gfxgfx
 
Please login or register.

Login with username, password and session length
 
gfx gfx
gfx
76774 Posts in 13500 Topics by 1651 Members - Latest Member: insider4ever March 29, 2024, 10:46:24 am
*
gfx*gfx
gfx
WinMX World :: Forum  |  Discussion  |  WinMx World News  |  Community Weekly News for Week Ending 26th of April 2011
gfx
gfxgfx
 

Author Topic: Community Weekly News for Week Ending 26th of April 2011  (Read 2006 times)

0 Members and 1 Guest are viewing this topic.

Offline tig

  • Forum Member
  • WinMXWorld.com Help_AE182F4EBABE
Community Weekly News for Week Ending 26th of April 2011
« on: April 27, 2011, 04:12:17 am »
Hi All

I decided that since you can not see a lot of the behind the scenes items that has been going on I thought it might an idea to formulate this.

As many of you know we have been suffering many attacks over the last week.

From logs we have been able to gather some information. The anti winmx attacks have included the following:

Posted by piney on: April 17, 2011, 06:26:50 PM
Quote
It appears that these 77.247.181.x IP addresses are the ones doing the attacking.

The bad news
They are tor exit node IP addresses

This is the reason why that tor ip wont be removed for now.

posted by lagerlout on April 22, 2011, 10:28:44 PM
Quote
As im sure you are all aware the caches are once again under heavey ddos. This is a udp attack on port 7940. It is the same attack as faced the other day and currently the only server not crumbling is mine.
We need a injection of faster servers asap. Vps plans and home caches arent going to stand up to this.

attack log
Quote
31.18.5.30 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
27.141.85.28 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
27.128.2.31 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
27.134.43.28 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
27.181.18.31 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
16.69.252.27 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
17.52.231.24 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
18.104.43.19 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
17.31.244.29 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
18.113.36.29 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
16.99.8.28 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
17.138.125.19 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
24.105.199.23 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
27.49.29.24 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
24.1.236.31 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
18.155.5.21 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
27.166.95.19 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
24.120.211.31 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
27.105.124.17 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
16.191.7.22 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
27.79.125.21 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http:/**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
24.237.75.28 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
24.21.181.23 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
24.224.111.31 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
17.231.9.26 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
18.178.219.28 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
16.145.153.29 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
27.87.191.26 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
31.12.104.30 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
16.131.154.18 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
18.56.65.29 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
16.191.252.23 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
17.226.17.21 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
24.22.85.25 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
24.182.183.26 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
24.153.5.21 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
17.2.251.21 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
24.26.231.31 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
18.143.26.24 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
24.72.197.19 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
16.115.17.28 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
17.18.111.25 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
16.136.242.27 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
18.134.216.28 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
27.77.104.23 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
31.99.145.29 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
24.240.48.31 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
16.86.97.27 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
16.141.55.19 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
17.243.81.27 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
24.61.195.22 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
16.89.162.25 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
31.122.106.17 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
17.59.14.16 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
31.42.234.20 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
18.233.104.26 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
31.102.134.27 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
27.125.19.25 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
27.0.78.29 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
27.65.5.25 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
17.219.36.28 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
24.231.158.17 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
16.93.113.20 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
17.21.126.28 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
16.34.244.25 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
16.17.42.22 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
16.55.172.21 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
24.67.24.20 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
17.178.111.27 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"
18.177.121.25 - - [22/Apr/2011:23:50:23 +0000] "GET /primary request HTTP/1.1" 200 152 "http://**.***.**.***/primary request" "WinMX/3.5X (compatible; WinMX 3.5X; WinMX Compatible OS; SV1)"

**.***.**.*** indicates that only the cache ip has been removed.

Code: [Select]
................................................
inetnum:         31.0.0.0 - 31.0.255.255

netname:         PLUSNET
descr:           Polkomtel S.A.
descr:           Warszawa
country:         PL
................................................
NetRange:       30.0.0.0 - 30.255.255.255
NetRange:       29.0.0.0 - 29.255.255.255
NetRange:       28.0.0.0 - 28.255.255.255

