Slashdot Mirror

← Back to Stories (view on slashdot.org)

Was This the First Denial of Service Attack?

Posted by timothy on from the read-the-disclaimer-about-calling-first dept.

An anonymous reader writes "Way back in 1974, Dave Dennis, then aged 13, decided to try out the -ext- TUTOR command on the PLATO system at the University of Illinois, and see if he could cause all the terminals of other users to go offline. It worked. And he never got caught. Of course, the powers that be eventually caught on and fixed the -ext- command so terminals by default didn't automatically receive -ext-'s sent from other locations."

39 of 166 comments (clear)

  1. Short answer by TinBromide · · Score: 5, Funny

    Yes

    --
    Is it sad that I am more likely to recognize you and your posts by your sig than your name or UID?
  2. Seems fitting by JorDan+Clock · · Score: 5, Funny

    The first recorded denial of service was performed by a 13 year old, who was basically using a "script kiddie" technique? Well, color me surprised.

    1. Re:Seems fitting by EdZ · · Score: 4, Interesting

      I'm not sure how this could be described as a "script kiddie" technique. The only pre-written software he used (exploited) was the 'ext' command itself. Unless you're expecting all 'real' crackers to only exploit programs and/or operating systems they've written themselves?

      Yes, yes, I know, Rule of Funny and all that. As a card-carrying pedant, it's a contractual obligation to bitch about this sort of thing.

    2. Re:Seems fitting by Dachannien · · Score: 3, Insightful

      As a card-carrying pedant

      Did you make it yourself, or is someone issuing those?

    3. Re:Seems fitting by Cryacin · · Score: 5, Funny

      He made it himself. He wouldn't trust anyone else to get the spelling right.

      --
      Science advances one funeral at a time- Max Planck
    4. Re:Seems fitting by algormortis · · Score: 2, Insightful

      Surprised? How long have you been a /. member for? I've been a member for just a year and I already feel emasculated by all the kids who improve upon a technology before they stop wetting their beds.

  3. Frist Post!! by Anonymous Coward · · Score: 5, Funny

    And last post...

    -ext- :D

  4. So they could receive commands!? by Darkness404 · · Score: 5, Insightful

    So, let me get this right. You could more or less get a list of addresses, and they would accept commands without question if you just typed in the commands and the right address? Sounds like the worst security system ever.

    --
    Taxation is legalized theft, no more, no less.
    1. Re:So they could receive commands!? by Anonymous Coward · · Score: 5, Insightful

      So, let me get this right. You could more or less get a list of addresses, and they would accept commands without question if you just typed in the commands and the right address? Sounds like the worst security system ever.

      Yeah, but this was 1974, when overly-trusting users used commands to do USEFUL things, rather than cause mischief (or shove adverts in front of you)!

    2. Re:So they could receive commands!? by girlintraining · · Score: 4, Funny

      Yeah, but this was 1974, when overly-trusting users used commands to do USEFUL things, rather than cause mischief (or shove adverts in front of you)!

      If you remember 1974, you weren't there, maaan!

      --
      #fuckbeta #iamslashdot #dicemustdie
    3. Re:So they could receive commands!? by pookemon · · Score: 5, Funny

      So I'm guessing you weren't around in 1974. It might also surprise you to learn that once upon a time there were no virus scanners or firewalls. I bet I just blew your mind with that one...

      --
      dnuof eruc rof aixelsid
    4. Re:So they could receive commands!? by 93+Escort+Wagon · · Score: 4, Funny

      If you remember 1974, you weren't there, maaan!

      Don't believe everything you've seen on "That 70's Show".

      --
      #DeleteChrome
    5. Re:So they could receive commands!? by betterunixthanunix · · Score: 2, Interesting

      You know, this was all way before my time, but back then, security was not a common concern on university computers. People working in a lab trusted each other; thus, those who used Unix (or a similar system) would leave their home directories world readable, and as another example, ITS had the ability to observe another user's keystrokes. Things changed in the 1980s as more students got computer access and as proprietary software became the norm.

