If you can read this, either the style sheet didn't load or you have an older browser that doesn't support style sheets. Try clearing your browser cache and refreshing the page.

(The New York Times)   Do you have a cable box? Congratulations, you may have just been a participant in the largest cyberattack in history   (nytimes.com) divider line 74
    More: Interesting, internet, nonprofit corporation, Low hanging fruit, Spamhaus  
•       •       •

16479 clicks; posted to Main » on 30 Mar 2013 at 10:24 AM (1 year ago)   |  Favorite    |   share:  Share on Twitter share via Email Share on Facebook   more»



74 Comments   (+0 »)
   
View Voting Results: Smartest and Funniest

Archived thread

First | « | 1 | 2 | » | Last | Show all
 
2013-03-30 07:19:39 AM  
"...requires you to call your cable company and tell them that you do not want to be running an open resolver."

What exact planet do these people live on?
 
2013-03-30 07:38:20 AM  
you may have just been a participant in the largest cyberattack in history

You mean the cyberattack that had no affect on 99.999% of the internet?
 
2013-03-30 07:41:09 AM  
my hard drive in my cable box grinds CONSTANTLY

maybe it's checking out Logo and GRINDING
 
2013-03-30 08:15:54 AM  
I'm not worried.

m360.aanm.org
 
2013-03-30 08:51:19 AM  
3.bp.blogspot.com
 
2013-03-30 09:51:13 AM  
AAAAAAAAAAAAAAAAAAHHHHHHHHHHHHHHHHHHH COMCAST IS ISLAMIC

/lookit that Islamocrescent look at it look at it waaaaah
//slobber
 
2013-03-30 10:32:40 AM  

mr_a: "...requires you to call your cable company and tell them that you do not want to be running an open resolver."

What exact planet do these people live on?


I'm not entirely sure, but...
" a tough request when most of the world's population does not even know what an open resolver is.  "

Ironicania?
 
2013-03-30 10:35:23 AM  
All ISP supplied equipment should have a firewall on it enabled by default. There is no excuse for any which don't.
 
2013-03-30 10:36:33 AM  
Meh, like you could tell the difference between a cyber attack on my cable boxes/dvrs and just the shiatty cableone service.
 
2013-03-30 10:37:29 AM  
I can't wait to have that conversation with tier 1 Fios tech support.
 
2013-03-30 10:38:14 AM  
Do you have a cable box?


Hahahahaha no.
 
2013-03-30 10:39:06 AM  
I have been having at issue with my Comcast internet this morning.  Only a few pages were loading but most of the internet was unavailable.  The only pages that would load are Google, Youtube, Facebook, and Fark.  Seems to be working fine now though.
 
2013-03-30 10:39:26 AM  
I think we already determined that the "biggest cyberattack in history" was a bunch of nothing.
 
2013-03-30 10:39:57 AM  

mr_a: "...requires you to call your cable company and tell them that you do not want to be running an open resolver."

What exact planet do these people live on?


The kind where they expect people to mutter shiat to their cable provider and expect it to have meaning.
 
2013-03-30 10:40:16 AM  
My cable modem is a fairly stupid bridge between the cable network and ethernet. It has no DNS capabilities whatsoever. Isn't this fairly standard? Why the hell would a cable modem need anything to do with DNS?

Even cable modem/router combos, as often provided by ISPs, shouldn't have any public-facing services -- sure, have a caching DNS resolver on the LAN side, but not on the WAN. To do otherwise is negligently stupid (which is par for the course for cable companies).

What the hell, people?
 
2013-03-30 10:41:55 AM  
"Sloppily-configured server" sounds like a waitress in a Denny's, near an Interstate in Georgia.
 
2013-03-30 10:42:14 AM  
Our cable boxes haven't become self-aware have they?

/reaches for tin foil
 
2013-03-30 10:42:36 AM  
You mean the cyber attack that had no impact outside the company being attacked?

http://gizmodo.com/5992652/that-internet-war-apocalypse-is-a-lie
 
2013-03-30 10:43:32 AM  
I thought we already figured out a couple days ago that this entire cyber attack story was bullshiat, right?
 
2013-03-30 10:44:23 AM  

DubtodaIll: I have been having at issue with my Comcast internet this morning.  Only a few pages were loading but most of the internet was unavailable.  The only pages that would load are Google, Youtube, Facebook, and Fark.  Seems to be working fine now though.


So there's more out that than those pages?  Huh?
 
2013-03-30 10:47:55 AM  

Feel_the_velvet: DubtodaIll: I have been having at issue with my Comcast internet this morning.  Only a few pages were loading but most of the internet was unavailable.  The only pages that would load are Google, Youtube, Facebook, and Fark.  Seems to be working fine now though.

So there's more out that than those pages?  Huh?


Yeah, so I hear, it's mostly porn out there though.
 