OrgName:        DoD Network Information Center
OrgId:          DNIC
Address:        3990 E. Broad Street
City:           Columbus
StateProv:      OH
PostalCode:     43218
Country:        US
..................................................
inetnum:        27.0.0.0 - 27.0.3.255
netname:        AMAZON-AP
descr:          Amazon.com, Inc.
descr:          605 5th Ave S
country:        JP
....................................................
NetRange:       26.0.0.0 - 26.255.255.255
OrgName:        DoD Network Information Center
OrgId:          DNIC
Address:        3990 E. Broad Street
City:           Columbus
StateProv:      OH
PostalCode:     43218
Country:        US
....................................................
inetnum:        25.0.0.0 - 25.255.255.255
netname:        UK-MOD-19850128
descr:          DINSA, Ministry of Defence
country:        GB
.....................................................
NetRange:       24.0.0.0 - 24.15.255.255
OrgName:        Comcast Cable Communications, Inc.
OrgId:          CMCS
Address:        1800 Bishops Gate Blvd
City:           Mt Laurel
StateProv:      NJ
PostalCode:     08054
Country:        US
......................................................
NetRange:       23.0.0.0 - 23.15.255.255
OrgName:        Akamai Technologies
OrgId:          AKAMAI
Address:        8 Cambridge Center
City:           Cambridge
StateProv:      MA
PostalCode:     02142
Country:        US
......................................................
NetRange:       22.0.0.0 - 22.255.255.255
NetRange:       21.0.0.0 - 21.255.255.255
OrgName:        DoD Network Information Center
OrgId:          DNIC
Address:        3990 E. Broad Street
City:           Columbus
StateProv:      OH
PostalCode:     43218
Country:        US
......................................................
NetRange:       20.0.0.0 - 20.255.255.255
OrgName:        Computer Sciences Corporation
OrgId:          CSC-68
Address:        3170 Fairview Park Drive
City:           Falls Church
StateProv:      VA
PostalCode:     22042
Country:        US
...........................................................
NetRange:       19.0.0.0 - 19.255.255.255
OrgName:        Ford Motor Company
OrgId:          FORDMO
Address:        P.O. Box 2053, RM E-1121
City:           Dearborn
StateProv:      MI
PostalCode:     48121-2053
Country:        US
..........................................................
NetRange:       18.0.0.0 - 18.255.255.255
OrgName:        Massachusetts Institute of Technology
OrgId:          MIT-2
Address:        Room W92-167
Address:        77 Massachusetts Avenue
City:           Cambridge
StateProv:      MA
PostalCode:     02139-4307
Country:        US
...............................................................
NetRange:       17.0.0.0 - 17.255.255.255
OrgName:        Apple Inc.
OrgId:          APPLEC-1-Z
Address:        20400 Stevens Creek Blvd., City Center Bldg 3
City:           Cupertino
StateProv:      CA
PostalCode:     95014
Country:        US
...............................................................
NetRange:       16.0.0.0 - 16.255.255.255
OrgName:        Hewlett-Packard Company
OrgId:          HP
Address:        3000 Hanover Street
City:           Palo Alto
StateProv:      CA
PostalCode:     94304
Country:        US
...............................................................

The traffic was all from the range 16.0.0.0 - 31.255.255.255 please bare in mind the list ive posted above is 1 SECOND, and was running for over 2 days knocking many of the home caches offline and required bringing many new cache online. Which has been done and accomplished well between us all.

People become really quite remarkable when they start thinking that they can do things. When they believe in themselves they have the first secret of success. BY Norman Vincent Peale

Offline achilles

  • Core
  • *****
Re: Community Weekly News for Week Ending 26th of April 2011
« Reply #1 on: April 27, 2011, 06:06:16 am »
Is this an attack on the chat rooms or the WPN? I'm running as a primary, and I have been up for about a week now without going offline.  I wonder how difficult it would be for them to be able to Ddos my network.  I'm behind an enterprise hardware firewall  GAV / GAS/ IPS/ etc..& running  extremely powerful machines like Icore 7's 3.2 ghz and greater which I built myself. Is it likely for my IP address to be targeted in these Ddos attacks? I try to help the network out as much as I can. I'm just limited in bandwidth which is 17 mbps download, and 5 mbps upload. The dushbags behind this need to get a life!
I'm a Hardware, and Cyber Security Guy.