      There are still echoes of the trust that existed back then. For example, where I am now, anyone in the CS department can remotely access any computer system located in the department, and the permissions on home directories are 755 by default. The only firewall is on the gateway between the department the general campus network, but port 22 is open for any system so you can always ssh through the firewall. We are given root upon request on our assigned desktops. There are plenty of ways that I could subvert others in the department, I could even bring the entire department to its knees by running a simple fork bomb on every system we have, but I do not do any of that because I am not here to attack people or make their lives difficult.

      --
      Palm trees and 8
    6. Re:So they could receive commands!? by Ethanol-fueled · · Score: 2, Insightful
      From the summary:

      And he never got caught.

      If he did get caught he'd get a smirky, eye-rolling verbal warning instructing him to stay away from the terminal. Nowdays a kid would be taken into custody and charged with violating computer crime and terrorism laws.

      FBI and/or DHS interrogations would follow, then he'd be forced to turn snitch and lure other kids(er, "marks") into "hacking" the system, to avoid a decade or more of federal prison.

    7. Re:So they could receive commands!? by PCM2 · · Score: 3, Informative

      I dont care if its 1974 ot 1794, human nature doesnt change. Put locks on your (virtual) doors.

      Yeah, that seems like great advice now, but hindsight is always 20/20, as they say. As recently as the early 90s, most Unix systems didn't even use shadow passwords.

      Admin Guy: "Yeah, so what could happen? Some college kid is going to buy a Unix server and set it up in his dorm room so he can run a brute force attack on /etc/passwd? I'd like to see that one!" LOLZ, snort snort...

      --
      Breakfast served all day!
    8. Re:So they could receive commands!? by Sycraft-fu · · Score: 2, Insightful

      Computer security was poor back in the day. Since computers were expensive, scarce things that were generally not connected to others, it wasn't a big deal. You knew everyone who had access, if someone caused trouble they'd get in trouble. Even once the Internet, or rather ARPANET back then got started, security was extremely lax. If you look at some of the low numbered ports you'll discover they ware things like "chargen" which just sends a random string of characters out. You can see how this would be a bad idea currently, but it could be a useful tool to make sure a system and link were working.

      As with most things, people learn from experience. As computers become more common and networks larger, security got better by necessity. Things got broken in to, so the problems were fixed. Go with that for a couple decades and we now have systems with multiple privilege levels, hardware enforced memory access limits, virus scanners, firewalls, etc, etc.

      A good deal of security in the world is born out of necessity and experience. Bad things happen, so security is designed to stop them from happening.

    9. Re:So they could receive commands!? by mysidia · · Score: 5, Insightful

      They were crypted... why would you need to hide a strong password that was crypted? Shadow'ed passwords are an ugly hack.

      Also, if you restrict "shadow" passwords so only root can see them, then suddenly every program that needs to perform authentication must be setuid root...... this is a security risk. In that era, possibly a much larger security risk than the risk of a strong password being cracked.

      The problem wasn't failing to use shadow passwords. It was (1) UNIX users who set weak passwords, and (later), an (2) explosion in computing power, making it easier to attempt to crack the passwords.

      Also, the reverse-engineering of the original DES-based crypt binaries allowed inefficiency that was intentionally contained in the algorithm to slow it down (making use for cracking improbable), to be removed, after years of study.

      The DES-based crypt() algorithm was optimized into fast-crypt which was orders of magnitude faster, and actually made password cracking feasible. If a harder cryptographic algorithm would have been used -- then matters could be very different.

      The latter bit they should have seen coming. The explosion in computing power was by no means a certain development, it wasn't an immediate issue at the time.

    10. Re:So they could receive commands!? by Bert64 · · Score: 2, Interesting

      When i was in school (age 6), we had a single computer in the whole school which ran a selection of very simple programs, one of which simulated a snooker table and calculated how many times a ball would bounce before falling down a corner pocket. You had to enter the width/height of the table and guess how many bounces...
      I entered a size of 0 for the table, and the program promptly crashed.. The teacher saw, called my actions stupid and sent me to the headmaster, who promptly banned me from ever touching a computer again so long as i was at that school.

      --
      http://spamdecoy.net - free throwaway anonymous email - avoid spam!
  5. One of many ways... by mikael · · Score: 3, Interesting

    It used to be possible to crash early Sun servers (or at least the terminal server attached to the server by trying to copy data from a virtual terminal (cat /dev/ttyp0) or something similar.

