[SOLVED] Re: DDoS in FreeBSD 6.2-STABLE And Problen With The Clock
Hi all, Karol Kwiatkowski wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 [format recovered, please don't top-post] [also keep @freebsd-stable in cc] ExTaZyTi wrote: 2007/6/12, Karol Kwiatkowski <[EMAIL PROTECTED]>: ExTaZyTi wrote: Next problem is the clock, have e 4 minuts different from the world time for my country. I try to fix this with a "ntpdate otel.net" for example .. this again return 4 minutes different. I try and the "date" command but it's NOT WORK..You can see: [...] ..now example for "nptdate": [EMAIL PROTECTED] (~)]: ntpdate otel.net Try using -b switch: # ntpdate -b otel.net oh this again return 4 minutes different :( Hmmm... strange. Do you have ntpd running? What does those commands say: # ps aux | grep ntp # ntpq -np After private conversation with ExTaZyTi : The problem with time was because of kern.securelevel = 2 ;) hardware DDoS .. well it's just a DoS in his case. -cut- -- Best Wishes, Stefan Lambrev ICQ# 24134177 ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: DDoS in FreeBSD 6.2-STABLE And Problen With The Clock
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 [format recovered, please don't top-post] [also keep @freebsd-stable in cc] ExTaZyTi wrote: >> 2007/6/12, Karol Kwiatkowski <[EMAIL PROTECTED]>: >>> >> ExTaZyTi wrote: >>> Next problem is the clock, have e 4 minuts different from the world >> time >>> for >>> my country. I try to fix this with a "ntpdate otel.net" for example .. >>> this >>> again return 4 minutes different. I try and the "date" command but it's >> NOT >>> WORK..You can see: >>> >> [...] >>> ..now example for "nptdate": >>> >>> [EMAIL PROTECTED] (~)]: ntpdate otel.net >> >> Try using -b switch: >> >> # ntpdate -b otel.net > > oh this again return 4 minutes different :( Hmmm... strange. Do you have ntpd running? What does those commands say: # ps aux | grep ntp # ntpq -np - -- Karol Kwiatkowski OpenPGP 0x06E09309 -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.7 (FreeBSD) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGbmGSezeoPAwGIYsRCF3YAJ0b1GVju6wHCYl0hXBPtyzJ7caB/QCeM0cD a/YGiqwcjeLzr5d+2uMkjtc= =T70Z -END PGP SIGNATURE- ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: DDoS in FreeBSD 6.2-STABLE And Problen With The Clock
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 ExTaZyTi wrote: > Next problem is the clock, have e 4 minuts different from the world time > for > my country. I try to fix this with a "ntpdate otel.net" for example .. > this > again return 4 minutes different. I try and the "date" command but it's NOT > WORK..You can see: > [...] > ..now example for "nptdate": > > [EMAIL PROTECTED] (~)]: ntpdate otel.net Try using -b switch: # ntpdate -b otel.net HTH, Karol - -- Karol Kwiatkowski OpenPGP 0x06E09309 -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.7 (FreeBSD) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGbl0ZezeoPAwGIYsRCEdWAJwMAQosHGupsVGApRe9MBP8W8H3hwCfWe3T kfA7L+jxaclQIK+MAVryiIQ= =1/PV -END PGP SIGNATURE- ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: DDoS in FreeBSD 6.2-STABLE And Problen With The Clock
* Mike Tancsa <[EMAIL PROTECTED]> [070611 13:58] wrote: > At 04:54 PM 6/11/2007, Chuck Swiger wrote: > this unfortunate event by reordering instructions if needed, but if > >you wrote your own assembly, you could in fact do a hardware DDoS if > >you weren't careful. :-) > > Hi, > I thought DDoS = _Distributed_ Denial of Service where > multiple attacking devices gang up to attack a host. Is your example > not just a plain old Denial of Service (DoS) ? Well it takes 3 execution pipelines... -- - Alfred Perlstein ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: DDoS in FreeBSD 6.2-STABLE And Problen With The Clock
On Monday 11 June 2007 18:05:59 Chuck Swiger wrote: > On Jun 11, 2007, at 1:57 PM, Mike Tancsa wrote: > > At 04:54 PM 6/11/2007, Chuck Swiger wrote: > > this unfortunate event by reordering instructions if needed, but if > > > >> you wrote your own assembly, you could in fact do a hardware DDoS if > >> you weren't careful. :-) > > > > Hi, > > I thought DDoS = _Distributed_ Denial of Service where > > multiple attacking devices gang up to attack a host. > > Yes, it is. > > > Is your example not just a plain old Denial of Service (DoS) ? > > Yes, as it stands. But if you ship this code to other machines, > perhaps it would then qualify as being _Distributed_? :-) / 2 clever switch but still wrong ... DDoS is ONE target and multi-source but not multi-target and local source :) -- João A mensagem foi scaneada pelo sistema de e-mail e pode ser considerada segura. Service fornecido pelo Datacenter Matik https://datacenter.matik.com.br ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: DDoS in FreeBSD 6.2-STABLE And Problen With The Clock
On Jun 11, 2007, at 1:57 PM, Mike Tancsa wrote: At 04:54 PM 6/11/2007, Chuck Swiger wrote: this unfortunate event by reordering instructions if needed, but if you wrote your own assembly, you could in fact do a hardware DDoS if you weren't careful. :-) Hi, I thought DDoS = _Distributed_ Denial of Service where multiple attacking devices gang up to attack a host. Yes, it is. Is your example not just a plain old Denial of Service (DoS) ? Yes, as it stands. But if you ship this code to other machines, perhaps it would then qualify as being _Distributed_? :-) / 2 -- -Chuck ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: DDoS in FreeBSD 6.2-STABLE And Problen With The Clock
