Trek234 Posted August 11, 2003 Share Posted August 11, 2003 This is a warning to all Neowin viewers. I noticed earlier today that something was not quite right on my network. Somehow a port had gone open on my router. This was interesting considering *all* ports are set (or so they SHOULD be) to closed/stealth. I check the log - guess what I see? Aug/10/2003 23:34:13 SYN Flood Attack Detect Packet Dropped Aug/10/2003 23:34:11 SYN Flood Attack Detect Packet Dropped Aug/10/2003 23:34:10 SYN Flood Attack Detect Packet Dropped Aug/10/2003 23:34:09 SYN Flood Attack Detect Packet Dropped Aug/10/2003 23:34:08 SYN Flood Attack Detect Packet Dropped Aug/10/2003 23:34:07 SYN Flood Attack Detect Packet Dropped Aug/10/2003 23:34:06 SYN Flood Attack Detect Packet Dropped Aug/10/2003 23:34:05 SYN Flood Attack Detect Packet Dropped Aug/10/2003 23:34:04 SYN Flood Attack Detect Packet Dropped I was participating on the Neowin down forums earlier before Neowin came back online. Obviously someone didn't like that. Fortunately the DOS attack doesn't effect me, but the open port DOES concern me. I would recommend ANYONE partcipating on the Neowin down forums (or who may have upset certain people) to check your network security. I may not be the only one under attack here. Link to comment Share on other sites More sharing options...
Roger H. Veteran Posted August 11, 2003 Veteran Share Posted August 11, 2003 mine is all find and dandy... thanx for the info tho.... Thread Moved to Internet, Network & Security Link to comment Share on other sites More sharing options...
Samoa Posted August 11, 2003 Share Posted August 11, 2003 Great I will rest easy now ShoTTa35. :p Link to comment Share on other sites More sharing options...
John Veteran Posted August 11, 2003 Veteran Share Posted August 11, 2003 from that log it looks like the packets are coming about 1 every second. i could be wrong, but i doubt this is a DOS attack, if it were the packets would be coming a lot faster than that. Link to comment Share on other sites More sharing options...
Keldyn Posted August 11, 2003 Share Posted August 11, 2003 Shields up Scotty!!! :p Link to comment Share on other sites More sharing options...
Mike Douglas Posted August 11, 2003 Share Posted August 11, 2003 join the club (Y) Link to comment Share on other sites More sharing options...
uniacidz Posted August 11, 2003 Share Posted August 11, 2003 Ahhhhh Kaptain, shuilds arerrrrrrr up to 100% I would be worried bout that port open, look in your system and locate whats opening it. Link to comment Share on other sites More sharing options...
B.B. Posted August 11, 2003 Share Posted August 11, 2003 whats the port number Link to comment Share on other sites More sharing options...
Krome Posted August 11, 2003 Share Posted August 11, 2003 I have been DoS'ed too... I wonder if it was because I am Neowin's member... hmmm :blink: :angry: Link to comment Share on other sites More sharing options...
mAcOdIn Veteran Posted August 11, 2003 Veteran Share Posted August 11, 2003 Are you guys sure you where being DOS'ed? Seriosely? I ask because it seems kinda lame for someone to try and DOS a person, and even then not even get enough zombies to keep you off the internet. My guess is that these are just dropped packets from a normal application you guys were running that had just been closed and these packets were just coming in. Hell my router says I get UDP flooded everytime I get on gamespy or play BF 1942. Link to comment Share on other sites More sharing options...
S.MULLA Posted August 11, 2003 Share Posted August 11, 2003 i seem to be ok..few.... :~ Link to comment Share on other sites More sharing options...
MxxCon Posted August 30, 2003 Share Posted August 30, 2003 YES!!! ALL NEOWIN MEMBERS ARE GETTING DDOSED!!!! EVERYBODY MUST READ http://www.dslreports.com/shownews/28464 IF YOU WANT TO BE SAFE FROM HACKERS!!! now if you don't realize my sarcasm let me tell you that nobody is "dosing" you. nobody gives rats ass about you. and how clueless can you be to think that somebody would flood you just for being a member of some website. and then how the hell do you image somebody will connect your messageboard nickname to a single ip out of 4,228,250,625 possible choices?! i strongly suggest you go read up what DOS means and SYN connection is. Link to comment Share on other sites More sharing options...
