Second Life Hit By Massive In-Game Worm

An anonymous reader writes, "At 2:46 CST today, the game Second Life was hit by a massive attack by a rogue programmer. Spinning gold rings began to appear in the air and on the ground, and as users interacted with them they began to chase and replicate. Apparently, most people are willing to touch an object they've never seen before and this invoked a worm script that was designed to multiply and spread across the 2,700+ servers run by Linden Labs in California, the game's owner. Many of the six hundred thousand active users experienced serious lag and lost connectivity to the servers, making it one of the largest known denial-of-service attacks in an online game. Linden Labs had to invoke martial law and lock out all logins by users except their staff as they began the task of cleaning the servers of what they began to term 'the grey goo.'" Comments in the SL blog entry indicate that Linden Labs had already deployed a "grey goo fence" before this worm struck, but someone found a hole in it.

Not just misleading, but factually inaccurate too!

[GuruBuckaroo]

First off, there were only about 14,000 people on the system at the time, not 600,000 as indicated in the summary. Second, while they did lock out new logins, it should be pointed out that any user who was currently online was not kicked off - and the period of "martial law" lasted about 20 minutes.

Of course, if there were 600,000 users on at the same time, the "game" would be unplayable - it's tough enough when it gets over about 10,000 right now.

Re:Someone please explain

[GuruBuckaroo]

Calling it a 'worm' is kind of a stretch. It does not affect your local computer, it affects the view of the world in your local client. It doesn't run code on your computer, it just adds extra "in-game" items that automatically duplicate themselves and clog the Tubes.

This one wasn't much to write home about afaict

[ka-klick]

I was online when this thing was attacking, and it never seemed to get to my sim - I saw the notices, and the web notice that they'd locked things down to linden login, but they let anyone there stay. It was laggy, but that's not that unusual these days. At least with this one, the grid was never fully down (if you were already in or didn't get booted) and the Lindens were able to contain and clean it up pretty quick (unlike some of the marathon outages caused by goo of the past). Total offline time for this one was about 1/2 hour.

A clarification - even if there are currently ~600k active user accounts there are usually only ~10K or so online any given time of day.

Anyway, I'd say the overreaction to copy bot did more damage to SL as a whole than this thing did.

Yawn.

Re:Someone please explain

[DarkAxi0m]

every object you create in SL can have scripts http://en.wikipedia.org/wiki/Linden_Scripting_Lang uage added to them, that fire on different events, ie touch, never ending loops or the right click menu etc.
some of the commands let you create/spawn (i cant think of the word they use) other objects, like rain, or stars that follow you as you fly around. These objects in turn can have there own scripts too.
i don't know my self how they normally stop never ending loops of created objects other than them asking people nicely not to do it.
Some people have asked to able to disable the scripts but this, i think would have a to greater effects as every thing, doors, cars, lifts, dance club lights etc use the scripts.

i don't mind it, as long a people remember that its really just a glorified chat program with scripts, ie irc with a gui /fish

Re:Someone please explain

Huh? By definition a worm is a self replicating program or algorithm that causes harm, even if only by using bandwidth, network, or computer resources.

That is exactly what this worm did.

Re:Screenshots?

[Erazmus]

I found a screenshot over at Snapzilla.

Re:And it was just getting good

[Rob_Warwick]

Turing complete refers to a language that's capable of emulating a Universal Turing Machine. It has nothing to do with the Turing test except for who it's named after.

dumbest slashdot story ever

[pmonje]

Did anyone read this before posting it? the figure of 600,000 was pulled out sof someones butt. I have never seen more than 25,000 people on SL. It's certainly not the largest denial of service in the game, in fact script attacks like this happen almost weekly in SL and always involve cutting off new log ins. I've never heard them use the term martial law and the supposedly new term grey goo has been used for months and months in realtion to these self replicating object attacks. The in-game scripting makes this sort of attack childs play. This attack is barely news even within SL. Even a cursory glance at the page linked will tell you all of this, but apparently not even the posters read their own links now. I think I'll start submitting random weather reports to slashdot, I'm sure some of them will slip through slashdots crack staff and be posted.

on a related note, why can't we moderate stories as "-1 posted by an idiot"?

Re:PR Stunt?

[joshv]

Really? Are you suggesting they made it up. I was there, it happened.

An abridged history of SL DoS attacks

[tony_ratboy]

This latest attack isn't the newest or most severe Second Life has experienced. In October 2006, a glut of attacks followed a vague "terrorist" threat uttered by self-replicating objects. In April 2006, three major attacks took place. Almost a year ago today, Linden Lab blocked a DoS attack by deploying a giant virtual firewall in-world, but I don't think that method is still used. Linden Lab had suggested earlier this year it would bring DoS attackers to the attention of law-enforcement agencies, but the results (if any) have not been publicized.