Page 1 of 2 12 LastLast
Results 1 to 10 of 19

Thread: Root server DoS attack slows the net

  1. #1
    Senior Member
    Join Date
    Apr 2002

    Root server DoS attack slows the net

    have you noticed a diffrence ? i cant say i have
    as reported from the register.co.uk


    A denial of service attack on the Internet's root DNS servers that began last night continues to vex users today.

    The DNS servers resolve names queries to numbers, and the slowdown should only be apparent the first time a user hits a site. After that, your ISP's cache ought to bypass the issue.

    The attack highlights the importance of DNS and its consequent vulnerability.

    Over at IcannWatch, Michael Froomkin revives Karl Auerbach's proposal of a CD-based "DNS in a box" for such emergencies.

    "The proposed CD would have contained the configuration files for BIND plus zone files for a root and selected contents of the big TLDs, plus some sort of wildcard for in-addr.arpa.... but it would have dented ICANN's claim to being uniquely necessary, and besides the idea came from the wrong source," observes Froomkin.

    Last year ICANN vowed to take security seriously, and after the latest attack it ought to explain why this is such a bad idea.®
    By the sacred **** of the sacred psychedelic tibetan yeti ....We\'ll smoke the chinese out
    The 20th century pharoes have the slaves demanding work

  2. #2
    Senior Member
    Join Date
    Aug 2001
    lol I have been getting malformed packets from icann.org all day, was wondering what that was all about

    El Diablo

  3. #3
    Senior Member
    Join Date
    Jul 2002
    I remember the root servers had a simlar DoS attack last spring. I use to have a great link that showed all the root servers traffic but I can't find it. I did find these two links that can give you some what of an idea.


  4. #4
    AntiOnline Senior Medicine Man
    Join Date
    Nov 2001
    Well I can speak on behalf of the nations 4th largest ISP and the largest hosting company in the US, that our DNS servers have not been affected in the slightest. And to be honest, had this statement been true, i am sure our beloved network admin would have known, and let us know bout a looming threat. So I would not worry about a thing.
    It is better to be HATED for who you are, than LOVED for who you are NOT.

    THC/IP Version 4.2

  5. #5
    AO übergeek phishphreek's Avatar
    Join Date
    Jan 2002
    I was just reading a similar article, but it is more in depth.


    detoxsmurf: thanks for the links... thats pretty cool

    Crazy to think that someone could possibly "take down" the internet. Just imaging if they had done it longer and with more hosts attacking all the servers...

    Then what would we all do?

    I've trashed all my board games...
    Guess we still have our video games. Metal of Honor baby!
    Quitmzilla is a firefox extension that gives you stats on how long you have quit smoking, how much money you\'ve saved, how much you haven\'t smoked and recent milestones. Very helpful for people who quit smoking and used to smoke at their computers... Helps out with the urges.

  6. #6
    Senior Member
    Join Date
    Apr 2002
    Yes, I did notice a difference also and took to now to discover what was going on. Thing is it was a probe a concept, now it worked. So lets see how to break the net most likely just kidz that is the sad part more info here in the US http://apnews.excite.com/article/200...D7MQTP5O0.html and I hate media reports will look for some more tech info over the next few days. Hard to say if it is media hype very little over the tech channels so far must still be assessing things.

    Will add to what Dr. Toker said while there are root servers that are on the backbone DNS also by nature takes into account the loss os these puters which is why there are more DNS servers then one can count now. If I noticed a slight slowing was because of re-routing, this place was designed to be taken out by nukes not kidz with gas
    I believe that one of the characteristics of the human race - possibly the one that is primarily responsible for its course of evolution - is that it has grown by creatively responding to failure.- Glen Seaborg

  7. #7
    Senior Member
    Join Date
    Apr 2002
    hey more news on this from http://www.abc.net.au/


    The core servers that direct email and Web surfers to their desired destinations around the world have been attacked in an apparently coordinated attempt to cripple the Internet.

    Authorities say the attack, which largely failed, was launched at about 7:00am (AEST) yesterday.

    Paul Vixie, the chairman of the California-based Internet Software Consortium, which operates one of the root servers, says the attack targeted the 13 root servers that make up Internet's Domain Name System.

    He says the attack lasted about an hour.

    Steven Berry, a supervisory special agent at the FBI, says the bureau's National Infrastructure Protection Centre was "aware of the issue and we are addressing it".

    He declined to comment further.

    Little effect

    Experts say the so-called "distributed denial of service" attack congested some traffic but would not have been noticeable to average Internet users.

    Mr Vixie said: "It was like redirecting all traffic between Highway 101 and the street you live on, or into your driveway.

    "You would not be able to get home because the street in front of your house would be full of cars from [Highway 101]."

    Denial of service attacks are designed to temporarily shut down servers by overwhelming them with too much traffic, usually coming from drone computers around the Internet.

    The Domain Name System - which matches up the long numerical codes computers use to match other computers attached to the Internet with the Web addresses people type in - and the root servers it relies on for address information, have long been considered the Achilles heel of the Internet, capable of shutting down the network if attacked.

    Modern cockroach

    Mr Vixie says the attack on the servers proves the Internet will not be so easily toppled, adding that the Internet is designed to route around obstructions.

    "What we learned yesterday is ... it is hard to kill this system," Mr Vixie said. "The Internet is sort of the cockroach of the modern age. It survives.

    "We've known all along that this could happen and it does happen periodically against root servers," he added. "It was interesting because it was an attack on all 13 root servers. That's kind of rare."

    Peter Salus, the chief knowledge officer at Texas-based Matrix NetSystems, which monitors Internet performance, has speculated that the root server attacks were related to a distributed denial of service attack on a number of Web sites that lasted a few hours later in the day.

    "My guess is script kiddies having a good time earlier decided on a new target," Mr Salus said.

    He says that of the 13 root servers, those that were the worst affected were the ones operated by: the US Department of Defence Information Centre in Vienna, Virginia; the US Army Research Lab in Aberdeen, Maryland; the Internet Corporation for Assigned Names and Numbers in Los Angeles; and one each in Stockholm and Tokyo.

    Ted Julian, co-founder of computer security company Arbor Networks, says the root server attack "is just another reminder that distributed denial of service attacks remain, arguably, the number one threat we face" on the Internet.
    Print-friendy version
    EDITED for another link


    edited for another link http://zdnet.com.com/2100-1105-963005.html
    By the sacred **** of the sacred psychedelic tibetan yeti ....We\'ll smoke the chinese out
    The 20th century pharoes have the slaves demanding work

  8. #8
    Senior Member
    Join Date
    Feb 2002
    Well my ISP was certainly suffering, all web activity slowed to a crawl over here and I have got a 600k connection, not good!

    detoxsmurf if you find the other link to show the traffic on the root servers I would be very interested to see it .

  9. #9
    Join Date
    Sep 2002
    Just had an e-mail from one of our ISP's EasyNet, saying that they are experiencing a severe DOS attack which is affecting al of their network
    Time flies like an arrow - fruit flies like a banana

  10. #10
    Junior Member
    Join Date
    Oct 2002
    Is there a point to fire housing the root servers? definatley not cool man.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts