Backstage - OOC Forums
General Discussion => General Non-RP EVE Discussion => Topic started by: Casiella on 14 Jun 2011, 11:10
-
For the first time ever, I actually hate some black hats.
http://twitter.com/LulzSec/status/80681360292978688
We just wiped out the login server for Eve Online, and it accidentally took their website out at the same time: http://t.co/BgRuEoA
That last URL is Twitter itself shortening http://eveonline.com.
-
So, what happens when some of the less "restrained" RMT organizations realize these guys have cut into their profits? :-)
-
Eh. They hit the US Senate yesterday, so RMT is not their biggest concern.
-
D:
-
... I don't get it, are they trying to be Anon? >>
-
Anyone for Starcraft? :)
-
Lulz has some similarities to Anon, but they're more old-school in many ways. See http://en.wikipedia.org/wiki/Lulzsec.
-
Well, assuming no data lost, the server being down is pretty much, you know. Tuesday, for CCP.
On the other hand, free publicity.
-
If it's just a denial of service, sure.
If it's something deeper, then we will see.
-
Eh. The whole, "damage for the sake of it" was funny when I was 18, but it's kind of lost its luster since then.
Ah well. Gonna watch me some Generation Kill and play some Black Ops.
And get pizza.
Fuckin' love me some pizza.
-
Mmm....pizza...
And I live in NYC...
:)
-
Pretty sure all the personal info and credit cards CCP have for me are wrong. Plex++
Obviously a good time to change passwords, when the server comes back up, though.
Edit: Interesting that they went after Eve, of all things. Wonder if it's because it was vulnerable, or because they're bittervets.
-
Eh. They hit the US Senate yesterday, so RMT is not their biggest concern.
I know. For some reason though this reminded me of the end of The Italian Job, and it made me smile.
-
There was earlier a call for targets on their Twitter, so it might not take more than a single bittervet. And anyway, the execution does differ from their earlier efforts which had slightly more finesse, as DDoS essentially is a brute force attack.
-
Mmm....pizza...
And I live in NYC...
:)
Thin crust, bebbeh. And pepperoni. And a Dr. Pepper.
And something violent to watch. I bought the GK box set and Imma watch it a bunch. :D
-
Something to read while waiting on pizza:
http://www.theatlanticwire.com/technology/2011/06/hackers-taunt-security-firm-sony-finally-owns/38630/
-
I'm seeing a lot of folks claiming this is a DDoS. To be clear, we don't have evidence of that yet, though I really hope that that's the case.
-
:mad: <--- this is not my happy face. Then again, I won't get home for another 5+ hours, maybe it'll be working by then? Maybe? Please?
-
(http://i.imgur.com/L22BJ.png)
-
(http://weblog.datguy.net/images/KeyboardFrustration.gif)
-
We just wiped out the login server for Eve Online, and it accidentally took their website out at the same time
CCP griefs way harder than these guys
-
Okay, right. Damned Internet Tough Guys. My words cannot express how, online, they come across as invincible and awesome when IRL, they're just as weak and fleshy as the rest of us -_-
Secondly, why are they allowed to tweet freely?
-
I can't help but laugh.
You would all think this was fucking hilarious if they took down World of Warcraft.
-
I can't help but laugh.
You would all think this was fucking hilarious if they took down World of Warcraft.
That's 'cause WoW isn't hardcore, like we are.
Duh.
-
That's 'cause WoW isn't hardcore, like we are.
Duh.
:lol:
I have to admit, despite everything else, you are occasionally (unintentionally) funny.
-
just as weak and fleshy as the rest of us
Speak for yourself! 8)
-
That's 'cause WoW isn't hardcore, like we are.
Duh.
:lol:
I have to admit, despite everything else, you are occasionally (unintentionally) funny.
Naw, I'm intentionally funny.
If you need, I can add "THAT WAS SARCASM BY THE WAY" when I make jokes though.
-
Minecraft and Escapist Magazine down as well.
What's worse, is that there's tweeters going "lol epic!" at their "Titanic Takeover Tuesday"...
:evil:
-
Well I did double-dog-dare them to take down World of Warcraft.
-
:bash: How do these guys go from hacking the Conservative party website(which im ok with) last week, to attacking my beloved EVE online.
-
why are they allowed to tweet freely?
What? Huh? Who stops them?
-
If the account was shut down, they would just start another one.
-
Well, I mean, hacking's illegal right? Same reason I can't go posting about how I murdered someone on Twitter...I would figure, at any rate.
-
Twitter doesn't exactly monitor the millions of messages sent every second.
-
Well, I figured they might have something like "Report user" or whatever, but yeah, it's all redundant I suppose.
-
They do, so report them and see what happens. Depends on the ToS. Also, whose laws? They actively supported the Iranian protestors, for example.
-
While they have (possibly) some proficient guys on board the Lulz boat, today does look very much like bored script kiddies.