Abdullah Ibn Hamad Al-Marri wrote: On 6/11/07, Kevin K. <[EMAIL PROTECTED]> wrote: > There are some problems, first DDoS (hardware DDoS) in the system. I'd like to know what you mean by "hardware DDoS" ~k It's very clear that English isn't his mother language, and he may means the DDoS he gets kills his box cpu ..etc. May be because Otel.net is in Bulgaria I have the feeling that his mother language is bulgarian .. and his age is 11? :) Shame that google now hide the IP of the sender :( Now, if you explain little more about your problem and forget for the hardware DDOS we can help ? :) ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: DDoS in FreeBSD 6.2-STABLE And Problen With The Clock
At 04:54 PM 6/11/2007, Chuck Swiger wrote: this unfortunate event by reordering instructions if needed, but if you wrote your own assembly, you could in fact do a hardware DDoS if you weren't careful. :-) Hi, I thought DDoS = _Distributed_ Denial of Service where multiple attacking devices gang up to attack a host. Is your example not just a plain old Denial of Service (DoS) ? ---Mike ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: DDoS in FreeBSD 6.2-STABLE And Problen With The Clock
On 6/11/07, Kevin K. <[EMAIL PROTECTED]> wrote: > There are some problems, first DDoS (hardware DDoS) in the system. I'd like to know what you mean by "hardware DDoS" ~k It's very clear that English isn't his mother language, and he may means the DDoS he gets kills his box cpu ..etc. -- Regards, -Abdullah Ibn Hamad Al-Marri Arab Portal http://www.WeArab.Net/ ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: DDoS in FreeBSD 6.2-STABLE And Problen With The Clock
On Jun 11, 2007, at 10:46 AM, Kevin K. wrote: There are some problems, first DDoS (hardware DDoS) in the system. I'd like to know what you mean by "hardware DDoS" I'm not sure what the OP meant, but I can provide examples of a hardware DDoS. Way back when, certain machines were equipped with a Motorola/TI 56001 DSP, which had three separate, parallel execution units, and was an early example of SIMD/VLIW design. It turns out that if you issued an instruction to all three pipelines [1] which loaded or saved to the same memory address, you would fry the DSP chip. The compiler used to generate the code for the 56K DSP chip would prevent this unfortunate event by reordering instructions if needed, but if you wrote your own assembly, you could in fact do a hardware DDoS if you weren't careful. :-) -- -Chuck [1] IIRC, it could deal with two pipelines hitting the same address, but not all three. ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: DDoS in FreeBSD 6.2-STABLE And Problen With The Clock
> There are some problems, first DDoS (hardware DDoS) in the system. I'd like to know what you mean by "hardware DDoS" ~k ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: DDoS in FreeBSD 6.2-STABLE And Problen With The Clock
ExTaZyTi wrote this message on Mon, Jun 11, 2007 at 18:30 +0300: > There are some problems, first DDoS (hardware DDoS) in the system. > I compile some program and when start it my system blocks and restart > (tested and on other system 6.2-stable and again this DDoS). Please email the FreeBSD security team w/ the program as per: http://www.freebsd.org/security/#how [...] > Next problem is the clock, have e 4 minuts different from the world time for > my country. I try to fix this with a "ntpdate otel.net" for example .. this > again return 4 minutes different. I try and the "date" command but it's NOT > WORK..You can see: This is because the timezone you are using is incorrect. FreeBSD stores the system time in UTC and then converts to the local timezone. If you use the correct timezone (you can set this by running tzsetup) this should not be a problem. -- John-Mark Gurney Voice: +1 415 225 5579 "All that I will do, has been done, All that I have, has not." ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: DDoS in FreeBSD 6.2-STABLE And Problen With The Clock
On 06/11/07 17:30, ExTaZyTi wrote: > There are some problems, first DDoS (hardware DDoS) in the system. 'hardware DDoS'... funny thing! ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "[EMAIL PROTECTED]"
DDoS in FreeBSD 6.2-STABLE And Problen With The Clock
There are some problems, first DDoS (hardware DDoS) in the system. I compile some program and when start it my system blocks and restart (tested and on other system 6.2-stable and again this DDoS). To prevent users from DDoS some systems i not going to upload this program in the web. The next DDoS (I don't know about his..) somebody (..any "h4x0r") send every day to me hardware DDoS attack .. then my system full block and drop my interner connection, when i try to RE-ENABLE my connection to the DHCP server it's says "connecting.." without any answer i think it's becouse my server is full blocked.. I have open this ports : 53(domain..standart..), 25(mail servers..), 80(apache), 110(mail servers..), 113(identd), 443(apache), (ircd), 6667(ircd), 7000(ircd), 9000(ircd) .. i can't find the DDoS.. please somebody to help me this "hardware" DDoS to my system. Next problem is the clock, have e 4 minuts different from the world time for my country. I try to fix this with a "ntpdate otel.net" for example .. this again return 4 minutes different. I try and the "date" command but it's NOT WORK..You can see: [EMAIL PROTECTED] (~)]: date 0706111826.40 date: can't reach time daemon, time set locally Mon Jun 11 18:26:40 EEST 2007 [EMAIL PROTECTED] (~)]: date Mon Jun 11 18:23:55 EEST 2007 [EMAIL PROTECTED] (~)]: ..now example for "nptdate": [EMAIL PROTECTED] (~)]: ntpdate otel.net 11 Jun 18:25:08 ntpdate[5157]: step time server 212.36.8.133 offset 218.607216 sec [EMAIL PROTECTED] (~)]: date Mon Jun 11 18:25:09 EEST 2007 but the "original" world time for my country is: 18:28:58... can somebody help me to fix this errors.. please! Thanks in advance. Best regards. ___ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "[EMAIL PROTECTED]"
