Victor's Blog about the Web, Security and Life

Printable Version

Two days ago, on Sunday night, Roland, a friend of mine, called me and said that the lebanese-forces.com website was under a heavy denial of service attack and that they were receiving emails from Hezbollah advertising the attack and asking them to shut down the website. My natural reply to his request was to meet so that I can help in any way possible. One hour later, we met at my place and the process of restoring the website started. It turned out that Hezbollah was not the party attacking the website. How was this deduced?
The server was still accessible via all other services (RDP, FTP, SMTP, etc.). The attack only covered an exceeded load of HTTP requests in addition to SMTP spamming. After exploring the source of attack, fake IPs were being used to generate thousands of requests on port 80 (the port that HTTP uses to serve website requests). The cure was simply to ban these IPs. The process took around 30 minutes and the server was back online working normally as the attack continued using various other IPs.

Why am I writing this here?
While I am personally supportive in the case of any abuse in Internet resources, I would also like us all to relax a little bit before deciding on attack sources. Let us say that Hezbollah really wanted to attack the website, will Hezbollah send an email to them telling them that they will be attacked? If I am attacking someone, will I send him a proof of my identity first? Of course not.

Furthermore, the tools used in such simple attacks are widely distributed across the Internet and anyone, literally anyone from a 10-year old child to an 80-year old bored person, can get similar tools, install them on his/her PC and start the attack at any given moment.

On the other hand, such a claim at such a sensitive situation in Lebanon will only lead to spreading hatred among citizens. This article is written to simply clarify the case and to ask whoever is related to this incident to relax and help make things better instead of worse.

Add comment

Topic

Text

Your name

Email (Required)

Web

• Main
• Archives
• Albums
• Links
• My General Blog
• My PHP Blog

«	February 2012					»
Mo	Tu	We	Th	Fr	Sa	Su
		1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29

I am experienced in Internet technologies, Web Services and Online Interactive solutions. I am very interested in challenges related to web services engineering especially complex and hybrid online solutions (Intranet, Extranet, e-Commerce, etc.) and algorithms (search engines, security, etc.)

I am experienced in security as well. My expertise is mainly in network and Internet security. I am also experienced in the fields of cryptography, security assessment techniques, security design (policies, profiles, architectures, etc.) as well as security auditing and ethical hacking.

I am a Linux fan (by nature :). Period.

 

• The New Facebook Sneak Peaks
• NASA Satellite to Crash Back to Earth this September
• Google Desparate for Gmail?
• Shortcuts to Official Exam Results on www.schoolnet.edu.lb
• 10 Dirty Little Secrets You Should Know About Working in IT
• Turkish Airport Smoking Terrace
• 10-10-10 10:10: TEN DIGITAL CHEERS!
• Alfa Statement Roaming Charges
• Google Analytics vs Log File Based Statistics
• Ziad Baroud Spamming?
• A Couple of Amazing Tricks!
• A New Speed Radar That You Cannot Fool!
• Standard Chartered Email & Website Phishing
• Huge Lighters Security Alert
• Few Blog Updates to Share
• NetDesignPlus in Kuwait
• Hidden Fees with Malev Hungarian Airlines Online Booking System
• IEEE High Availability Database Workshop
• Halloween 2009
• One-Million Dolar Picture

• Web [27]
• General [50]
• Security [22]
• Programming [5]
• Software [1]
• Politics [21]
• Linux [2]
• Courses [4]

• RSS 0.90
• RSS 1.0
• RSS 2.0
• Atom