-
While I was needlessly agressive, I did say http://backstage.eve-inspiracy.com/index.php?topic=2386.0
I hate hackers for a reason. This is one. Frankly, thinking about it some white-hat that hacks his way all the way into being a button-push from crashing CCP and then inform them that they have a hole to plug, well, that would be white-hat. "I hacked your system in this manner for the hell of it - and here is how - I could take it all down with a single button-press, I would hope you guys fix this asap - here's a few ways you might do that."
Somewhat innocent, though annoying to the victims, I'm sure. The problem comes when they actually push that button - and pat themselves on the back for a job well done. THERE is the difference and the ability to do tihs kind of damage to thousands from te god's know where is just absurd, imho.
Can only hope CCP get's this fixed asap, I'm trying to get back into active EVE playing and this is not helping much :(
-
Can only hope CCP get's this fixed asap, I'm trying to get back into active EVE playing and this is not helping much :(
The longer it takes, the more SPs they'll hand out to say sorry.
-
I have a twitter I post in every time I hire a prostitute, rob a bank, take a psychadelic substance, kidnap a prostitute, steal from a child, transport illegal immigrants or feed baking soda to seagulls. I have never run into problems.
In any case here's hoping LulzSec doesn't make off with a bunch more credit cards. Glad mine isn't in any of my accounts.
-
Vaguely amused. Server being broken is pretty normal anyway.
Also:
Secondly, why are they allowed to tweet freely?
Twitter are a pro net-neutrality organization, and as such, won't cave in to governments or courts asking for information on users unless it's something like child pornography or international terrorism. (and I mean actual terrorism, not bullshit excuses to curb civil rights)
Eh. They hit the US Senate yesterday, so RMT is not their biggest concern.
Wait, you're implying that there are people in the US government actually competent enough to trace 16 year old Swedish Skiddies and do something about them? Don't be silly.
-
Hey now, boss. We find people all the time.
It just takes us a few years. So lay off. >:U
-
Hey now, boss. We find people all the time.
It just takes us a few years. So lay off. >:U
Yes, but often they are the wrong people.
-
You say that like it's relevant.
-
Secondly, why are they allowed to tweet freely?
Twitter are a pro net-neutrality organization, and as such, won't cave in to governments or courts asking for information on users unless it's something like child pornography or international terrorism. (and I mean actual terrorism, not bullshit excuses to curb civil rights)
I wouldn't be too sure of that. As I recall, Twitter immediately rolled over with big puppy-dog eyes as soon as they were asked for user details of people that may have broken a super injunction in the UK by naming a footballer on Twitter.
-
I don't think Twitter ever actually gave that data up, IIRC?
-
You say that like it's relevant.
See, Ken gets it. You weirdos in Over-Thereistan just don't understand.
-
I wouldn't be too sure of that. As I recall, Twitter immediately rolled over with big puppy-dog eyes as soon as they were asked for user details of people that may have broken a super injunction in the UK by naming a footballer on Twitter.
Can you source that? I'm not entirely sure whether they did or not. Ta' for reminding me though. Looking around on Google now.
-
I don't think Twitter ever actually gave that data up, IIRC?
I don't know, actually. I know Twitter released a statement on the subject, but then things went quiet. It stopped being newsworthy, I guess. I know that I never heard anything more about it, and I was one of the many people that tweeted the name, FWIW.
-
Well, Google hasn't yielded anything. There are articles saying the users in question could be prosecuted *if* they can identify them.
Thing is, Twitter isn't hosted in the UK, so our courts have no way of getting them to release names. Good thing too, the whole idea of a Superinjunction, especially to cover up some Footballer's sordid affair, is utterly wrong.
-
Ryan Giggs.
There, I said it.
-
Link to the original Twitter is at the beginning of this thread.
I was going to take the downtime to check out the game Minecraft...but Lulz got them too! :bash:
http://www.eurogamer.net/articles/2011-06-14-eve-online-minecraft-hacked
I guess I could go read a book or go outside or something...
-
They seem to have laid off the Minecraft Servers. Apparently League of Legends are currently being kept offline.
They've probably stopped hitting EVE's servers as well, but :ccp: are probably keeping them offline for total lack of competence security reasons.
EDIT: The tears on that article are so tasty.
-
I believe Twitter voluntarily released the e-mail address used to register the account that violated the injunction. I guess they didn't want to get dragged into a messy transatlantic court case
-
Hahahahahahahaha.
-
The most entertaining bit of this for me? CCP is now DOSing themselves.
-
I guess I could go read a book or go outside or something...
...
Get out.
-
I'm going to get really, really drunk.
...
Okay, so I was going to do that anyway.
-
People are genuinely starting to get angry over this whole thing, and the anger's getting directed at AtlasDOT due to a claim posted on their killboard's news section (directly copied from their site):
We would like to annouce that Atlas. has paid LulzSec to carry out the final, and most important stage of Operation: Free Shmak Datash.
TAKE THAT GM HORSE/NOVA!
I await your pitiful attempt to attack me by banning my account, fuckers.
