[Discussion/Theory]About the recent DDOS attacks

Page 5 of 19 « First 34 5 6715 Last »
07/06/2012 18:50 Biboja#61
Quote:
93.217.89.11 - Deutsche Telekom AG
Germanys biggest provider for telecominication, internet, tv etc.
loled
07/06/2012 18:52 pH33n1x<3#62
Quote:
Originally Posted by Nezekan View Post
some of them are directly from ip providers, not from normal ISPs, also some are from company networks. That's a very weird mix...
Yeah.
07/06/2012 19:48 victorsalido#63
Add: 134.106.217.51 , 61.183.1.14 and 213.163.94.25 to the list if you want
07/06/2012 19:54 Haze*#64
Quote:
Originally Posted by ♯ᵜBraveSlaveᵜ♯ View Post
I've known who sends attacks on large private servers he is from my friends on the internet and this picture of send attacks to overlimit

[Only registered and activated users can see links. Click Here To Register...]
A cat is fine too. Bakemonogatari.
07/06/2012 20:13 Nezekan#65
Quote:
Originally Posted by Biboja View Post
Germanys biggest provider for telecominication, internet, tv etc.
loled
it's probably just a user of their services lol
07/06/2012 21:12 WickedNite#66
well done for finding Elder the almighty playSRO owner

78.96.147.106 - UPC Romania SRL

see ya buddy xd
07/06/2012 21:22 OutlawNL#67
Quote:
Originally Posted by WickedNite View Post
well done for finding Elder the almighty playSRO owner

78.96.147.106 - UPC Romania SRL

see ya buddy xd
I seriously love people without brain ^^
07/06/2012 21:44 pH33n1x<3#68
Quote:
Originally Posted by WickedNite View Post
well done for finding Elder the almighty playSRO owner

78.96.147.106 - UPC Romania SRL

see ya buddy xd
Huh, why?
The IP address is provided by a Romanian ISP. I'm not defending PlaySRO but how is that associated to the playsro admin?
07/06/2012 21:54 PortalDark#69
Quote:
Originally Posted by WickedNite View Post
well done for finding Elder the almighty playSRO owner

78.96.147.106 - UPC Romania SRL

see ya buddy xd
you still think that PlaySRO is behind all this?
07/07/2012 01:24 WickedNite#70
not behind EVERYTHING, but behind a few servers ;)
07/07/2012 03:50 sarkoplata#71
Quote:
Originally Posted by pH33n1x<3 View Post
By the way, if only those IPs are attacking, is it possible to solve that by blocking these IPs in Windows Firewall?

16:33:19 An incoming packet(Allowed) Protocol: UDP, Source port: 138, Destination port: 138
.... EDEEEFFGDCCACACACACACACACACACACA. FHEPFCELEHFCEPFFFACACACACACACABN.SMB%............ .................&.................&.V...... 7.\MAILSLOT\BROWSE..
.CDEV2.............Ucdev2.
Huge attacks will get your system usage to 100% so a 'software' may become useless.
07/07/2012 09:20 ღ ∂ Ropp#72
@ ph33n1x, yes that does work.
But you must manually continue to block the IP's from firewall, that's what we're doing ;).
07/07/2012 14:06 Nezekan#73
Quote:
Originally Posted by sarkoplata View Post
Huge attacks will get your system usage to 100% so a 'software' may become useless.
exactly, if the attack exceeds a certain amount of packets per second your firewall will just crash, even a dedicated firewall has its limits. But what's even worse is that the connections flood your pipe (most servers are connected at 100mbit or 1gbit) nothing will help, since the traffic won't even reach your firewall... (and no, upgradinng to 10gbit will not help you with this)
07/07/2012 14:09 PortalDark#74
Best way to do all this(properly) is with a hardware firewall(luck with that)
Sent from my GT-S5830L using Tapatalk 2
07/07/2012 14:27 Nezekan#75
Quote:
Originally Posted by PortalDark View Post
Best way to do all this(properly) is with a hardware firewall(luck with that)
Sent from my GT-S5830L using Tapatalk 2
not really, a hardware firewall is not ideal to protect from DDoS attacks, depending on which model it can help against other threats, but certainly not DDoS attacks, the only thing that can actually work is a scrubbing proxy service (blacklotus, ethproxy, etc...)
Page 5 of 19 « First 34 5 6715 Last »