2013-03-30 10:48:08 AM  

gweilo8888: You mean the cyber attack that had no impact outside the company being attacked?

http://gizmodo.com/5992652/that-internet-war-apocalypse-is-a-lie


There is a rather interesting response from a netops guy at nlayer, a major network provider, that explains that while such attacks are unlikely to cause issues for major providers with direct links to each other, it can cause problems for various internet exchange points as they tend to involve a lot of smaller networks that may get more easily saturated.
 
2013-03-30 10:48:25 AM  

Superjoe: Do you have a cable box?


Hahahahaha no.


Me neither.

2.bp.blogspot.com
 
2013-03-30 10:52:15 AM  
I, personally, would rather spend my time doing something useful than watch television. I don't even own one. I'm not an elitist, it's just that I'd much rather sculpt or write in my journal or read Proust than sit there passively staring at some phosphorescent screen. If I need a fix of passive audio-visual stimulation, I'll go to catch a Bergman or Truffaut film down at the university. I certainly wouldn't waste my time watching the so-called Learning Channel or, God forbid, any of the mind sewage the major networks pump out...
 
2013-03-30 10:54:08 AM  
Call Comcast customer service and tell them I do not want to be running an open resolver? Hell, they can't handle basic technical requests and I'm supposed to be comfortable discussing resolvers with them?
 
2013-03-30 10:57:02 AM  

skinink: Call Comcast customer service and tell them I do not want to be running an open resolver? Hell, they can't handle basic technical requests and I'm supposed to be comfortable discussing resolvers with them?


Heh. I remember emailing Cox a while back because their recursive DNS servers were rewriting TTLs to 30 seconds (regardless of what the authoritative server specified as the TTL). This resulted in considerably higher DNS traffic as less stuff was being cached. Not a good thing. I sent them an email saying that their tier 1 support guys couldn't answer it and asked that they forward the message onto the relevant network admins who manage the DNS servers.

I got a reply back the next day saying "We're sorry to hear you're having trouble setting up your wireless network. Here's some instructions for configuring certain wireless routers..."

At that point I gave up and switched to Google Public DNS.
 
2013-03-30 10:58:51 AM  

heypete: gweilo8888: You mean the cyber attack that had no impact outside the company being attacked?

http://gizmodo.com/5992652/that-internet-war-apocalypse-is-a-lie

There is a rather interesting response from a netops guy at nlayer, a major network provider, that explains that while such attacks are unlikely to cause issues for major providers with direct links to each other, it can cause problems for various internet exchange points as they tend to involve a lot of smaller networks that may get more easily saturated.


Which is all for naught, given that nobody has actually experienced the slowdowns and mass outages claimed by these folks. Sure, we've heard a lot of nonsense spouted by major news organizations who've read a press release, but have you or anybody you know actually experienced a noticeable slowdown? And have you found Netflix or the other sites claimed to have been affected being offline?

Nope.
 
2013-03-30 10:59:29 AM  
FTFA: "But the real enablers of the attack were the operators of more than 27 million computers around the globe who left their equipment wide open to a motivated attacker. Those enablers are not just companies, but regular people with home cable boxes. "There is a big possibility that you are part of the problem without even knowing it," said Paul Vixie, chairman of the Internet Software Consortium, a nonprofit company responsible for the software used by many of the servers that power the Internet.


"The real enablers of rape aren't the rapists, but the companies who make their clothing so skimpy as to be wide open to a motivated attacker. Those enablers are not just companies, but regular people who wear those sexy, skimpy clothes. There is a big possibility that you are part of the problem without even knowing it," said Paul Vixie, some random asshat who sounds like he had one too many drinks and made some bad choices with his brother's underage daughter.
 
2013-03-30 11:02:21 AM  

Jon iz teh kewl: my hard drive in my cable box grinds CONSTANTLY

maybe it's checking out Logo and GRINDING


I laughed.
 
2013-03-30 11:10:29 AM  
It's a small price to pay for being able to watch 28 minutes of show and 32 minutes of commercials an hour.

/Your box was already hacked
 
2013-03-30 11:12:01 AM  
Given how astonishingly poorly most cable boxes are designed this doesn't surprise me in the slightest. It's like Scientific Atlanta and Motorola have cornered the market on stupid hardware.

That's not even getting into the user interfaces these things use, or the design of the remote. You have assume they start with a decent, workable design and then start screwing it up one step at a time and removing sensible features until it's nearly un-usable, then ship it.
 
2013-03-30 11:12:44 AM  

heypete: Heh. I remember emailing Cox a while back because their recursive DNS servers were rewriting TTLs to 30 seconds (regardless of what the authoritative server specified as the TTL). This resulted in considerably higher DNS traffic as less stuff was being cached. Not a good thing. I sent them an email saying that their tier 1 support guys couldn't answer it and asked that they forward the message onto the relevant network admins who manage the DNS servers.