-
People are genuinely starting to get angry over this whole thing, and the anger's getting directed at AtlasDOT due to a claim posted on their killboard's news section (directly copied from their site):
We would like to annouce that Atlas. has paid LulzSec to carry out the final, and most important stage of Operation: Free Shmak Datash.
TAKE THAT GM HORSE/NOVA!
I await your pitiful attempt to attack me by banning my account, fuckers.
Just Atlas trollers I doubt any legit responsibility.
-
At 17:00 GMT today, CCP became aware of a distributed denial-of-service attack (DDoS) attack against the EVE Online cluster and web servers.
Immediately, these services were taken offline. As an added precaution all of CCP's infrastructure was disconnected from the public Internet.
The CCP Security team is conducting a thorough investigation to determine exactly what happened and how, what the possible impact may be and, first and foremost, assuring that any personal information of our customers remains secure.
More information will be released as it’s available.
...but I have skills to queue.
-
I'd be ok with Atlas catching heat from CCP. :D
Of course, I have a VERY biased opinion of them right now...
-
A world without eve...oh dear
-
A world without eve...oh dear
We'll have to go back to watching Maury and Springer for our daily dose of drama.
-
A world without eve...oh dear
This is why I want an EVE pen and paper game...
...but then again, White Wolf's website is down too. :evil:
-
People are genuinely starting to get angry over this whole thing, and the anger's getting directed at AtlasDOT due to a claim posted on their killboard's news section (directly copied from their site):
We would like to annouce that Atlas. has paid LulzSec to carry out the final, and most important stage of Operation: Free Shmak Datash.
TAKE THAT GM HORSE/NOVA!
I await your pitiful attempt to attack me by banning my account, fuckers.
Just Atlas trollers I doubt any legit responsibility.
Yeah, though it could also be someone who passed LulzSec their killboard login credentials as well...
-
A world without eve...oh dear
This is why I want an EVE pen and paper game...
...but then again, White Wolf's website is down too. :evil:
EVE P&P = Traveller
http://en.wikipedia.org/wiki/Traveller_(role-playing_game)
-
Sinjin, I've been trying to get back into Traveller for AGES now... thank you for reminding me of my failure to do so :P
-
These black hats don't seem to even understand the corporate policy that they troll. Of course anyone who gets DDoS'ed is going to take down the servers to investigate. That's a pretty stupid thing to find humorous.
-
Is it me, or is going to do wonders for the anti-net neutrality movement?
-
Is it me, or is going to do wonders for the anti-net neutrality movement?
No, because a lot of what governments/corporations against net neutrality want to do with the Internet is antithetical to security.
-
I notice that it seems to have done wonders for the posting rate on backstage...
-
And every other EVE forum... and games popular among EVE players (e.g. WoT)...
-
I like to think the forced conversation brings us closer together as a community.
Er summin'.
-
I like to think the forced conversation brings us closer together as a community.
Er summin'.
(http://i20.photobucket.com/albums/b244/FenreyVarnFFXI/Outside%20FFXI/RainbowDashLOL.jpg)
(http://i55.photobucket.com/albums/g140/MeepChick/Friendship%20is%20Magic/Rainbow-Dash-Laughter.png)
-
Okay, this is hilarious. They take down the Eve server... and seem to think it matters somehow?
CCP trolls and griefs us harder on a regular basis and we love them for it. This is just a stranger sticking their hands down my pants as far as I'm concerned. Now if only I could get them to spank while they were at it... Maybe take down my Steam somehow.
I mean seriously... could they have picked a more jaded userbase to 'grief'?
-
I got three kills in Battlestar Galactica Online today.
As a Cylon.
Below level 10.
This was an epic day outside of EVE, but then I have epic days every day. My life is complete win! /Charlie_Sheen
On the whole "hacking" thing, I'll respond appropriately once more information is available regarding it. New credit card, password changes, etc. if they're necessary. Not the end of the world.
For some perspective, my wife's cousin had her purse, house and car keys, wallet, cell phone, credit cards etc. stolen last week. Losing a little game time in EVE is not that big of an inconvenience in the grand scheme of things, from my perspective anyway.
Better safe than sorry, and if CCP really does have security issues (both with their threat response and infrastructure), then pulling the cord was a good idea in my opinion. It may not be the best PR move, and possibly an overreaction, but if it kept someone from getting my personal data I'm all for it.
o7
-
I hope they're dumb enough to go after Steam. They'd lose a lot of support among the trolling community immediately.
-
That's just it: based on what we know (which is quite a bit, outside the EVE echo chamber), personal data were never at risk.
And if CCP doesn't have the sort of internal visibility to know that, then your data have been and continue to be at risk.
-
I can't help but laugh.
You would all think this was fucking hilarious if they took down World of Warcraft.
Can't speak for everyone else here, but no. No I wouldn't.
-
A message from our COO.
At 17:00 UTC today, CCP became aware of a distributed denial-of-service attack (DDoS) against the EVE Online cluster and web servers.
