Interesting reading (for those who own websites)

David Pennybaker · Post by **David Pennybaker** » 1 Jun 2001 11:56 am

http://grc.com/dos/grcdos.htm

------------------
The Unofficial Photographer of The Wilkinsons

Larry Beck · Post by **Larry Beck** » 1 Jun 2001 12:46 pm

Yes. Good but somewhat techie article.
I read it yesterday after it was mentioned in \. (slashdot.org)
Steve Gibson must dream in assembler code.

There is a big difference between him and 13 year old hackers. It is trivial for someone to hex edit the code for one of these bots.

BTW: some commercial code has pretty funny stuff in comments when viewed with a hex editor. I found "Nosy, aren't you?" buried in a wordprocessor's code several years back.

David Pennybaker · Post by **David Pennybaker** » 1 Jun 2001 1:12 pm

Steve Gibson must dream in assembler code.

Yep. Like many people here probably dream in intervals and chord theory.

I just try to sleep.

There is a big difference between him and 13 year old hackers.

He sure put the kid in his place. But it's worrisome how much effort he had to go through. And even more troubling how XP may make it all but impossible to prevent things like this from happening in the future.

BTW, I highly recommend ZoneAlarm.

------------------
The Unofficial Photographer of The Wilkinsons

Janice Brooks · Post by **Janice Brooks** » 2 Jun 2001 6:57 am

David that was an interesting 20 minetes of reading.

------------------
Janice "Busgal" Brooks
ICQ 44729047

David Pennybaker · Post by **David Pennybaker** » 3 Jun 2001 8:02 am

It gets even better:
http://grc.com/dos/openletter.htm

___________________

Page last modified: Jun 01, 2001 at 12:47

I surrender.

I surrender right now, completely and unconditionally.

And I'm not kidding.

It is my intention to carefully and completely explain, to the entire world, exactly why there is no defense against the sorts of clever Internet attacks you guys can create.

I want to do that because the world still doesn't get it.

It occurred to me that you might think that I think I'm invulnerable after managing to block the IRC Zombie/Bot attacks, so I wanted to be SURE that you understood that I AM UNDER NO SUCH DELUSION.

I was talking to a reporter on the phone a few hours ago, during the first REAL, non-blockable attack we have ever experienced. And I calmly explained that we were under attack and off the Net. In a bit of a panic, he asked what I was going to do about it. So I told him that I was going to take a long walk on the beach — because you and I both know there's absolutely NOTHING I CAN DO to defend against a real, professional, Internet Denial of Service attack. So I might as well enjoy the day.

I have started working on a next set of pages to explain all this. The pages are not finished, but you can see what I have so far, and where I'm going with it: (Page 1) (Page 2)

So, I respectfully ask that you leave me alone and allow my site to stay on the Net. I know that you can easily knock me off. That's not even a question. But only if I'm here can I explain that to the rest of the planet.

Thank you for your consideration . . . and for your charity.

------------------
The Unofficial Photographer of The Wilkinsons

Janice Brooks · Post by **Janice Brooks** » 3 Jun 2001 9:17 am

Installed the free version of Zone Alarm last evening. but I have to disable it
to get on the forum from AOL.
However it detected 15 connect attempts in as many minetes

Ernie Renn · Post by **Ernie Renn** » 3 Jun 2001 11:13 am

I can't get either page to come up. (?)

------------------
My best,
Ernie

The Official Buddy Emmons Website
www.buddyemmons.com

David Pennybaker · Post by **David Pennybaker** » 3 Jun 2001 2:54 pm

However it detected 15 connect attempts in as many minetes

Where were they from? I often get them from the webpages of message boards that I'm visiting. I don't think those are legitimate worries at all.

If they're coming from somewhere "odd", then I'd worry.

I assume you're NOT talking about programs on your computer attempting to establish communication to the internet. If so, you've got problems.

------------------
The Unofficial Photographer of The Wilkinsons

David Pennybaker · Post by **David Pennybaker** » 3 Jun 2001 2:55 pm

I can't get either page to come up. (?)

He's either being DDOS's again, or his site is getting swamped with LOTS of legit traffic to view the articles.

Probably a combo of both.

Sometimes I get there, sometimes I don't.

------------------
The Unofficial Photographer of The Wilkinsons

Ernie Renn · Post by **Ernie Renn** » 4 Jun 2001 9:08 pm

Bingo!

------------------
My best,
Ernie

The Official Buddy Emmons Website
www.buddyemmons.com

Ernie Renn · Post by **Ernie Renn** » 4 Jun 2001 11:27 pm

I just read the pages. I am amazed by the technology of a remote control, so this is "way cool!"

I suppose internet cookies would be noted as hits by Zone Alarm. The Forum sends out one to know when you logged on and your preferences. Just a thought.

------------------
My best,
Ernie

The Official Buddy Emmons Website
www.buddyemmons.com

Jack Stoner · Post by **Jack Stoner** » 5 Jun 2001 2:48 am

I don't think Zone Alarm (or possibly any firewall) tracks cookies. I've never got an alert from Zone Alarm for a cookie transaction. There's nothing in the setup or options for cookies either (actually not much configuration period it's all automatic). Since there are "good" cookies and "bad" cookies the firewall doesn't know how to differentiate this function.

Jeff Agnew · Post by **Jeff Agnew** » 5 Jun 2001 8:32 am

I suppose internet cookies would be noted as hits by Zone Alarm.

No, because they are simply HTTP requests, just like the text or graphics on a page. Once you instruct Zone Alarm to allow your browser to access the net, it makes no distinction about the content.

You can, however, use a cookie manager such as Cookie Cop, Cookie Pal, or Cookie Muncher to filter the HTTP stream and delete/allow cookies on an individual basis.