    One university department tried to get around the user quotas on commercial UNIX licenses by creating a single user account for an entire class. Hilarity ensued as students working on real-time projects would accidently kill each others processess.

    --
    Vintage computer adverts: http://www.vintageadbrowser.com/computers-and-software-ads
  6. Re:Was it a DoS exactly? by XanC · · Score: 2, Informative

    A DoS, generally, is anything that prevents a computer (or I suppose anything) from performing its functions. It's anything that "denies" "service".

  7. Re:Was it a DoS exactly? by nedlohs · · Score: 3, Insightful

    "Denial of Service". It's the damn name.

    One way is to flood the system, but there are plenty of other ways. The one mentioned for example.

  8. Re:Was it a DoS exactly? by Fallon · · Score: 4, Insightful

    What does DoS stand for? Denial of Service. Getting everybody kicked off the system certainly sounds like denying them access to that computer service to me. Just because a DoS is usually performed by a network flood of some kind doesn't mean that's the only way to do it. Heck an idiot tripping over the power cord to the server is technically a DoS if people loose access.

  9. Re:Earlier DoS by Jello+B. · · Score: 3, Informative

    If you were trying to get attention for being a young person on Slashdot, you didn't have to tell us how young you are. Your punctuation is enough.

  10. Denial of Service was happening a long time prior by cvd6262 · · Score: 5, Interesting

    Back in the 19th Century (in the US anyway), mail *recipients* paid postage to get their mail from the local general store. Political figures and others who might have a negative following would receive scores of blank letters and have to pay for them. The objective was to either crowd out the legitimate communications or bankrupt the recipient. Traditionally, one could place an ad in the local paper explaining that he or she would no longer receive letters at the store, which would free them from their obligation.

    --

    I'd rather have someone respond than be modded up.

  11. Seems unlikely that would be the first by Demonoid-Penguin · · Score: 2, Interesting
    2 minutes searching shows - October 29, 1969

    First packets sent by Charley Kline at UCLA as he tried logging into SRI. The first attempt resulted in the system crashing as the letter G of LOGIN was entered.

    I'd bet that part of the initial DARPA deployment testing involved deliberate attempts to jam the network

    Just saying....

  12. Probably not the first by chelberg · · Score: 3, Interesting

    In high school in 1974 our district (8 schools) used an HP access timesharing system. It ran the BASIC language. I was able to write a very short program that would cause the system to crash. Having discovered this bug in the system, I was able to bring down the entire district's computers at will. I had discovered this capability while exploring a new feature of BASIC. Fortunately for them, I was ethical and informed my teacher who at first didn't believe the exploit until I demonstrated it in front of her. We then contacted HP, gave them the code, and they came up with a patch within a couple of months. I'm not sure if anyone at HP can confirm this at this point.

    I am sure that there are probably earlier exploits as well.

    And as a side note, I was also a PLATO author in 1975 and greatly enjoyed working on that system.

  13. A Possibly earlier one... and a funny story. by DougReed · · Score: 5, Interesting

    The earliest one I know of was by the smartest man I ever knew (and the strangest). He was my mentor. In the IBM 360 days this guy used to write code .. COMPLEX code in binary on the roller bars on the front of the console because he was too lazy to logon. He made IBM's code more efficient by eliminating all modularization. It was more efficient to just have one big super efficient kernel, so he redesigned their system, and got something like 140% efficiency out of the hardware (40% greater than theoretical possibility) by IBM's own benchmarks, and found a security hole in their code in the process .. as he put it "bit enough to drive an 18 wheeler through", which he reported to them. They told him it was his hacking, he broke something ... NOT OUR CODE!!! IBM CODE CAN'T BE BROKEN!!! So he went to their 'demo center' and fed in a deck of punch cards.

    On the IBM Selectric console in the IBM demo center, it printed.

    "May I please have a cookie?"

    The operator ignored it.

    8 hours later during shift turnover It printed

    "I never got my cookie"

    The two operators looked at it, shrugged, and ignored it. The dayshift operator went home.

