with all the tiring crap from crackers and dDoSers.
* technically it is their affiliates who do it through affiliate programs, but same difference, they are all guilty and could crack down on it if they wanted.
Warhammer forums
Why are a bunch of script kiddies being called hackers again?
Sorry but you're displaying your ignorance. Gambling is legal in most societies, and in some (eg, Hong Kong) it's a common activity that the majority of the population enjoy.
Betting on the result of a sporting event, or anything else, via a legally authorised bookmaker is no more shady than having a cup of coffee.
Just because you have this image of gambling that seems to be more to do with smoke-filled secret back rooms where you have to know the password and the guy behind the bar to get in than legitimate, publicly-traded and -scrutinied businesses that doesn't make it a reality.
The gambling sites being DDOSed aren't run by crooks, they're the legitimate and legal online presences of bricks-and-mortar bookmakers as well as internet gambling start-ups.
"Accept that some days you are the pigeon, and some days you are the statue." - David Brent, Wernham Hogg
Casinos seem morally irresponsible to me, letting people run up debt to the point where they put a burdon on society in order to make a profit. I'm sure this is an argument for another place at another time, but that's how I feel.
I'm sorry, but in the US couldn't you apply that label to hospitals too? Medical bills that run into 5 or 6 figures aren't uncommon and it's a sad fact that the biggest factor in personal bankrupcy in the US is unpaid (and, more importantly, unpayable) medical bills.
And, out of interest, where do you draw the line at what is and what isn't gambling? Is playing the lottery gambling? And in a so-called "free" society, shouldn't you be able to do what you want with your hard-earned cash? Does anyone really have the right to tell you how you can and can't use it to entertain (and possibly enrich) yourself if you're not hurting anyone else in the process?
To be honest, I'm not in favour of unchecked gambling, but then I'm not in favour of unchecked alcohol abuse either, but you don't see church and state bringing the roof down on that ballgame, do you?
"Accept that some days you are the pigeon, and some days you are the statue." - David Brent, Wernham Hogg
As someone stated in an earlier comment, the biggest problem is bandwidth. Your CPU may be able to handle the traffic, but when you've got a botnet spanning thousands of computers, sending you traffic in the Gb/sec range, even a serious backbone connection will begin to stutter.
Jw
Firstly, the legality issue is weird to me. I come from the UK were licensed gambling (be it online or in real life) is perfectly legal. I find it rather ammusing that a whole State would ban something like gambling. Anyway, people seem to think that the reason a site dies during a DDoS attack is CPU usage. It's not. It's not related to the servers at all (at least not in the case of big attacks) We were recently hit by a DDoS attack (don't ask) and we were having our 100mb uplink saturated. That's where the problem occured. Our 13 machines could cope with the requests - the pipe couldn't. Even if we went to a Gig uplink (which was considered), they'd simply saturate that. A few hundred compromised machines on DSL/Cable can easily do that. Scary stuff I must admit.
"This is pure BS. Poeple who try to lump Gambling in with true addictions such as drugs and smoking are simply wrong. There is no physical addiction with gambling. You won't go through withdrawl if...."
Your understanding of "addiction" is lacking. While physical dependency on a substance is indeed not the 'exact same thing' as an uncontrollable psychological compulsion, they both CORRECTLY fall under the same general definition of "addiction".
In other words, your opinion that physical addiction is the only "true addiction"... is simply wrong.
http://en.wikipedia.org/wiki/Addiction
Sorry but you're displaying your arrogance. Just because something is legal doesn't mean it is ethical. I could give you plenty of examples, but I'll leave it up to people's imagination.
What sort of a dim-witted comparison is that? Gambling devastates many people's lives. That makes people who push their gambling 'services' onto us 'shady'. Having a cup of coffee has nothing to do with it.
You don't need smoke-filled, secret rooms or passwords to have a shady business. You just need to have a deficient conscience, or excess greed, and an online gambling site. Then you sit back and wait for the poor suckers to 'click', 'click', 'click', 'click', 'click', 'click', 'click'. People don't rock up to a gambling establishment and try their luck once. They stay their until they're out of money. You can disagree with me if you like, but every time I go to a casino ( get dragged their by workmates once a year or so ), the above is what I witness.
I don't think so. People running gambling sites are far more likely to be dodgy than those in a physical establishment. It's far easier to police a 'real' gambling business than a virtual one, especially since a virtual one can hide it's location and reside in a place that has no regulation.
Also, I get a fucking shitload of SPAM from gambling sites. Right away that says to me that the people running the sites are far from innocent, law-abiding citizens.
You seem to try to make the point throughout your post that because something is legal, that somehow blesses the activity. I suppose the opposite of this is that everything which is illegal is patently evil. Both points are absolutely ridiculous. There are plenty of things which are legal which are evil:
- selling carcinogen-soaked cigarettes
- selling alcohol
- selling weapons
- having a monopoly ( esp. a media monopoly )
Likewise, there are plenty of things which are illegal which are quite harmless
- recreational drugs
- not voting if there's no-one worth voting for ( Australia )
- being a member of the Iraqi resistance
I'm pretty sure that I'd get disagreement on all of the above points. This reinforces my argument that:
- you should never use the law to enforce ethical behaviour in private matters
- you should never use an activity's legal status as an indicator of it's ethical status
Back to the topic of the actual article
On my website 90% of the comment spam was from online poker sites. That added up to hundreds of messages per day that I had to delete, and I know many others had similar experiences. I know I was thinking that they deserve a lesson, and maybe some folks decided to teach them one. While I don't necessarily approve of the method, I fully understand the impulse. Many online gambling sites are run by pricks; I won't shed a tear for them and their self-inflicted troubles any more than I would for the RIAA/MPAA.
Slashdot - News for Herds. Stuff that Splatters.
I don't care about addictions.
It just means the affected person must put out even more effort to overcome it.
Just because some people are sex addicts doesn't mean I shouldn't be allowed to sleep with my wife. (or yours for that matter)