WP: Attack On Internet --more info?

• Previous message (by thread): AMS-IX problems
• Next message (by thread): need opinions re: contact methods for a noc@ alias
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

It's ironic how these events make their way into the
media but no one in the media seems inquisitive enough
to truly follow up on an event.

Was the attack widely distributed or were the streams
large enough to traceback with netflow, etc? Was
there any success in identifying compromised machines?
Any forensic clues found?


-----Original Message-----
From: dies [mailto:dies at pulltheplug.com]
Sent: Wednesday, October 23, 2002 1:06 AM
To: Richard A Steenbergen
Cc: Sean Donelan; nanog at merit.edu
Subject: Re: WP: Attack On Internet Called Largest Ever




Agreed...I worked these attacks on UUNET's backbone and quite honestly
none of them was over 100mbit worth of traffic.  We see this everyday,
this was nothing out of the ordinary except the destination...

Shrug...fear is an easy weapon to wield, eh?

On Tue, 22 Oct 2002, Richard A Steenbergen wrote:

>
> On Tue, Oct 22, 2002 at 05:15:21PM -0400, Sean Donelan wrote:
> >
> > http://www.washingtonpost.com/wp-dyn/articles/A828-2002Oct22.html
> >
> > The heart of the Internet sustained its largest and most sophisticated
> > attack ever, starting late Monday, according to officials at key online
> > backbone organizations.
>
> Looked like a pretty piddly and unintelligent smurf/ping flood combo to
> me. The state of the so-called "experts" saddens me more with each passing
> day.
>
> --
> Richard A Steenbergen <ras at e-gerbil.net>       http://www.e-gerbil.net/ras
> PGP Key ID: 0x138EA177  (67 29 D7 BC E8 18 3E DA  B2 46 B3 D8 14 36 FE B6)
>

• Previous message (by thread): AMS-IX problems
• Next message (by thread): need opinions re: contact methods for a noc@ alias
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]