    4 hours later the console printed.

    "You're not a very nice operator either, I never did get my cookie"

    The operator thought the guys upstairs were fooling around and ignored it.

    2 hours later.

    "WHERE IS MY COOKIE!"

    hummm...

    1 hour later.

    "Dammit give me a cookie!"

    30 minutes.

    "I WANT A COOKIE!"

    15 minutes ... 7.5 minutes ... eventually we get to 32 cookies this second .. 64 cookies this second ... 128 cookies this second.

    An IBM Selectric typewriter which is the main console for a 360/65 cannot print even the word cookie in a second, much less a whole sentence, and certainly not 128 of them! There was ONE way to crash a 360/65 .. Fill up the console buffer. The system considered console messages to be important, and if the system couldn't print all of them, it halted.

    Reboot ... excuse me... Mainframe terminology here... "IPL" the system. First console message:

    "You know, I never DIID get my cookie!" .. and the process starts over.

    Finally IBM called my mentor...

    um... did you submit a job to the demo center?

    Yes, but don't worry, it was just a simple 'unprivileged' process, and as you said, your security is flawless, so I am sure there is no danger. :-)

    Sir, I think we are prepared to acknowledge that there MAY BE a security hole in our system somewhere. It seems that your job never finished and yet it does not seem to exist in the system anywhere. Our experts tell us we have to re-install the operating system to fix it. Do you have any alternative suggestions?

    Just one... Go get the best operator you have and put him on the console and call me back.

    Yes sir... .. an hour later

    Sir, this is king super operator, they just called me back in to work to assist you in solving our issue.

    OK ... now listen carefully. I am only going to say this once. Type carefully, and don't screw this up .. are you ready?

    Yes sir.

    Good type this ... "c" "o" "o" "k" "i" "e" ... now press "Enter"

    Console prints . "Thank you that was good", and the job ends.

    After that IBM never ever questioned it if my mentor reported a problem with IBM software ever again.

  14. The Original DOS predates this by centuries by dmomo · · Score: 4, Funny

    Denial of Service is just about as old as marriage.

  15. Re:A Possibly earlier one... and a funny story. by feijai · · Score: 5, Informative

    The story of the Cookie program, in the words of its author.

  16. You could get away with a lot of stuff back then.. by Space+cowboy · · Score: 2, Interesting

    See This journal entry I posted a while back... These days, at least in the US, I'd probably be up on federal wiretap charges or something. Back then, it was serious enough that they'd threaten to throw me out of college, but I never got any sense of there being jail-time involved...

    Simon

    --
    Physicists get Hadrons!
  17. Exactly by NotQuiteReal · · Score: 3, Interesting

    I don't think it was quite as early as 1974, but somewhere right around there, I remember going to the "math room" in Jr High, and being able to access a terminal to get to "the main frame". It was something that used fan-fold paper (not a CRT). You could write BASIC programs on it, I think. I kind of remember writing stuff as complicated as 2D grid based Star-Trek type programs (one step up from Hunt the Wumpus).

    Anyhow, we did have a command that we could type in that would crash the system, which we did once in a while, just to cause mischief. I really don't recall if we discovered it, or it was given to us (a la script kiddie), but it eventually ended up being a program called "runme" or some such...

    Anyhow, letting random people on a "public" terminal to the mainframe of the San Diego unified school district is probably a thing of the past.

    The best security breach, by far, however was an attempt to save money by re-using the fan-fold computer paper. Man, there was some juicy stuff on the flip-side of that stuff - names, addresses and IQ rating of all your class mates, payroll runs, all sorts of entertainment!

    Simpler Times. Get off my lawn!

    --
    This issue is a bit more complicated than you think.
    1. Re:Exactly by pspahn · · Score: 2, Insightful

      Accessing the personal records is often the goal, is it not?

      Sure, having access to passwords and stuff is nice, but it's kind of just the stepping stone towards finding the real information.

      --
      Someone flopped a steamer in the gene pool.
  18. Actually ... by Anonymous Coward · · Score: 5, Funny

    This type of denial of service was already quite common long before that.

  19. Re:403 Forbidden by scdeimos · · Score: 2, Informative

    I'm sure you're attempting to be funny, but for those actually interested in reading TFA...

    http://www.networkmirror.com/VB47vkBkoAUZdJvS/www.platohistory.org/blog/2010/02/perhaps-the-first-denial-of-service-attack.html

  20. First DOS attack would predate computers. by Kenja · · Score: 2, Interesting

    Taking out telegraph lines, signal towers, killing messengers. DoS attacks have existed as long as people have tried to communicate over distances. Even man in the middle attacks, intercepting and replacing semaphore messages etc.

    --

    "Have you ever thought about just turning off the TV, sitting down with your kids, and hitting them?"
  21. Re:Shorter answer by A+nonymous+Coward · · Score: 4, Interesting

    No

    I will back that up with my own story of a weaker DoS. The year was one of 1970-72, I do not know which. UC Berkeley had two CDC 6400s, A was normal, B was used for an experimental time sharing system and thus had an optional-at-extra-cost instruction, Exchange Jump, which swapped context. I had been toying with a Fortran program and gotten tired of it, so decided to finish it off in a burst of glory. It began execution in some obscure subroutine instead of MAIN, never called MAIN, and as it ground away at its nominal task, it gradually modified an innocent instruction into an Exchange Jump. But sadly, once it finally had modified it to the Exchange Jump opcode, there was no context, just a pointer to 0, and it farked the entire machine.

    Now I wasn't truly anti-social. I had in fact written on the card deck that it was only to be run on machine A, not B. Unbeknownst to me, that Exchange Jump instruction was also used by diagnostic programs, and the tech was too lazy to disable it after each visit, just left it enabled at all times, so my Fortran program crashed the machine.

    It wasn't much of a DoS, I will admit. The OS, CALIDOSCOPE (Cal Improved Design On SCOPE (Supervisory Control Of Program Execution)), could only handle 6 batch jobs at once at most, so that's the worst it could do. But I did get called in to the admin's office, who sighed and gave me that "What are we going to do with you?" look. He knew I wasn't malicious, but he had to warn me to not do it again.

    --
    Infuriate left and right
  22. Re:Was it a DoS exactly? by weicco · · Score: 2, Informative

    Flooding is just one way/method to execute (D)DoS attack. You can read more here: http://en.wikipedia.org/wiki/Denial-of-service_attack#Methods_of_attack

    --
    You don't know what you don't know.
  23. Re:Shorter answer by Anonymous Coward · · Score: 2, Interesting

    My own tale from 1974/5 was that my school had a time-sharing terminal and rented time from a local consulting company. Normally we used BASIC, but the maths teacher came back raving about the new language he had been taught at a weekend conference: APL. As one of the better pupils, I was given all the documentation, and went away to read up about it. A few weeks later, I had developed my symbolic differentiation program, and had carefully entered it in, and saved on paper tape. Unfortunately the program had a minor bug, so it used up *slightly* more CPU time than anyone might have expected. Apparently, the bill for the few seconds of run-time before I killed the program was over GPB 300 - a huge amount, and as it was pointed out to me, about the same as the computing budget for the entire year :( Fortunately the computer owners realised it was a mistake and didn't actually charge the school for the time - so I was off the hook, and took greater care to ensure that programs ran efficiently and bug free. A good lesson for a 13 year old.

  24. Re:Was it a DoS exactly? by tricorn · · Score: 2, Interesting

    Well, the -ext- command was used to send data to an arbitrary piece of "external" equipment attached to the terminal. A couple devices were a 4-voice music synthesizer, a Votrax voice synthesizer, and a random-access audio play-back device.

    It was useful with some of the equipment for another user's program to be able to send such external data to your equipment and vice versa. Most people didn't have anything attached, but the system didn't know that. With nothing attached, all it did was make your terminal really really slow, as the other program queued up output for you that was basically thrown away, but had to be sent anyway (the external data took up about 3 character's worth in the data stream, with about 180 characters/second being output).

    The system actually had pretty good security, and insulated each user from the other in terms of resource usage, and this wasn't strictly speaking a security breach, but this was a way to interfere with other users in an unintended way. It didn't take the entire system down, it only interfered with the terminals that were targeted.