Offline RebelMX

  • Core
  • *****
  • *****
Re: Community Weekly News for Week Ending 26th of April 2011
« Reply #2 on: April 27, 2011, 06:28:27 am »
I believe, don't hold me to this, that there would be no noticeable affect on any user, except a slightly higher bandwidth usage, and the inability to contact a cache when they are knocked off.  Perhaps you could contact Lagerlout directly achilles, as you could always offer to assist where possible? :)

Offline achilles

  • Core
  • *****
Re: Community Weekly News for Week Ending 26th of April 2011
« Reply #3 on: April 27, 2011, 06:47:28 am »
Who is Lagerlout? Are they a member here? Do they help with the patch / peercatche or something?
I'm a Hardware, and Cyber Security Guy.

Offline achilles

  • Core
  • *****
Re: Community Weekly News for Week Ending 26th of April 2011
« Reply #4 on: April 27, 2011, 06:51:27 am »
Never mind I see a post from Lagerlout now. I have not noticed him or her on the forum before.  I'm assuming this person helps with the per catches. I will see what i can do.
I'm a Hardware, and Cyber Security Guy.

Offline White Stripes

  • Core
  • *****
  • ***
  • Je suis aimé
Re: Community Weekly News for Week Ending 26th of April 2011
« Reply #5 on: April 27, 2011, 07:27:14 am »
Quote
Who is Lagerlout? Are they a member here? Do they help with the patch / peercatche or something?

aka Tiny4eva aka DeuxMX .... (the name changes around here can get confusing)

---

@tig -- if the attacks came from 16.0.0.0 - 31.255.255.255 how does blocking one (actually 2) ips in the blocklist stop this?

or is the first attacking caches and the second just the chatservers/mx client?

Re: Community Weekly News for Week Ending 26th of April 2011
« Reply #6 on: April 27, 2011, 08:03:13 am »
There are two seperate attacks mentioned above.

Offline JustSomeone

  • Forum Member
Re: Community Weekly News for Week Ending 26th of April 2011
« Reply #7 on: April 27, 2011, 02:56:53 pm »
so, you are saying that the person who was launching the attacks on the network, is also running the only caches not being attacked? interesting, i wonder what the obvious conclusion is that can be drawn from this?

Offline tig

  • Forum Member
  • WinMXWorld.com Help_AE182F4EBABE
Re: Community Weekly News for Week Ending 26th of April 2011
« Reply #8 on: April 27, 2011, 04:06:16 pm »
@ Silver Stripes.  The attacks didn't come from those IP addresses,  but were spoofed.

The 2 IP's in the blocklist is to help with the large packets which we were seeing.

@Justsomeone. ALL caches were attacked. This is just one log out of many. At one stage ALL caches became un-responsive.


People become really quite remarkable when they start thinking that they can do things. When they believe in themselves they have the first secret of success. BY Norman Vincent Peale

Offline Lagerlout666

  • Forum Member
Re: Community Weekly News for Week Ending 26th of April 2011
« Reply #9 on: April 27, 2011, 08:37:52 pm »
My server didn't drop. And the log posted above is from 87.106.62.247. It was removed for some reason???

And nice try to incinuate me. My server has a Cisco firewall and the attack was filtered upon providing that log. A pay enough for a dedicated server, and have provided caches for alot longer than you ever did, christ I still babysit the domain you abandoned winmx folks with time ago. It wont he long till you get caught out.
The Solution to 99% of winmx problems

nap.winmxgroup.net        -ONLINE again YAY!!!!!! :D

Praise's daily at the church of "Kopimi"

Concerned-User

  • Guest
Re: Community Weekly News for Week Ending 26th of April 2011
« Reply #10 on: April 27, 2011, 09:25:59 pm »
We all know who the gang of attackers are gay-m, splinter, bieb , pri when these scumbags are cut off of winmx we can all get on fine take a hike you 4 why dont you

Offline achilles

  • Core
  • *****
Re: Community Weekly News for Week Ending 26th of April 2011
« Reply #11 on: April 27, 2011, 11:57:33 pm »
I would hope Pri with his programming knowledge would have more constructive things to do than damaging the WPN, and etc.. He may not agree with the way things are being run around here, but I would not have thought he would resort to such counterproductive tactics.  I would hope the same holds true with Bieb, but it seems Bieb has been shown to have done such tactics a few months back. Even if he is no longer behind such tactics no one would believe him now.  Its hard to build a good reputation, but it's much harder to get it back once its been lost.
I'm a Hardware, and Cyber Security Guy.

