Page 1 of 3 123 LastLast
Results 1 to 10 of 21

Thread: Hackers cut off SCO Web site

  1. August 25th, 2003, 09:48 PM #1
    NullDevice
    NullDevice is offline
    Senior Member
    Join Date
    May 2003
    Posts
    472

    Hackers cut off SCO Web site

    This weekend, a denial-of-service attack took down the Web site of the SCO Group, which is caught in an increasingly acrimonious row with the open-source community over the company's legal campaign against Linux.
    SCO's Web site was largely out of commission until Monday morning, a representative for the Lindon, Utah-based Unix and Linux seller said Monday. Performance measurement statistics from Netcraft indicated that the site had been down since Friday night.

    In a distributed denial-of-service (DDoS) attack, numerous computers simultaneously send so much data across a network that the targeted system slows to a crawl trying to keep up with the traffic it's receiving. The SCO representative could not say where this weekend's strike originated.

    However, unofficial open-source spokesman Eric Raymond suggested in a posting Sunday to open-source news Web site NewsForge that the attack was launched by someone angry at comments from SCO executives criticizing the open-source community's role in the legal battles over Linux.
    guru@linux:~> who I grep -i blonde I talk; cd ~; wine; talk; touch; unzip; touch; strip; gasp; finger; mount; fsck; more; yes; gasp; umount; make clean; sleep;
    Reply With Quote Reply With Quote
  2. August 25th, 2003, 09:51 PM #2
    Syini666
    Syini666 is offline
    Purveyor of Lather Syini666's Avatar
    Join Date
    Aug 2001
    Posts
    553
    I will never understand why people do stupid s*** like that, becuase it never helps their "cause". If anything it will provide more ammunition for SCO to use against the Open Source community. Just like when the RIAA site was hit with DoS attacks and even defaced. It never proves anything, and just makes things worse.
    You're not your post count, You're not your avatar or sig, You're not how fast your internet connection is, You are not your processor, hard drive, or graphics card. You're the all-singing, all-dancing crap of AO
    09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0
    Reply With Quote Reply With Quote
  3. August 25th, 2003, 09:54 PM #3
    CXGJarrod
    CXGJarrod is offline
    AO Decepticon CXGJarrod's Avatar
    Join Date
    Jul 2002
    Posts
    2,038
    I think that Nelson Muntz from the Simpsons said it best.... "Ha-ha"

    For the record, I dont think that DOS'ing the site was the best idea for the Linux cause, but like RoadClosed said, the little voice in my head is saying "ha-ha."
    N00b> STFU i r teh 1337 (english: You must be mistaken, good sir or madam. I believe myself to be quite a good player. On an unrelated matter, I also apparently enjoy math.)
    Reply With Quote Reply With Quote
  4. August 25th, 2003, 10:05 PM #4
    RoadClosed
    RoadClosed is offline
    Senior Member RoadClosed's Avatar
    Join Date
    Jun 2003
    Posts
    3,834
    I am with CXGJarrod, while one side agrees with Syini666 - I can't help but hear that "ha ha" voice in my head.
    West of House
    You are standing in an open field west of a white house, with a boarded front door.
    There is a small mailbox here.
    Reply With Quote Reply With Quote
  6. August 25th, 2003, 10:51 PM #5
    phishphreek
    phishphreek is offline
    AO übergeek phishphreek's Avatar
    Join Date
    Jan 2002
    Posts
    4,325
    Now who would want to do that to a nice bunch of folks like the people at SCO?!

    Sheesh... what is this world coming to?
    Quitmzilla is a firefox extension that gives you stats on how long you have quit smoking, how much money you\'ve saved, how much you haven\'t smoked and recent milestones. Very helpful for people who quit smoking and used to smoke at their computers... Helps out with the urges.
    Reply With Quote Reply With Quote
  7. August 25th, 2003, 10:59 PM #6
    KorpDeath
    KorpDeath is offline
    Priapistic Monk KorpDeath's Avatar
    Join Date
    Dec 2001
    Posts
    2,628
    It's easy to be immature about hot subjects like this but the simple fact of the matter is that SCO will end up laying on it's own sword for this. So why not just let it happen, they obviously don't need any help screwing themselves.

    That's a much bigger "HA-HA!".

    IMHO
    Mankind have a great aversion to intellectual labor; but even supposing knowledge to be easily attainable, more people would be content to be ignorant than would take even a little trouble to acquire it.
    - Samuel Johnson
    Reply With Quote Reply With Quote
  8. August 26th, 2003, 02:09 AM #7
    gore
    gore is offline
    Senior Member gore's Avatar
    Join Date
    Oct 2002
    Location
    Michigan
    Posts
    7,177
    Before we point fingers, does anyone know for sure it was a bunch of Linux people? and yea your damn right I laughed.
    Reply With Quote Reply With Quote
  9. August 26th, 2003, 02:23 AM #8
    r8devil
    r8devil is offline
    Senior Member
    Join Date
    Jul 2003
    Posts
    217
    Although i laughed when i read it. I have to agree that it doesnt help anything in the case. It only serves to make the open source community seem to be immature. This makes all the bigwigs out there not really like the open suorce idea. They already dont like it cos it seems to be taking power and $ from their hands and putting it into the publics hands.
    Reply With Quote Reply With Quote
  11. August 26th, 2003, 03:37 AM #9
    breakology
    breakology is offline
    Member
    Join Date
    Aug 2003
    Posts
    98
    A user at slashdot posted this about the SCO attacks:

    I posted this at Groklaw, and I'm reposting it here since it seems pretty relevant to the current thread:

    I ran some traceroutes to see where the problem is, and the results are quite interesting.

