I doubt many people were egress filtering in the happy days of 1995, and certainly not after all the merger wars since. Forged packets without filtering are nothing. Take a look at the bogon netblocks that are being claimed by some scammers even today. I base my opinion on personal experience and accounts from people who seem trustworthy. *shurg*
But tommorow is today, and in the morning, I'll still have a chocolate-cheesecake philo-pastry desert to make for some friends' birthdays.
Bah! If you're going to quotation marks around something I didn't type, forget it. I very definitly typed "outgoing port 25". Follow the other branch of the discussion for better explainations. As for "a completely clueless large scale ISP", well, I didn't want to mention Worldcom/MCI/UUNET by name...:^)
In a perfect world, spammy's connection wouldn't last until morning. Sadly, I certainly live on Bizarro World. How about you? (Cue Gershwin and say goodnight Gracie. Zunk!)
No. Here's a coherent explaination (with ASCII arrows even) of it by someone else. I'm not sure there is a fix except enforced egress filtering. (Enforced how and by whom, got me.)
You obviously don't post or lurk in nanae or follow some of the tricks that the more technical spammers like Empire Towers have used.
Asymetric routing, like all spammer tricks, involves cheating. All your packets (including TCP handshake packets) do go to the proper IP address on some DSL or dialup line. However, once they get there, they get relayed to a box connected to the spammer's fat pipe. The reply (a large web page or spamming attempt) goes out the fat pipe with the forged DSL IP address and proper sequence information, and naturally spammy's provider doesn't do egress filtering.
That way you can seem to get a huge amount of data from some dinky connection, even though the ISP has blocked outgoing packets from that port. If the dinky connection only sees the TCP handshakes and HTTP requests, that's not much traffic. (And spammy has bunches of them.) How the relay for the dialup to the fat pipe happens might be tricky, or it might be a dialup connection from the same box that has the fat pipe. I dunno.
Think about it a while if this doesn't make sense. I didn't really believe it either until I saw a web server on a dialup delivering data at Ludicrous Speed.
Just tell all the P2P networks that the last piece of the lastest song by Boy_Band or Stacked_17 is at that IP address. They'll get a not a DDoS and maybe a visit from the RIAA as a bonus.
Spammer routinely move their domains. In fact, some use networks of pwn3d boxes to host web sites and even name servers which route to other web sites. Each individual box is fragile as hell, but since it's rapidly changing (as their real name servers switch to the next box) it's difficult to knock down completely.
I'm not sure which spam gang does this at the moment, but Empire Towers would be the best bet. (They use tricks like asymetric routing to spoof the source of a TCP connection. They can make it look like a huge amount of spam is coming from a dial-up connection on an ISP with outgoing port 25 blocked.;^)
That last link is premium content. Anyone have a bypass? Apparently I can't even sell my soul for it. (Just as well, they'll have to timeshare with the NY Times.)
Or the later stories of the Venus Equilateral collection by George O. Smith. The (imagined) technology and science are ancient now, but it deals with the consequences of cheap duplication fairly well for the time.
From what's been mentioned on news.admin.net-abuse.email, you're not supposed to mention any details until you get the okay. I'd guess that saying the number of subpoenas would be okay too, but IANAL either.
Pricey tho.. 10,000 AU$ each for a pair of 1500w units.
So build one. There are exact plans in the July 1965 issue of Popular Science. Amazing No-Fuel "Space" Engine You Can Build, p.106. Scale it up for larger applications. (Article by Dr. von Braun too, only 35 cents.)
Slashdot Mirror
I was refering to the thesis that said that Lunar mining wasn't practical. If it's the only game left, it becomes practical quite fast.
It's amazing what lengths we'll go to when our old cheap abundant energy source starts geting rare and expensive. (Perhaps even give up on SUVs.)
But tommorow is today, and in the morning, I'll still have a chocolate-cheesecake philo-pastry desert to make for some friends' birthdays.
In a perfect world, spammy's connection wouldn't last until morning. Sadly, I certainly live on Bizarro World. How about you? (Cue Gershwin and say goodnight Gracie. Zunk!)
No. Here's a coherent explaination (with ASCII arrows even) of it by someone else. I'm not sure there is a fix except enforced egress filtering. (Enforced how and by whom, got me.)
Asymetric routing, like all spammer tricks, involves cheating. All your packets (including TCP handshake packets) do go to the proper IP address on some DSL or dialup line. However, once they get there, they get relayed to a box connected to the spammer's fat pipe. The reply (a large web page or spamming attempt) goes out the fat pipe with the forged DSL IP address and proper sequence information, and naturally spammy's provider doesn't do egress filtering.
That way you can seem to get a huge amount of data from some dinky connection, even though the ISP has blocked outgoing packets from that port. If the dinky connection only sees the TCP handshakes and HTTP requests, that's not much traffic. (And spammy has bunches of them.) How the relay for the dialup to the fat pipe happens might be tricky, or it might be a dialup connection from the same box that has the fat pipe. I dunno.
Think about it a while if this doesn't make sense. I didn't really believe it either until I saw a web server on a dialup delivering data at Ludicrous Speed.
I would have explained my position in detail so that it wouldn't seem like flamebait, but then it wouldn't be two words, now would it?
Just tell all the P2P networks that the last piece of the lastest song by Boy_Band or Stacked_17 is at that IP address. They'll get a not a DDoS and maybe a visit from the RIAA as a bonus.
I'm not sure which spam gang does this at the moment, but Empire Towers would be the best bet. (They use tricks like asymetric routing to spoof the source of a TCP connection. They can make it look like a huge amount of spam is coming from a dial-up connection on an ISP with outgoing port 25 blocked. ;^)
STU-PID.
That last link is premium content. Anyone have a bypass? Apparently I can't even sell my soul for it. (Just as well, they'll have to timeshare with the NY Times.)
Or the later stories of the Venus Equilateral collection by George O. Smith. The (imagined) technology and science are ancient now, but it deals with the consequences of cheap duplication fairly well for the time.
But when will I be able to buy Windows in a Mouse so that I can play my old games after trashing my last Windows install?
Park? I thought they folded up into a briefcase like in the Jetsons. Damn, first no flying cars, now this!
But seriously, for parking it looks like it would be a great car in city, especially with it being dent and scratch resistant.
Phone text message for you: "Start fires"
"Jenkins, we're downsizing and I'm afraid we'll have to let you go. But we're promoting your phone to project manager."
Yes, and the built-in camera will have a date evaluation program to advise you when you've had too much. Friends don't let friends date drunk.
And what happens if your phone and your Virtual Girlfriend don't get along?
From what's been mentioned on news.admin.net-abuse.email, you're not supposed to mention any details until you get the okay. I'd guess that saying the number of subpoenas would be okay too, but IANAL either.
That was that cat movie right?
Meanwhile, those helpful popups do tell people that their computer is broadcasting an IP address.
So build one. There are exact plans in the July 1965 issue of Popular Science. Amazing No-Fuel "Space" Engine You Can Build, p.106. Scale it up for larger applications. (Article by Dr. von Braun too, only 35 cents.)
A complex StarTrek fade involves having Rick Berman beat it to death over a number of years.
Curse you evil Link-Pixie! Peltier one can chiller