Steven Posted August 30, 2003 Share Posted August 30, 2003 YES!!! ALL NEOWIN MEMBERS ARE GETTING DDOSED!!!!EVERYBODY MUST READ http://www.dslreports.com/shownews/28464 IF YOU WANT TO BE SAFE FROM HACKERS!!! now if you don't realize my sarcasm let me tell you that nobody is "dosing" you. nobody gives rats ass about you. and how clueless can you be to think that somebody would flood you just for being a member of some website. and then how the hell do you image somebody will connect your messageboard nickname to a single ip out of 4,228,250,625 possible choices?! i strongly suggest you go read up what DOS means and SYN connection is. MxxCon.. :laugh: Link to comment Share on other sites More sharing options...
mm3h Posted August 30, 2003 Share Posted August 30, 2003 i have have loadsa port scan attacks on my firewall Link to comment Share on other sites More sharing options...
Guest Quick Reply Posted August 30, 2003 Share Posted August 30, 2003 mxxcon, did you come back to neowin just for the reason of flaming posts from august 11 or something? that's so lame Link to comment Share on other sites More sharing options...
+BudMan MVC Posted August 30, 2003 MVC Share Posted August 30, 2003 i have have loadsa port scan attacks on my firewall They are NOT attacks - port hit yes, someone's infected machine looking to random IPs to also infect yes. Scriptkiddie looking for infected machines he can add to his bot army? maybe Just because you see a port hit - does NOT mean your under attack. Exactly which port(s) were you "attacked" on?? Are you seeing THOUSANDS of hits a second/minute?? If not - then its NOTHING to worry about!! And it sure ain't no attack! Link to comment Share on other sites More sharing options...
mlerner Posted August 30, 2003 Share Posted August 30, 2003 If I get DDoSed no worries i'll lease a new ip from my ISP. Link to comment Share on other sites More sharing options...
MxxCon Posted August 31, 2003 Share Posted August 31, 2003 mxxcon, did you come back to neowin just for the reason of flaming posts from august 11 or something? that's so lame wtf are you talking about? just becuase site was down for a while doesn't mean your not allowed to continue those topic. Link to comment Share on other sites More sharing options...
Guest Quick Reply Posted August 31, 2003 Share Posted August 31, 2003 bah!! whatever makes you happy :spell: Link to comment Share on other sites More sharing options...
Mark Otto Posted August 31, 2003 Share Posted August 31, 2003 Quick Reply: I don't like you. *sigh* I just wanted to get that outta my system. Link to comment Share on other sites More sharing options...
AgEnTsMiTh Posted August 31, 2003 Share Posted August 31, 2003 YES!!! ALL NEOWIN MEMBERS ARE GETTING DDOSED!!!!EVERYBODY MUST READ http://www.dslreports.com/shownews/28464 IF YOU WANT TO BE SAFE FROM HACKERS!!! now if you don't realize my sarcasm let me tell you that nobody is "dosing" you. nobody gives rats ass about you. and how clueless can you be to think that somebody would flood you just for being a member of some website. and then how the hell do you image somebody will connect your messageboard nickname to a single ip out of 4,228,250,625 possible choices?! i strongly suggest you go read up what DOS means and SYN connection is. Not everyone understands the workings of these type of attacks, if you have something to add, why not just point out that the guy is misunderstanding, be helpfull, not a complete ass and waste our time having to see your blantant disregard of respect, what did this guy do, spit on your mother? Just correct him for gods sake without the bull **** attacks. Link to comment Share on other sites More sharing options...
FatCat Posted August 31, 2003 Share Posted August 31, 2003 jesus christ fix your avatars you lazy neowin members :p Link to comment Share on other sites More sharing options...
John Veteran Posted August 31, 2003 Veteran Share Posted August 31, 2003 :laugh: @ fatcat mxxcon, welcome back. Link to comment Share on other sites More sharing options...
Miyagi Son Posted September 1, 2003 Share Posted September 1, 2003 That does not look like a ddos. Just a flood if anything... Link to comment Share on other sites More sharing options...
=NickJ= Posted September 1, 2003 Share Posted September 1, 2003 YES!!! ALL NEOWIN MEMBERS ARE GETTING DDOSED!!!!EVERYBODY MUST READ http://www.dslreports.com/shownews/28464 IF YOU WANT TO BE SAFE FROM HACKERS!!! now if you don't realize my sarcasm let me tell you that nobody is "dosing" you. nobody gives rats ass about you. and how clueless can you be to think that somebody would flood you just for being a member of some website. and then how the hell do you image somebody will connect your messageboard nickname to a single ip out of 4,228,250,625 possible choices?! i strongly suggest you go read up what DOS means and SYN connection is. lmfao :D Link to comment Share on other sites More sharing options...
Recommended Posts