Our policy in such cases is to mobilize a taskforce of internal and external experts to evaluate the situation. At 17:55 UTC, that group concluded that our best course of action was to go completely offline while an exhaustive scan of our entire infrastructure was executed.
While some may feel that such a drastic reaction was not warranted, it is always our approach to err on the side of caution in order to ensure the best possible service for our players and the security of their personal, billing and account information.
We understand the effect this disruption has had for our players and apologize for not having been able to explain fully to the community what was going on. In these cases it can often be counterproductive to containment to give out information while we are in the process of evaluating the scope of any potential problem.
Our taskforce concluded at 22:05 that neither the game servers nor the CCP infrastructure had been breached. Further, we can also confirm that no personal details such as users’ credentials or credit card numbers were exposed through this incident.
The servers were brought back online at 23:00 and we will continue to monitor the situation closely.
Again, we sincerely apologize for this disruption.
Regards,
Jón Hörðdal
Chief Operating Officer
-
I've been in the shoes of their IRT (incident response team) before.
Systems: "Something bad happened!"
Management: "Uh, security, see if there's anything weird on the servers!"
Security: "..."
Also, they now claim (https://twitter.com/#!/LulzSec/status/80775713728368640) to have hit /b/.
-
:)
-
Fine, Vince. Be a doosh. I'll be killin' Ultranationalists if you need me. >:C
Actually, come to think of it, GameStop doesn't close until 10... I could go snag a pre-own copy of Infamous 2.
Ohmigad, I wanna play me some Infamous 2. I need it! D:
-
Lulz on Lulz. "Look, I can use LOIC, too!" etc.
-
EVE's back up, BTW.
-
Man, what was that, upwards of a few hours?
I never heard of LulzSec before, but they seem like a totally impressive internet badass black ops team.
-
They're actually a major threat. They've compromised (not DDoSed) the US Senate, FBI InfraGard, PBS, Nintendo, and some others.
http://lulzsecurity.com/releases/
-
I'll never be impressed by these types. Like I said, breaking stuff for the sake of breaking stuff is a pretty weak lifestyle.
Not to discredit the threat. I'm just not gonna make a terror alert for punks. vOv
-
They're actually a major threat. They've compromised (not DDoSed) the US Senate, FBI InfraGard, PBS, Nintendo, and some others.
http://lulzsecurity.com/releases/
Yeah, I'll grant that they're a more sophisticated Anonymous offshoot. But for their larger targets they're still using basic attacks like SQL injection. Not that I know how to do these things myself, but I do have friends in IT security from my Euro days who tell me their attacks have been simple.
-
Simple attacks, sure, but why do something complex when a simple attack will work?
-
Simple attacks, sure, but why do something complex when a simple attack will work?
Why assume they can do more?
-
If there's anything that the last ten years have taught me about security (albeit not computer security), a lot of simple attacks can make for a lot of problems, especially when the attacker is hard to pin down.
-
Kyoko, I mean that more generally: complex attacks are cool to come up with (or, in my case, detect), but most scenarios don't need them. It's not a question of whether Lulzsec can do more, but whether (almost) anybody needs to do more.
-
Anyway, what were people doing while the server was down?
I was sleeping through most of it, then I did some of this: UT99 (http://www.youtube.com/watch?v=_Sb5HsOBMPk)
-
I was sleeping through most of it, then I did some of this: UT99 (http://www.youtube.com/watch?v=_Sb5HsOBMPk)
:D:D:D
-
I watched Silent Hill.
I still don't understand the end... =.=
-
Me neither, but who cares? The movie's still awesome.
-
Me neither, but who cares? The movie's still awesome.
No doubt, but y'know. Between the awesomeness and splendid morbidity and all that, I like to analyze the psychobabble inherent in the film. Case in point, my friends and I argue to this day on what exactly Pyramid Head is.
I say he's the absent father figure for the little girl, some kind of personified Freudian all-punishing superego she imagined in her pursuit of safety.
They insist he's just some kind of obscure masculinity symbol that wanders around killing womenfolk.
I say bunk. >>
-
I still cannot log on :bash:
Still shows unknown server status.
-
Known router issue. CCP Manifest acknowledged it a bit ago.
-
CNN had a little blurb about it, mostly yesterday's attack on the US Senate's website. They defined 'lulz' as 'hacker speak for laugh'. Lulz; I'm now a hacker.
-
Server was down? Didn't even notice, work and all.
-
They insist he's just some kind of obscure masculinity symbol that wanders around killing womenfolk.
I say bunk. >>
Thing is, Pyramid Head's origin is in Silent Hill 2, which precedes the movie and lacks little girls.
It does, however, contain a seriously messed-up male protagonist and ...
[spoiler]... an "idealized" (that is, modified to match his internal preferences, certainly not Platonic in any sense) incarnation of his lovely wife, whom he mercy-killed in her hospital bed and suffers agonizing guilt over.
