Whether you like it or not,
".xxx" triple x top level domain has been in services for over 2
years. Of course, it is for pornographic websites only. I like the idea because
only a simple filtering mechanism can be used to ban children from accessing
adult websites.
2014/04/25
2014/04/22
DNS reply larger than 4096 bytes
I
thought I would never be able to generate a DNS query with reply size larger
than 4096 bytes. I was wrong ! Just look at this.
[warren@dnssec ~]# dig any doc.gov | grep SIZE
;; MSG SIZE rcvd: 9735
Of course, the reply has to fallback to TCP instead of UDP. Thanks to US Department of Commerce for letting me to play around with this.
Hackers, don't use this for amplification attacks. You will fail.
[warren@dnssec ~]# dig any doc.gov | grep SIZE
;; MSG SIZE rcvd: 9735
Of course, the reply has to fallback to TCP instead of UDP. Thanks to US Department of Commerce for letting me to play around with this.
Hackers, don't use this for amplification attacks. You will fail.
2014/04/17
Q1 2014 DDoS Attack Report
Thanks to Prolexic (part of Akamai) for sending me this Q1 2014 DDoS Attack Report. I love this more than Akamai's State of the Internet Quarterly Report.
Fuck you, China and USA for generating 40 % of world's attack traffic.
Fuck you, China and USA for generating 40 % of world's attack traffic.
2014/04/13
Historical heartbleed vulnerability
I need to make myself more competent on
Openssl and TLS after the discovery of this historical Heartbleed Bug. I hate
to learn and practise again but there is no shortcut.
2014/04/10
heartbleed bug
Announcement : If network administrators have difficulty to check whether their SSL private keys are affected by the heartbleed vulnerability, they can send me an email attaching the keys and let me know the websites. I will check for them, free of charge, of course.
Subscribe to:
Posts (Atom)