Posted on 09/25/2016 1:58:19 PM PDT by snarkpup
As many of you know, my site was taken offline for the better part of this week. The outage came in the wake of a historically large distributed denial-of-service (DDoS) attack which hurled so much junk traffic at Krebsonsecurity.com that my DDoS protection provider Akamai chose to unmoor my site from its protective harbor.
...
Today, I am happy to report that the site is back up this time under Project Shield, a free program run by Google to help protect journalists from online censorship. And make no mistake, DDoS attacks particularly those the size of the assault that hit my site this week are uniquely effective weapons for stomping on free speech, for reasons Ill explore in this post.
...
I dont know what it will take to wake the larger Internet community out of its slumber to address this growing threat to free speech and ecommerce. My guess is it will take an attack that endangers human lives, shuts down critical national infrastructure systems, or disrupts national elections.
(Excerpt) Read more at krebsonsecurity.com ...
Mainard, is that you?
“Work?”
No it’s Maynard’s nephew.
Krebs now has his DNS at google:
Name Server: NS-CLOUD-D1.GOOGLEDOMAINS.COM
Name Server: NS-CLOUD-D2.GOOGLEDOMAINS.COM
Name Server: NS-CLOUD-D3.GOOGLEDOMAINS.COM
Name Server: NS-CLOUD-D4.GOOGLEDOMAINS.COM
I don't know if that is a new change to go with his new hosting or not. My guess is the DNS server was not attacked, but rather his web server (via IP).
Thanks. I knew my spelling was wrong but chose to power through...
What comes after? It’s a hop skip and jump to this.
Alas, Brave New Babylon.
http://www.freerepublic.com/focus/f-bloggers/3058882/posts
Thank you for the information. I just hope Trump can get the federal government’s encryption up to snuff in a hurry.
That said the point remains that Google gets to decide whose IP address is protected and whose is not. So even if I were denied a domain by CHICANN and used IP only, I could still be out of luck. This was a big DDOS attack and those are going to be relatively rare. And Krebs points out there are some solutions to the botnet problem behind the attack. But that doesn't preclude some nation from doing what his enemy did.
In other words, I think while Kreb's point that some average Joe botnet operator now has a lot of power is valid, I think the nation states like China will always have more power.
China’s Conquest of Internet, ICANN + Quantum Encryption
http://www.freerepublic.com/focus/news/3473008/posts
That said the point remains that Google gets to decide whose IP address is protected and whose is not. So even if I were denied a domain by CHICANN and used IP only, I could still be out of luck. This was a big DDOS attack and those are going to be relatively rare. And Krebs points out there are some solutions to the botnet problem behind the attack. But that doesn't preclude some nation from doing what his enemy did.
In other words, I think while Kreb's point that some average Joe botnet operator now has a lot of power is valid, I think the nation states like China will always have more power.
However, one thing that Krebs may be overlooking or is not commenting on here is that likely 100% of the cheap crap, specifically
There is every indication that this attack was launched with the help of a botnet that has enslaved a large number of hacked so-called Internet of Things, (IoT) devices mainly routers, IP cameras and digital video recorders (DVRs) that are exposed to the Internet and protected with weak or hard-coded passwords. Most of these devices are available for sale on retail store shelves for less than $100, or in the case of routers are shipped by ISPs to their customers.
is made in China. China is literally building an army of insecure devices waiting to enslaved and used by people like Krebs's enemy. China might just not care and might just want to corner the market like any other. And certainly the ISPs that hand this crap out deserve some blame. But it is quite plausible for China to enslave those junk devices themselves. The fact that other people in other countries do that already gives them a lot of cover.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.