Pyramid Head spends that entire game haunting the protagonist and murdering that idealized incarnation, over and over again. By skewering her with pointy objects, no less. [/spoiler]
I'm with your friends on this one.
-
So, its all about penises.
-
Well yeah, the games are a different story, and they all have their own incarnation of Pyramid Head. But in the movie, specifically, I think he's a weirdly benevolent entity. I mean, as benevolent as he can be, being based solely on violent revenge and, rippin' people's skin off and whatnot.
Other iterations of PH are all subject to their own debate.
-
I honestly think the only reason he makes an appearance in the movie that is loosely based on the first Silent Hill game is the fact of the nerdrage from casual Silent Hill fans if he wouldn't have been included in it. And as such there is no actual deepness to it besides how deep his massive blade cuts, but I guess it is fun to speculate still :)
PS. It's always about penis, and it's never lupus.
-
Kyoko, I mean that more generally: complex attacks are cool to come up with (or, in my case, detect), but most scenarios don't need them. It's not a question of whether Lulzsec can do more, but whether (almost) anybody needs to do more.
It's also far more embarrassing for a victim to be taken down / get compromised by a simply strategy like SQL injection. Protecting your input fields and checking all incoming data, plus filtering out html characters goes a long way. But oh no, it requires effort.
Often, it is also a case of sheer incompetence. No offence to anyone, but a lot of people claim they can program and do all the other stuff like security, and believe everything Google tells them about it. Like this time a colleague told me that the javascript checks we had on input fields disabled injection. Yeah, guess what happens if I turn javascript off. Oh hey it still lets me submit this. Oh look I just found a flaw in your code. *SIGH* Sorry, going off on a bittervet rant here.
And then there is the case of negligence. Outdated systems, or companies who have grown so big they don't even know what they are running anymore or what "that box" over there does. Heard a great story recently about an unused phone server which was still connected to the network and had been taken over to serve in a botnet, which was found out when the botnet was used to take down other machines in the network it lived in, likely to expand that very net. Yeah, sorry, bittervet, back to my corner with me.
PS: For what it's worth, I don't approve of the whole data stealing thing. That's effing lame. But I do think that sometimes you need to really take out a server to get the effect that people go and take their security serious. v0v Not what LulzSec is about, the whole "for the lulz" thing is totally meh. But in the end they may contribute to something positive, in their unique way.
-
The sinking of the HMS Titanic contributed positively to the ship-building industry and the ways people viewed that need for ugly life-boats blocking that wonderful view. Among many things.
A sad fact of human existence is, we don't ofthen fix shit we are convinced isn't broken until it breaks by blowing up in faces, by then it's usually way to late for whomsoever owned the faces it blew up in.
-
The thing is, DDoS isn't a "hack" you really can defend against. Well sure, you can invest on routers that filter out the traffic or more hardware for the front-end servers, but then again, it might be possible to flood the trunks connecting your datacenters to the Internet. In EVE terms, DDoS (Distributed Denial of Service) attack isn't a director-level spy or an account takeover. It's a group blobbing with the goal of crashing a node. Most commonly with bots. The solution to "better servers" is having a bigger blob of bots.
The EVE login server - or most login servers, really - are not designed to handle very high peak loads. The usual peak load experienced is a few thousand people contacting the server over a few minutes after downtime or so. With a botnet, you could make that many thousands connecting multiple times a second over an extended period of time. If you scale hardware to deal with that, it's like buying a Ferrari for getting to work fast (on a zone with 60 km/h limit). Allegedly, battle.net has been hit in the past and wasn't having trouble, but that said, Blizzard's systems are designed to handle an order of magnitude or two higher amount of traffic.
-
It would seem that these bastards have now hit my work. <.< >.>
Actually, no they haven't, but our network drives are down, and that basically means that the quotations dept (me and a couple other people) can't do our jobs. At all. Period.
Hurrah for work-sanctioned goofing off time. Off to TV Tropes we go!
-
DDOS mitigation providers exist, usually in the form of services from tier 2 ISPs. We use them, and quite successfully.
-
Well yeah, the games are a different story, and they all have their own incarnation of Pyramid Head.
Far as I'm aware, it's just "2." He's a fairly specific incarnation of a specific character's specifically fucked-up headspace.
Did I mention he rapes monsters? No?
(http://memedepot.com/uploads/0/358_rapeclockta1.jpg)
But in the movie, specifically, I think he's a weirdly benevolent entity. I mean, as benevolent as he can be, being based solely on violent revenge and, rippin' people's skin off and whatnot.
Other iterations of PH are all subject to their own debate.
That would be quite the twist, if true. I'll have to see the movie and get back to you.
-
I'll never be impressed by these types. Like I said, breaking stuff for the sake of breaking stuff is a pretty weak lifestyle.
Not to discredit the threat. I'm just not gonna make a terror alert for punks. vOv
I have no respect for anyone using the term "lulz", let alone a group putting it in their name.