I got a reply back the next day saying "We're sorry to hear you're having trouble setting up your wireless network. Here's some instructions for configuring certain wireless routers..."

At that point I gave up and switched to Google Public DNS.


I'm not surprised at all, having worked 1rst level tech support for such an ISP before moving on to greener pastures I can picture how that was received:  First level person stares at it for like, 15 minutes, trying to figure out what authoritive server means because they can't even google it due to the overly protective proxy rules.  They ultimately either throw a canned response at it and try to forget it ever showed up or they bring it to their floor-expert, someone who's just smart enough to figure out how to get off the front line but hasn't the will, ability or experience yet to get a better job somewhere else.  That person either fluffs it off or if they are still new to the position and understand the contents might try to approach their manager.  The manager at best will suggest it gets brought up in the next conference call with the  client(the ISP itself), next month, but they won't even write it down because they know it won't get past the client relations people on the other end and the closest thing to a technical person on the call is the QA lacky who's only there to take the customary brow beating on behalf of yet another front liner chosen to be sacrificed to the call flow metric gods.  There is such a purposeful and heavy disconnect between the clients and the call centers that yah nothing outside of that tight little support scope they're paid to deal with will ever see the light of day.

/do I sound bitter?  Yah that was pretty bitter sounding wasn't it :P
//soooooo glad to have moved on from that bullshiat, all of it
 
2013-03-30 11:19:48 AM  

BumpInTheNight: do I sound bitter? Yah that was pretty bitter sounding wasn't it :P


Just a bit. :)

Sounds about what I expected it to be. I just wish there was a reasonable "escalate to people who know what they're doing" button, though I can imagine it'd be massively abused.

/used to do IT for a university department, we had one user who constantly filed CRITICAL tickets. These were normally reserved for things that required immediate attention, like a server on fire, and paged the on-duty IT staff. Her critical tickets were normally for things like "printer is out of paper", "mouse is unplugged", "how do I open this file I received in Outlook", etc. Gah!
 
2013-03-30 11:20:07 AM  

BumpInTheNight: First level person stares at it for like, 15 minutes, trying to figure out what authoritive server means because they can't even google it due to the overly protective proxy rules.


I have been in this actual situation before and all I can say about that job is that I quit.
 
2013-03-30 11:20:58 AM  

DubtodaIll: I have been having at issue with my Comcast internet this morning.  Only a few pages were loading but most of the internet was unavailable.  The only pages that would load are Google, Youtube, Facebook, and Fark.  Seems to be working fine now though.


reboot your modem, Comcast has been doing some upgrades and that's been causing some issues
 
2013-03-30 11:33:24 AM  

From the article:


But the real enablers of the attack were the operators of more than 27 million computers around the globe who left their equipment wide open to a motivated attacker. Those enablers are not just companies, but regular people with home cable boxes.


No, I'm not. The cable company owns the box in my home. They manage it. They update the software on it. They monitor its traffic. I have no say on how it is managed, how it is configured, and don't have any access to the box's OS.
 
2013-03-30 11:36:29 AM  

heypete: Just a bit. :)

Sounds about what I expected it to be. I just wish there was a reasonable "escalate to people who know what they're doing" button, though I can imagine it'd be massively abused.

/used to do IT for a university department, we had one user who constantly filed CRITICAL tickets. These were normally reserved for things that required immediate attention, like a server on fire, and paged the on-duty IT staff. Her critical tickets were normally for things like "printer is out of paper", "mouse is unplugged", "how do I open this file I received in Outlook", etc. Gah!


Yup that's the double-edged sword right there, that ISP wasn't the only center I worked in and yah the smaller/better ones did have that ability and it was appreciated by everyone involved.  I wouldn't expect that from a run of the mill ISP tech support and its chosen call center management company du jour though, that's for sure.  Despite being bitter I do look back on that job and take away the positives:  Fresh out of school I thought I was good to go gimmie the million dollar servers and I'll admin them like a champ, it took a few years working the trenches at the ISP and then both the major PC vendors to realize how little I actually knew and needed to know and most importantly there will always be things I don't know and its okay because I can learn those things too.
 
2013-03-30 11:44:14 AM  
People still are too stupid to know this was a publicity stunt? There was no cyber attack fools.
 
2013-03-30 11:45:09 AM  

A Shambling Mound: Given how astonishingly poorly most cable boxes are designed this doesn't surprise me in the slightest. It's like Scientific Atlanta and Motorola have cornered the market on stupid hardware.


That's because the cable company is the real customer, not the home user. The goals of the box are control and monetization, not providing services you really want or even really being secure other than protecting content.
 
2013-03-30 11:49:51 AM  

Joe Peanut: From the article:


But the real enablers of the attack were the operators of more than 27 million computers around the globe who left their equipment wide open to a motivated attacker. Those enablers are not just companies, but regular people with home cable boxes.


