Level 3 DC issues?
Leen Besselink
leen at consolejunkie.net
Fri Jan 29 22:40:36 UTC 2010
On 01/29/2010 08:30 PM, Robert D. Scott wrote:
> Looks like an internal problem to BoA. The redirect works, and I get an
> immediate reply. The https redirect page appears boinked. Even with a -k
> curl took over 30 seconds to get the page, and the browser would have timed
> out.
>
>
Hi,
Just noticed this article, maybe BoA is also a target ?:
CIA, PayPal under bizarre SSL assault
The "massive" flood of requests is made over the websites' SSL, or
secure-sockets layer, port, causing them to consume more resources than
normal connections, according to researchers at Shadowserver Foundation,
a volunteer security collective. The torrent started about a week ago
and appears to be caused by recent changes made to a botnet known as
Pushdo <http://www.theregister.co.uk/2008/02/29/botnet_spam_deluge/>.
http://www.theregister.co.uk/2010/01/29/strange_ssl_web_attack/
http://www.shadowserver.org/wiki/pmwiki.php/Calendar/20100129
Maybe that has something to do with this ?
Hope you have a nice weekend.
> robert at Robert ~
> $ curl -i -G www.bankofamerica.com
> HTTP/1.1 301 Moved Permanently
> Server: Sun-ONE-Web-Server/6.1
> Date: Fri, 29 Jan 2010 19:25:08 GMT
> Content-length: 122
> Content-type: text/html
> Location: https://www.bankofamerica.com/index.jsp
> Connection: close
>
> <HTML><HEAD><TITLE>Moved Permanently</TITLE></HEAD>
> <BODY><H1>Moved Permanently</H1>
> An error has occurred.
> </BODY></HTML>
> robert at Robert ~
> $ curl -i -G www.bankofamerica.com
> HTTP/1.1 301 Moved Permanently
> Server: Sun-ONE-Web-Server/6.1
> Date: Fri, 29 Jan 2010 19:25:28 GMT
> Content-length: 122
> Content-type: text/html
> Location: https://www.bankofamerica.com/index.jsp
> Connection: close
>
> <HTML><HEAD><TITLE>Moved Permanently</TITLE></HEAD>
> <BODY><H1>Moved Permanently</H1>
> An error has occurred.
> </BODY></HTML>
> robert at Robert ~
> $ curl -i -G https://www.bankofamerica.com/index.jsp
> curl: (60) SSL certificate problem, verify that the CA cert is OK. Details:
> error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify
> failed
> More details here: http://curl.haxx.se/docs/sslcerts.html
>
> curl performs SSL certificate verification by default, using a "bundle"
> of Certificate Authority (CA) public keys (CA certs). If the default
> bundle file isn't adequate, you can specify an alternate file
> using the --cacert option.
> If this HTTPS server uses a certificate signed by a CA represented in
> the bundle, the certificate verification probably failed due to a
> problem with the certificate (it might be expired, or the name might
> not match the domain name in the URL).
> If you'd like to turn off curl's verification of the certificate, use
> the -k (or --insecure) option.
>
> robert at Robert ~
> $ curl -k -i -G https://www.bankofamerica.com/index.jsp
>
>
> Robert D. Scott Robert at ufl.edu
> Senior Network Engineer 352-273-0113 Phone
> CNS - Network Services 352-392-2061 CNS Phone Tree
> University of Florida 352-392-9440 FAX
> Florida Lambda Rail 352-294-3571 FLR NOC
> Gainesville, FL 32611 321-663-0421 Cell
>
>
> -----Original Message-----
> From: John Palmer (NANOG Acct) [mailto:nanog2 at adns.net]
> Sent: Friday, January 29, 2010 2:22 PM
> To: NANOG list
> Subject: Level 3 DC issues?
>
> Anyone see any connectivity issues with Level-3 in the DC area? This issue
> is causing big latency problems
> that appeared to have taken out Bank of America's website.
>
>
>
>
>
>
>
More information about the NANOG
mailing list