Groups | Search | Server Info | Login | Register
| From | Paolo Amoroso <estasi@aioe.org> |
|---|---|
| Newsgroups | aioe.news.helpdesk, aioe.system, aioe.helpdesk |
| Subject | My panic night |
| Date | 2016-03-08 09:44 +0100 |
| Organization | Aioe.org NNTP Server |
| Message-ID | <nbm3e2$1leg$1@gioia.aioe.org> (permalink) |
Cross-posted to 3 groups.
During the last three days aioe.org was hit by a massive flood attack sent from a large bootnet (mainly from three /12 subnets). No one noticed the problem because it affected only a few groups that are not well populated (mostly alt.usenet.kooks). in three days about 15,000 spam message were sent from aioe.org and about 20,000 were rejected by the server due various antispam filters. My peers have rejected almost all spam messages coming from my server (thanks to cleanfeed) and so their admins didn't become aware of this abuse and they didn't notice me that it was happening. In order to cheat security tools that scan my logs, my abuser has sent an huge number of fake log lines as unrecognized commands (which are logged). This was a great joke, i fell and so I thought of a hack against the server. BTW, maximum number of articles per ip address is set to 10 at the moment, value will be increased again in the future. ... and so my panic the night came to an end without serious trouble
Back to aioe.system | Previous | Next — Next in thread | Find similar
My panic night Paolo Amoroso <estasi@aioe.org> - 2016-03-08 09:44 +0100
Re: My panic night "s|b" <me@privacy.invalid> - 2016-03-12 15:49 +0100
Re: My panic night Paolo Amoroso <estasi@aioe.org> - 2016-03-13 00:04 +0100
csiph-web