No, I'm not. The cable company owns the box in my home. They manage it. They update the software on it. They monitor its traffic. I have no say on how it is managed, how it is configured, and don't have any access to the box's OS.


You ever notice a lot of "tech" writers for the general media are completely ignorant?
 
2013-03-30 11:50:24 AM  
If that was the biggest cyber-attack in history, then we have nothing to worry about.
 
2013-03-30 11:50:36 AM  

c4rr0tc4k3: People still are too stupid to know this was a publicity stunt? There was no cyber attack fools.


A publicity stunt for who? Spamhaus? Pretty much everyone already knows about them. They have no reason to lie, and their service was substantially degraded for a while.

CloudFlare? Maybe, but they're already pretty well-known for doing what they do, so why would they make false claims about an attack? While it's plausible for them to lie as a publicity stunt, it seems like something that would be easily verified and not really in line with their past actions.

There clearly was an attack, and various third-party network providers have confirmed it. It was not as devastating as the news media made it out to be, but it's still an impressively large attack.
 
2013-03-30 12:08:06 PM  
... yeah. I'm not sure how STBs residing on a captive network used only for DNCS communication for VOD requests, SDV stream joins and iPPV orders somehow get involved in a DDOS out in the real world. Even the new DSG set-tops pass their data through VPN tunnels via encrypted downstream and upstream DOCSIS traffic, I'm not seeing this hack... at least not in the system I work for.

Perhaps the writer is thinking more about things like Roku boxes and the like?
 
2013-03-30 12:15:26 PM  
FTFA: Indeed, there are other servers that amplify attacks - including machines called Simple Network Management Protocol (SNMP) servers

I've heard of SNMP... that's where people dress in leather and pee on each other, right?
 
2013-03-30 12:23:25 PM  
Remember, cable boxes show signs of being hacked, namely whirring loudly and flashing lights that you are CERTAIN were not there before.
 
2013-03-30 12:25:14 PM  

heypete: /used to do IT for a university department, we had one user who constantly filed CRITICAL tickets. These were normally reserved for things that required immediate attention, like a server on fire, and paged the on-duty IT staff. Her critical tickets were normally for things like "printer is out of paper", "mouse is unplugged", "how do I open this file I received in Outlook", etc. Gah!


Should be a way to redirect her "critical" clicks to goatse.
 
2013-03-30 12:33:04 PM  

heypete: c4rr0tc4k3: People still are too stupid to know this was a publicity stunt? There was no cyber attack fools.

A publicity stunt for who? Spamhaus? Pretty much everyone already knows about them. They have no reason to lie, and their service was substantially degraded for a while.

CloudFlare? Maybe, but they're already pretty well-known for doing what they do, so why would they make false claims about an attack? While it's plausible for them to lie as a publicity stunt, it seems like something that would be easily verified and not really in line with their past actions.

There clearly was an attack, and various third-party network providers have confirmed it. It was not as devastating as the news media made it out to be, but it's still an impressively large attack.




I go with the theory that its a PR stunt for Cloudflare and CyberBunker.

Not a single website has been taken offline.
 
2013-03-30 12:33:13 PM  
That would explain why my Verizon Motorola DVR was sluggish this week. Or maybe it's because they keep trying to push me to order pay per view movies at $5 a pop like a hotel.
 
2013-03-30 12:42:32 PM  

BarkingUnicorn: Should be a way to redirect her "critical" clicks to goatse.


Hah. I wish.

HempHead: I go with the theory that its a PR stunt for Cloudflare and CyberBunker.

Not a single website has been taken offline.


Spamhaus and the CBL, a related site that distributes its data through Spamhaus' feeds, were offline for a while until CloudFlare got things under control -- Spamhaus sought out CF, not the other way around. They could have easily gone with Akamai or some other similar service. There were a lot of grumpy people seeking removal from the lists that were unable to do so due to the attack.

While I admit it's plausible for CloudFlare to have staged some part of it, it seems really unlikely -- they've been on the up-and-up for a while now, so suddenly turning evil/stupid seems a bit odd.

As for Cyberbunker, I'm not sure how it'd be a publicity stunt. "You too can host your business systems in a facility and network well-known to support spam and major attacks!" Doesn't really make sense.
 
2013-03-30 12:44:45 PM  
Holy sheep shiat!  You mean cable boxes can actually do something?  At least the ones Comcrap serves up barely are functional to show TV video, let alone a guide or anything else useful.   They only last for ~6-8 months too.
 
Displayed 50 of 74 comments

First | « | 1 | 2 | » | Last | Show all

View Voting Results: Smartest and Funniest


This thread is archived, and closed to new comments.

Continue Farking
Submit a Link »
On Twitter





In Other Media


Report