I stand by my assertion

Post #17,468 by pwhysall 11/9/01 10:02:22 AM Reply	I stand by my assertion That these problems are DNS-based. Given that there is someone with motive, I'd say that DNS poisoning is going on. Hmm. But that doesn't sit right with being unceremoniously hoofed off II, tho. So it's not DNS. Temporarily broken DNS would make re-connecting difficult, but wouldn't affect existing telnet sessions. I stand by my assertion of SOMETHING, and I'll let you know what I know what the something is :-) If there's a DOS attack in progress (and I'm not convinced there is - a horked up router configuration with routers bouncing crappy info to each other via RIP or OSPF could produce effects like this) then the attacker is likely generating spoofed packets along the way. But the periodicity of the outage smells of routers to me. Peter Shill For Hire [link\|http://www.kuro5hin.org\|There is no K5 Cabal]
Post #17,474 by jlalexander 11/9/01 10:31:55 AM Reply	Re: I stand by my assertion Yeah, all connections are literally severed. Yesterday, I was telnetted into the MUD, SSHed into box, and downloading a file via HTTP, and they all dropped at the same time. Hrm, routers eh? I'll put a call into the ISP and see if they can check it out. -Jason ---- My pid is Inigo Montoya. You "killed -9" my parent process. Prepare to vi.
Post #17,475 by jlalexander 11/9/01 10:35:23 AM Reply	Re: I stand by my assertion Ah, something to keep in mind: When the box is unreachable for the next few minutes, just after the connections are dropped, the box still responds to pings. Figure that one out. -Jason ---- My pid is Inigo Montoya. You "killed -9" my parent process. Prepare to vi.
Post #17,477 by jlalexander 11/9/01 10:39:46 AM Reply	Re: I stand by my assertion Hrm, DNS-based... Interesting because when it goes down, zIWT gives a "404 File Not Found" error. Doesn't quit responding, but it's as if the named-based virtual hosting just keeled over periodically. ---- My pid is Inigo Montoya. You "killed -9" my parent process. Prepare to vi.
Post #17,508 by tseliot 11/9/01 1:29:14 PM Reply	The D in DDOS stands for "Distributed" Just found it extremely funny that you replied three times with the same subject line. Thought I'd "distribute" your own personal DDOS attack. :D But if you can ping through the "downtime" window, I'd say DNS is definitely the route to pursue. --------------------------------- A stupid despot may constrain his slaves with iron chains; but a true politician binds them even more strongly by the chain of their own ideas;...despair and time eat away the bonds of iron and steel, but they are powerless against the habitual union of ideas, they can only tighten it still more; and on the soft fibres of the brain is founded the unshakable base of the soundest of Empires." Jacques Servan, 1767
Post #17,748 by static 11/11/01 7:03:51 AM Reply	The funny thing about it, but... ... is that the IP address doesn't change. Well. AFAIK. Wade. "All around me are nothing but fakes Come with me on the biggest fake of all!"

Welcome to IWETHEY!