-
it is just another form of feudalism. Just like stone/egg/brick throwing gangs of yobs.
serfs (those without the technical knowledge) have their possessions, livelihoods, health, or even life, destroyed by their feudal overlords, whose only concerns are whether or not things are "funny". The victims are also to blame for their own misfortune too.
the law? pfft. conscience ? pfft. morality ? pfft.
There was mention of the NHS, and how they did not assault it. The amount of "lols" generated would have been lower than they would have liked. "People" would still have laughed, but the numbers who laughed would have been too low.
Just like pushing over gravestones, or painting slogans on people's houses.
Court of public opinion. If people laugh in sufficient numbers, it's acceptable behaviour. If they thought there would be enough people laughing at damaging the NHS websites, then why wouldn't they damage it ?
not pro-free speech either. If they don't like what you have to say, you don't get to say it. Tyranny by other means.
See it everywhere. A video of a person being run over by a train? "Lol, pwnt". No empathy.
it is a big de-humanising routine.
Same things as why people stab other people in the street, or attack websites. "I don't know why I did it. I think I was bored."
vOv
-
DDOS mitigation providers exist, usually in the form of services from tier 2 ISPs. We use them, and quite successfully.
CCP is peered with a few top-level providers, so plain amount of pipe isn't - or at least shouldn't be - a concern. Of course, then it just comes to filtering etc., but for nets massive enough, this just moves the bottleneck elsewhere. (Though yes, this will be of immense help when you can whitelist/prioritize clients which are already connected to the server, and just need to filter the rest for flooding and/or improper packets.)
-
Right, we use mitigation services that focus on "cleaning" the incoming traffic. I was skeptical but it's worked for us, at least.
-
That pic makes me laugh every time I see it and I know it shouldn't...
-
Could be more incoming:
http://www.rockpapershotgun.com/2011/06/15/new-lulzsec-attacks-on-wow-newerth-eve/
Yesterday’s denial of service attacks on Minecraft, Eve Online and League of Legends do not appear to be the end of hacker collective Lulzsec’s attempts to force online games offline. Heroes of Newerth’s login server was named a victim around an hour ago, shortly followed by the group declaring its intention to target Eve again tonight. That may of course be a double-bluff, but keep it in mind if you’re intending to play tonight.
Then, just moments ago, they stated that they were now rerouting calls to their ‘requests’ phone number to World of Warcraft’s customer support line. They claim their line, alleged by some to be a premium rate number, receives between 5 and 20 calls a second at present. Whether this signals an impending attack on WoW itself remains to be seen, but the group currently appear to be focusing efforts on phone rerouting.
-
it is just another form of feudalism. Just like stone/egg/brick throwing gangs of yobs.
serfs (those without the technical knowledge) have their possessions, livelihoods, health, or even life, destroyed by their feudal overlords, whose only concerns are whether or not things are "funny". The victims are also to blame for their own misfortune too.
the law? pfft. conscience ? pfft. morality ? pfft.
There was mention of the NHS, and how they did not assault it. The amount of "lols" generated would have been lower than they would have liked. "People" would still have laughed, but the numbers who laughed would have been too low.
Just like pushing over gravestones, or painting slogans on people's houses.
Court of public opinion. If people laugh in sufficient numbers, it's acceptable behaviour. If they thought there would be enough people laughing at damaging the NHS websites, then why wouldn't they damage it ?
not pro-free speech either. If they don't like what you have to say, you don't get to say it. Tyranny by other means.
See it everywhere. A video of a person being run over by a train? "Lol, pwnt". No empathy.
it is a big de-humanising routine.
Same things as why people stab other people in the street, or attack websites. "I don't know why I did it. I think I was bored."
vOv
-
*Crosses fingers for massive hax on WoW*
-
LulzSec just tweeted that "the EVEning is approaching", so it looks like it's going to happen again.
-
EVE teh down
-
If my being unable to access the EVE forums is indicative of anything I think it just started again.
Welp, time to hit the bottle.
-
LulzSec just tweeted that "the EVEning is approaching", so it looks like it's going to happen again.
:bash: Well at least i can watch Vancouver vs. Boston.
-
Yeah, they'll do this every day if they want. I hope they're stupid enough to attack Steam. I know they don't care about PR, but it really is essential if they want "the Internet" (which is quite strong) on their side.
-
I gave up planning my evenings around the EVE server uptime long ago. IRC Clients + Sci-Fi Desktop achieves pretty much the same effect.
-
From Kimberly Omerland in OOC:
(http://web15.twitpic.com/img/322562996-aaba5fe66d3bad6649f49795d9504112.4df91d50-full.gif)
-
I gave up planning my evenings around the EVE server uptime long ago. IRC Clients + Sci-Fi Desktop achieves pretty much the same effect.
WIN
-
DDOS mitigation providers exist, usually in the form of services from tier 2 ISPs. We use them, and quite successfully.
Think you might want to send the kind people at CCP a reference mail. Also will let the devs go like "real life blob lag, yeah, we solved that too", and have the last laugh (see what I did there).
Once was perhaps funny, but twice is getting a bit lame. I'm automatically going to suspect a third time to be incoming.
-
Apparently EVE's good now, I'm told?
-
My two favorite responses so far:
This isn't Sony you are ****ing with DDoS noobs.
I'm used to Siege warfare.
Hope you have 6 months free time. I'm in, lets Pee-Vee-Pee
They are trying to mess around with EVE players - creatures that are used to camp gates/mine/wait on a POS for fleet to assemble for HOURS and fight in soul crushing/game breaking lag.
-
I tried to log in and it broke again. Sorry. :eek:
Edit: Now I have character selection. And for once, I feel bad for pestering a login server to let me online to test if stuff is working, haha.
Edit2: And it just threw me off again. Welp, hope I am not being mistaken for a bot now Dx I'll go and leave it alone for a while.
-
I tried to log in and it broke again. Sorry. :eek:
What are your piratical ransom demands?
-
I tried to log in and it broke again. Sorry. :eek:
What are your piratical ransom demands?
10 billion ISK, male exotic dancers in Incarna, and a tin of biscuits. My life shall be complete.
-
Wait, what would I get in return? We can make a deal, hon.
-
Oops, already posted.
-
ISK and biscuits are no problem - we'll add more baked treats just for extra goodwill. But, instead of my harem of marines, can I give you Kyber instead?
-
I was going to offer a harem of my alts.
-
I was going to offer a harem of my alts.
Bukakekeke?
-
No. I just was going to see if this was a Myrhpportunity.
-
I'm willing to change my demands to Jude and maleCasiella as private dancers for my Captain's Quarters :)
-
Jude? What? See, baby, you don't need all that.
-
What is everyones thought on the possibility that these attacks on EVE are sponsered by other major MMO groups i.e blizzard or even microsoft, to damage CCP's name and the success of Dust 514?
-
Jude, hmm?
*puts a sign on Kyber that says 'Jude'*
-
What is everyones thought on the possibility that these attacks on EVE are sponsered by other major MMO groups i.e blizzard or even microsoft, to damage CCP's name and the success of Dust 514?
Completely beyond unlikely. The folks at Blizzard and Microsoft may occasionally indulge in slightly questionable business practices, but not outright criminal acts. Particularly since this group claims responsibility for intrusions at the US Senate and, just now, DDOSing the CIA's web site.
-
What is everyones thought on the possibility that these attacks on EVE are sponsered by other major MMO groups i.e blizzard or even microsoft, to damage CCP's name and the success of Dust 514?
Completely beyond unlikely. The folks at Blizzard and Microsoft may occasionally indulge in slightly questionable business practices, but not outright criminal acts. Particularly since this group claims responsibility for intrusions at the US Senate and, just now, DDOSing the CIA's web site.
They hit the CIA :ugh:
LOL they're going to disappear in the middle of the night now.
-
They hit the CIA :ugh:
LOL they're going to disappear in the middle of the night now.
>Implying the CIA are competent on the net. :lol:
-
Jude, hmm?
*puts a sign on Kyber that says 'Jude'*
No offence to the toaster, but Jude >>>>>>>>>>>>> Kyber. I will not stand for fakes. Besides, Sanshas have cooties, ew ;(
-
Jude's still new and shiny. And he makes giant space ducks with jetcan art. :(
-
What is everyones thought on the possibility that these attacks on EVE are sponsered by other major MMO groups i.e blizzard or even microsoft, to damage CCP's name and the success of Dust 514?
Or maybe a large null sec alliance calling in every favor it can to keep from being run over by a giant Russian freight train? :)
-
Glad I have long skills training.
-
I think the last flood against the login server didn't manage to take down the server - but it did manage to overload some of the trunks connecting TQ to the Internet. Also, there may be some indicators that either some ISPs/routers blocked the route to TQ or that some ISPs were categorically banned from getting access. (Eurorings.)
-
Or maybe a large null sec alliance calling in every favor it can to keep from being run over by a giant Russian freight train? :)
That for me is the better explanation of whats happening really. Metagaming to the next level, can't defende yourself? crash the server.
-
The NC alliances have already been crushed pretty much. Razor fighting alone? Yeah, right. Morsus Mihi is already in Delve. Russians trying to save themselves from bad, bad, -A- capturing their back yard? Not likely. If they want to turn back and steamroll -A-, I assume that's doable. The DRF is capturing assumably somewhat defended systems (okay, systems that were defended a week ago or so) faster than -A- is able to capture their undefended systems.
-
The NC alliances have already been crushed pretty much. Razor fighting alone? Yeah, right. Morsus Mihi is already in Delve. Russians trying to save themselves from bad, bad, -A- capturing their back yard? Not likely. If they want to turn back and steamroll -A-, I assume that's doable. The DRF is capturing assumably somewhat defended systems (okay, systems that were defended a week ago or so) faster than -A- is able to capture their undefended systems.