Re: Community Weekly News for Week Ending 26th of April 2011
« Reply #12 on: April 28, 2011, 05:44:07 am »
Concerned user, you’re well entitled to your opinion as we all are. I’m sure some might share you viewpoint and I’m sure some would not. The main thing is, if you don’t have something to back you, please don’t make direct accusations.

Offline White Stripes

  • Core
  • *****
  • ***
  • Je suis aimé
Re: Community Weekly News for Week Ending 26th of April 2011
« Reply #13 on: April 28, 2011, 07:00:27 am »
@achellies;

pri doesnt care either way if the wpn lives ... no hes not attacking it hes just letting the cards fall where they may so to speak... during the flood attack(s) he even disconnected his chat server from primaries to (try to) keep his nose clean on being part of any flooding cos he knew someone would blame him... suffice it to say winmx politics has made him weary....

as for beib (josh) .... no... he makes neat little chatbot toys and the biggest thing hes got going on now is the wpn EKG.... a lot of his old projects (a chat client that parsed color codes in the user list and the (in)famous 'southern lights') have been abandoned...
he even reduced the refresh rate of the EKG during the flooding when asked.... ....the attack caused problems and false data with it anyway.... doesnt make sense to attack ones own programs...


imo ... no ... these two arent doing any attacking.. at least nothing that would lead me to believe they would...

granted ive been proven wrong in the past but afaik they arent doing anything...

Concerned-User

  • Guest
Re: Community Weekly News for Week Ending 26th of April 2011
« Reply #14 on: April 28, 2011, 03:19:44 pm »
Quote
The main thing is, if you don’t have something to back you, please don’t make direct accusations.

durr are you dense dude they admit it   :educated:

hat you trying to to cover up silicon_toad2000

Offline Bieb

  • Forum Member
Re: Community Weekly News for Week Ending 26th of April 2011
« Reply #15 on: April 28, 2011, 03:48:05 pm »
Quote
The main thing is, if you don’t have something to back you, please don’t make direct accusations.

durr are you dense dude they admit it   :educated:

hat you trying to to cover up silicon_toad2000

Birdman I suggest you speak for yourself. I have not admitted to anything, and I would appreciate it if you would re-read what Toad said before you turn this into another argument thread that leads no where.

I also suggest that you learn how to properly form words and sentences as it makes it really hard for anyone to take anything you say seriously if you can't even properly express what you're trying to say. It also would help to not insult the people you're trying to communicate with. As obviously they're not going to like it...

Concerned-User

  • Guest
Re: Community Weekly News for Week Ending 26th of April 2011
« Reply #16 on: April 28, 2011, 05:00:15 pm »
we both know wht your up to bieb go suck on an exaust pipe

Offline Bieb

  • Forum Member
Re: Community Weekly News for Week Ending 26th of April 2011
« Reply #17 on: April 28, 2011, 06:17:41 pm »
Again.. My point proven.

ericP

  • Guest
Re: Community Weekly News for Week Ending 26th of April 2011
« Reply #18 on: May 16, 2011, 10:17:05 pm »
From the point of a simple end user:
1) We had a major problem
2) Somebody brilliant fixed it very quickly
3) Us simpletons are very happy! Thanks!
4) The architecture of Win MX can be taken advantage of by someone is also smart and determined (as can others)

WinMX World :: Forum  |  Discussion  |  WinMx World News  |  Community Weekly News for Week Ending 26th of April 2011
 

gfxgfx
gfx
©2005-2024 WinMXWorld.com. All Rights Reserved.
SMF 2.0.19 | SMF © 2021, Simple Machines | Terms and Policies
Page created in 0.022 seconds with 23 queries.
Helios Multi © Bloc
gfx
Powered by MySQL Powered by PHP Valid XHTML 1.0! Valid CSS!