Follow us on these Social Sites

Follow this news in your rss read

Tuesday
Sep182012

How CloudFlare dealt with a 65Gbps DDOS Attack...

Abraham Williams on Google+ pointed us to an article over on the CloudFlare blog about how they dealt with a recent 65Gbps attack.  The article titled "How to launch a 65Gbps DDOS attack and how to stop one" gives some high level details about how they deal with such attacks and how someone can get 65 Gbps of bandwidth to even start one.  The article does a great job of explaining one method using Open Unrestricted DNS Resolver.  The basic idea is that since DNS can be done with UDP packets you can easily forge the from address and cause the Open Unrestricted DNS Resolver to reply to the targeted computers or network.  This is exploiting two flaws in the internet.  The first that UDP is a fire and forget protocol which doesn't require any proof of where you are coming from.  The second is that Open Unrestricted DNS Resolver exist or at the least allow UDP requests.  DNS can and should be required to be done over TCP which makes forging the information much harder and less reliable.

They have an article they wrote before this one that talks about and apologizes to their customers for the disruption in the first place.  It's found here and called "Post Mortem: What Yesterday's Network Outage Looked Like" .  It is a shinning example of what a company should do when an event like this happens.  It is very transparent, clear and easy to understand and most of all genuine.  While I know it's great PR it's not something I see a lot of companies like them doing.

 

Let us know if you have ever dealt with something like this in your job?

Do you think they took the proper response?

What do you think of the post mortem?

Update: Changed Open to Unrestricted becuase as pointed out in the comments below it seemed to imply the awesome DNS service by a similar name.  They, to our knowledge, were not part of the problem.

DateTuesday, September 18, 2012 at 12:10AM AuthorBrian "Wags" Wagner | CommentPost a Comment | |
tagged , , , in ,
Sunday
Sep162012

X11 turns 25 today...

The guys over at Phoronix reminded me that X11 turns 25 today.  That's pretty awesome news.  X11 has been the basis for Windowing on Linux since windowing began there.  Many have tried to replace it but so for no one has.  It's modular focus has let it last this long and makes it really hard to supplant.

Let us know what your worst X11 configuration nightmare was?

DateSunday, September 16, 2012 at 12:08AM AuthorBrian "Wags" Wagner | CommentPost a Comment | |
tagged , , in
Saturday
Sep152012

Episode 73 - Java exploits Linux and Apache ignores IE...

Running Time: 0:59:16.8


1) Introduction

He is back, Greg Martin returns will Corey ever return?

2) News

Apache HTTP Server set to ignore IE10's Do Not Track request
Java 0-Day Exploit Humbla

3) Conclusion

Recommendations for People to interview
E-Mail us at podcast@linuxinstall.net
Facebook Fan Page
Follow us on Twitter and Identica as @linuxinstall
Google +
Look for us and comment on iTunes, odeo

DateSaturday, September 15, 2012 at 10:05PM AuthorBrian "Wags" Wagner | CommentPost a Comment | |
tagged , , in
Friday
Sep072012

Turnkey Linux turns everything up to 12 on their 4th B-Day...

The guys over at Turnkey Linux have released version 12 of their awesome server appliance core platform.  They also added 60+ new appliances.  If you haven't given them a shot I highly suggest it especially if you are new to Linux.  Heck I am an old time Linux user and love the ability to just download an appliance like the one they that comes setup with the Redmine project management server and Git, Bazaar, Mercurial and Subversion SCM.  Everyone of them is setup and ready for you to use.  Just download the appliance in any of 7 formats from ISO images to OpenVZ VMs and so much in between.  The best feature I have come to love and rely on is their server back and migration tool.  They call it TKLBAM - AKA the TurnKey Linux Backup and Migration system.  It allows you to take any currently existing system and back it up to S3.  Then restore the backup to a new machine leaving you in the same state but on updated software.  All the benefits but none of the pain.  It's an awesome idea and works well.  Watch for a full review and description of my experience coming soon. 

One really import change is their migration away from Ubuntu to Debian.  Check out the article for a very clear description and explanation of why.  The reasons are sound and hopefully the right people are listening.

Most of all though we would like to wish them a Happy 4th B-Day.  Let's hope there are plenty more in their future.

DateFriday, September 7, 2012 at 8:41PM AuthorBrian "Wags" Wagner | CommentPost a Comment | |
tagged , , in , , ,
Friday
Sep072012

Java Zero Day Attach and it affects Linux...

This comes from our guest host Greg Martin on Google+:

Java 0-day being exploited in the wild. There have been confirmed infections on Windows-based computers but it's possible to compromise a Mac or Linux system as well. Currently the only recommendation for mitigation is to completely disable Java.

Links for thought:

Ars Technica article: http://arstechnica.com/security/2012/08/critical-java-exploit-spreads/

In-depth breakdown of the exploit (technical with mildly poor English): http://immunityproducts.blogspot.com.ar/2012/08/java-0day-analysis-cve-2012-4681.html

Proof-of-concept for the exploit (actual source code): http://pastie.org/pastes/4594319/text

There are also some claims that Oracle have known about the vulnerabilities for some time. https://www.pcworld.com/businesscenter/article/261612/oracle_knew_about_currently_exploited_java_vulnerabilities_for_months_researcher_says.html

I'm currently testing this out on my system (Linux) to see if I can get it to work.

 

DateFriday, September 7, 2012 at 8:35PM AuthorBrian "Wags" Wagner | CommentPost a Comment | |
tagged , , in
Page 1 2 3 4 5 ... 88 Next 5 Entries »