I agree with this. It's highly unlikey any entity in EVE 0.0 considered having the server killed by a DDoS attack from these juveniles to be a good idea, for any reason I can imagine. After all, no matter who else it's inconvinient for (everyone) it will also prevent you from logging in.
Slightly off-topic, but I do miss the age of fewer entities in 0.0 and somewhat more stable space. What's the point in trying to do the whole 'defending our space' thing is the reality of who holds what space changes on a weekly basis? Same as with allies. I love the consept of allies - having reliable friends that are not absolutely part of your alliance/corp, that you back up and help as they back you up and help you in turn. Since the fall of ASCN and the loss of Acenia the last real 'alliance nation' has fallen, IMHO. With it, 0.0 has lost alot of it's appeal.
-
More concentrated power with less sov fights is pretty much the opposite of what players wanted for years, seems to me.
-
Yeah, it's the massive coalitions that have made nullsec boring to me. That one such power has fallen and scattered makes me all happy. If CCP manages to further break apart coalitions somehow, (if they're even trying) I'm very happy. Stability is boring.
-
http://security.cbronline.com/news/lulzsec-anonymous-join-hands-to-wage-war-against-governments-210611
Maybe they're something after all.
-
Top priority is to steal and leak any classified government information
Play with fire, you're bound to get burned in the end.
-
Rumor is that they have the UK census info in hand now.
-
Rumor is that they have the UK census info in hand now.
:eek:
-
Top priority is to steal and leak any classified government information
Play with fire, you're bound to get burned in the end.
http://www.cbc.ca/news/technology/story/2011/06/21/technology-hacker-cyberattack.html
Another one bites the dust!
-
Lulz says they do NOT have UK census data and that the suspect in custody isn't one of them but the sysadmin of the IRC server they use.
-
Lulz says they do NOT have UK census data and that the suspect in custody isn't one of them but the sysadmin of the IRC server they use.
I'd say that too if I was Lulz :P
Seriously though, some interesting shit going down. Following this with great interest. Ain't too often you see hacker groups unite under a common banner.
-
I'm just happy to finally have a reason to share the sorts of things I do normally with my friends here. ;)
If LulzSec does in fact have that data, they'd probably announce it and be proud of it rather than hide it.
-
Hm. I'm keep thinking of the DX1 Dark Age ending...
-
I thought census data was more or less public domain?
-
Old census's can be looked up online for free, by anyone, iirc. (70+ years old i think? )
The newest ones cannot.
Usually takes a long time before anything is published by the various agencies anyway.
useful for schools & other forms of planning. Lots of children born in X years, means more primary schools built/refurbished in short order and more secondary schools later.
-
Aggregate census data are public domain. Individual census data have lots of privacy controls.
-
So I heard that the person who got arrested was the same person from Lulz that hacked Anon, sounds like they wanted to get rid of the guy now they are being all buddy buddy. Ah, politics :)
I had a good long discussion with the person who told me this, who is someone who has a certain level of "insider info". And we're in agreement that while this needs to be done, it also sadly may be something that is just a storm in a glass of water. You can hack big corrupt corporate entities to pieces, and force change through that, but at the end of the day it's still all about the fucking money, and just as we see in EVE patches must always carry a shiny selling point. In fact EVE probably gets more understanding from its community for fixes than something which ain't gaming related.
We also speculated that a lot of white hat hackers have grown tired of the corporate bullshit and pretend to be the "teen club" that is Lulz so they can get revenge. I can really recognize myself in that, knowing that as a programmer you can't always push through the changes you want even if they are better than the alternative because of budget. Yep, I'm a bitter vet IRL, one that will soon get a job again, so that will be fun times ;)
It's really sad, I see so many people upset because "omg my datas" but seriously, people have tried it the nice way and the nice way doesn't work. Not to mention that you should really practice proper password security. You don't have one key for every door either. There is a reason for that. If your car key gets stolen, they can't break into your house. Having one password is like letting them steal your entire keychain. With this being a bigger deal than ever this is something that needs to be stressed. Some ISP's do training in internet usage but it should really become household knowledge.
Also, since this is a hot topic, Lifehacker (no it's not a hacker site for those who do not know the term Lifehacking) had an amazingly good writeup (http://lifehacker.com/5714482/enhance-your-security-this-weekend?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+lifehacker%2Ffull+%28Lifehacker%29) about password security and how to manage it a while ago. Also comes with a few other security tips.
-
I find it hilarious that the UK's policy on combatting cyber-crime is:
-Track down unfortunate nerdy teen with LOIC Installed
-Kick down doors, arrest, confiscate hardware
-Claim you've caught the leader of Anonymous/Lulzsec/Insert Group of Choice Here
-???
-Profit
Oh, and as for the census stuff, lulzsec have denied Involvement. Media jumping on things they don't really get as usual:
LulzSec The Lulz Boat
Just saw the pastebin of the UK census hack. That wasn't us - don't believe fake LulzSec releases unless we put out a tweet first.
7 hours ago