    First, let's start with www.canopy.com. I am listing the traceroute output from step 12, since that's just two steps before where things get revealing:

    Tracing route to www.canopy.com [216.250.142.120] over a maximum of 30 hops: ....
    12 77 ms 77 ms 76 ms 66.62.3.56
    13 74 ms 77 ms 74 ms den1-core-01.tamerica.net [66.62.3.45]
    14 77 ms 77 ms 76 ms den1-edge-01.tamerica.net [66.62.4.3]
    15 77 ms 77 ms 77 ms vi-001.brdr01.den05.viawest.net [66.62.160.22]
    16 75 ms 77 ms 76 ms gige-01-m00-00.crrt02.den05.viawest.net [64.78.230.210]
    17 87 ms 87 ms 89 ms pos-03-01.crrt01.slc03.viawest.net [64.78.227.10]
    18 89 ms 89 ms 89 ms c7pub-216-250-136-70.center7.com [216.250.136.70]
    19 91 ms 88 ms 87 ms c7pub-216-250-142-126.center7.com [216.250.142.126]
    20 88 ms 89 ms 90 ms c7pub-216-250-142-120.center7.com [216.250.142.120]

    Trace complete.

    Now, let's traceroute www.caldera.com

    Tracing route to www.caldera.com [216.250.140.125] over a maximum of 30 hops: ....
    12 74 ms 77 ms 77 ms dal1-core-01.tamerica.net [66.62.6.193]
    13 76 ms 77 ms 74 ms den1-core-01.tamerica.net [66.62.3.45]
    14 77 ms 74 ms 74 ms den1-edge-01.tamerica.net [66.62.4.3]
    15 * * * Request timed out.

    And finally, www.sco.com:

    Tracing route to www.sco.com [216.250.140.112] over a maximum of 30 hops: ....
    12 76 ms 77 ms 76 ms dal1-core-01.tamerica.net [66.62.6.193]
    13 75 ms 77 ms 76 ms den1-core-01.tamerica.net [66.62.3.45]
    14 77 ms 76 ms 75 ms den1-edge-01.tamerica.net [66.62.4.67]
    15 * * * Request timed out.

    Canopy, Caldera, and SCO, all have addresses that are within the same class C addressing range, respectively: 216.250.140.120, 216.250.140.125, 216.250.140.112. While this makes it very possible that all three sites are served by the same machine, we can't prove that from this information. It is however, likely that they are served from the same router.

    The next thing to note is that the route to SCO and Caldera both fail at the 14th step in the tracert. The last router that responds for each of them, at the 13th step, is den1-edge-01.tamerica.net (albeit from different ports). Canopy also passes through den1-edge-01.tamerica.net at the 13th step, but continues on to a router at viawest.com. From there, it passes through 2 more routers at ViaWest, and 3 routers at Center7.

    ViaWest and Center7 are both Canopy companies.

    On initial analysis, for any other company, a network manager/sys admin/networking consultant (such as me) would simply assume that SCO/Caldera was having a problem with its ISP. The weird thing, though, is the presence of Canopy's IP address right *between* SCO's and Caldera's addresses.

    Assume that all 3 segments are served by the same router (no, we can't prove it from this data, but it's extremely likely). Canopy, in that case, should be experiencing problems too if the site were under a DOS attack.

    In fact, anyone planning a DDOS attack would find it easier to just take out the whole address range, thereby including all 3 sites, rather than focus on just the SCO/Caldera sites -- and for technical reasons alone. Never mind that they would *want* to target Canopy as well.

    Given all this, it is a pretty safe bet that SCO/Caldera has taken its websites down itself.

    Why? To protect themselves from a DDOS attack? No. Any decent firewall could take care of that for them. That's why I suspected that it was not DoS attack: they've simply been down too long.
    I hate this place, nothing works here, I\'ve been here for 7 years, the medication does\'nt work...
    Reply With Quote Reply With Quote
  12. August 26th, 2003, 04:12 AM #10
    Highlander
    Highlander is offline
    Senior Member
    Join Date
    Jul 2001
    Posts
    343

    Arrow Moving ???

    Do you think SCO is moving or got booted from their ISP ???
    Maybe the ISP does not want any problems.
    SCO did dig up a BIG can of worms....
    Franklin Werren at www.bagpipes.net
    Yes I do play the Bagpipes!

    And learning to Play the Bugle
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules