Re: Chinese downloads overloading my website

Liste des GroupesRevenir à se design 
Sujet : Re: Chinese downloads overloading my website
De : blockedofcourse (at) *nospam* foo.invalid (Don Y)
Groupes : sci.electronics.design
Date : 15. Mar 2024, 22:05:45
Autres entêtes
Organisation : A noiseless patient Spider
Message-ID : <ut29n3$2epl6$2@dont-email.me>
References : 1 2 3 4 5 6 7 8 9 10 11 12 13 14
User-Agent : Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:102.0) Gecko/20100101 Thunderbird/102.2.2
On 3/15/2024 8:56 AM, Peter wrote:
   Don Y <blockedofcourse@foo.invalid> wrote:
 
Then, DON'T acknowledge the packet.  Pretend the network
cable is terminated in dead air.
 Can you actually do that, with a standard server? Normally every
TCP/IP packet is acked. This is deep in the system.
You have to rewrite your stack.  *You* have to handle raw
packets instead of letting services (or the "super server")
handle them for you.
[And, you can't have an active proxy upstream that blindly
intercepts them]
The server effectively does a passive open and waits for
packets ON *ANY* PORT.  You obviously have to hide ALL
ports as a potential client could poke ANY port, notice a
response, then assume you are *deliberately* hiding OTHER ports
that don't reply!  If you reply ANYWHERE, then the "adversary"
knows that you aren't just a "dangling wire"!
Think of an old-fashioned RdTd serial port (no handshaking lines
that you can examine as "active").  You can listen to incoming
character stream without ever responding to it -- even allowing
your driver to lose characters to overrun/parity/framing/etc. errors.
Only when you see something that you recognize do you "react".
[This is the easy way to hide an "internal" 3-pin serial port
(that you likely have for diagnostics in a product) from folks
who like looking for shells, etc. on such things!]
Of course, if something (adversary or sniffer) sees that reaction,
then the secret is out.  So, you don't want to abuse this access
mechanism.
It's like tunneling under some existing protocol; it works
only as long as folks don't *notice* it!

UDP isn't, which is why port knocking works so well.
Anything that can be routed can be used.  You can knock
on UDP/x, then UDP/y, then... before trying to open a
particular UDP/TCP connection.  The point is to just LOOK
at incoming packets and not blindly act on them -- even
if that action is to block the connection.

Date Sujet#  Auteur
7 Mar 24 * Chinese downloads overloading my website58legg
7 Mar 24 +- Re: Chinese downloads overloading my website1John R Walliker
7 Mar 24 +- Re: Chinese downloads overloading my website1Don Y
8 Mar 24 +* Re: Chinese downloads overloading my website46legg
8 Mar 24 i`* Re: Chinese downloads overloading my website45Jan Panteltje
10 Mar 24 i `* Re: Chinese downloads overloading my website44legg
10 Mar 24 i  `* Re: Chinese downloads overloading my website43Jan Panteltje
10 Mar 24 i   +* Re: Chinese downloads overloading my website2liz@poppyrecords.invalid.invalid (Liz Tuddenham)
10 Mar 24 i   i`- Re: Chinese downloads overloading my website1Jeff Liebermann
10 Mar 24 i   `* Re: Chinese downloads overloading my website40legg
10 Mar 24 i    +- Re: Chinese downloads overloading my website1Don Y
11 Mar 24 i    `* Re: Chinese downloads overloading my website38Jan Panteltje
11 Mar 24 i     +* Re: Chinese downloads overloading my website10jim whitby
11 Mar 24 i     i+- Re: Chinese downloads overloading my website1Don Y
11 Mar 24 i     i`* Re: Chinese downloads overloading my website8Jan Panteltje
11 Mar 24 i     i `* Re: Chinese downloads overloading my website7legg
11 Mar 24 i     i  `* Re: Chinese downloads overloading my website6Don Y
11 Mar 24 i     i   `* Re: Chinese downloads overloading my website5legg
12 Mar 24 i     i    +- Re: Chinese downloads overloading my website1Don Y
12 Mar 24 i     i    `* Re: Chinese downloads overloading my website3Martin Brown
12 Mar 24 i     i     `* Re: Chinese downloads overloading my website2legg
12 Mar 24 i     i      `- Re: Chinese downloads overloading my website1Peter
11 Mar 24 i     `* Re: Chinese downloads overloading my website27legg
13 Mar 24 i      `* Re: Chinese downloads overloading my website26Don Y
13 Mar 24 i       `* Re: Chinese downloads overloading my website25legg
14 Mar 24 i        `* Re: Chinese downloads overloading my website24Don Y
14 Mar 24 i         `* Re: Chinese downloads overloading my website23Peter
15 Mar 24 i          `* Re: Chinese downloads overloading my website22Don Y
15 Mar 24 i           +* Re: Chinese downloads overloading my website9Liz Tuddenham
15 Mar 24 i           i+- Re: Chinese downloads overloading my website1Don Y
15 Mar 24 i           i+* Re: Chinese downloads overloading my website3Peter
15 Mar 24 i           ii`* Re: Chinese downloads overloading my website2Liz Tuddenham
15 Mar 24 i           ii `- Re: Chinese downloads overloading my website1Peter
15 Mar 24 i           i`* Re: Chinese downloads overloading my website4Don Y
15 Mar 24 i           i `* Re: Chinese downloads overloading my website3Liz Tuddenham
15 Mar 24 i           i  +- Re: Chinese downloads overloading my website1Don Y
15 Mar 24 i           i  `- Re: Chinese downloads overloading my website1Carlos E.R.
15 Mar 24 i           `* Re: Chinese downloads overloading my website12Peter
15 Mar 24 i            +* Re: Chinese downloads overloading my website10Carlos E.R.
15 Mar 24 i            i+* Re: Chinese downloads overloading my website5Don Y
15 Mar 24 i            ii`* Re: Chinese downloads overloading my website4Peter
15 Mar 24 i            ii `* Re: Chinese downloads overloading my website3Don Y
20 Mar 24 i            ii  `* Re: Chinese downloads overloading my website2Peter
20 Mar 24 i            ii   `- Re: Chinese downloads overloading my website1Don Y
15 Mar 24 i            i`* Re: Chinese downloads overloading my website4Peter
15 Mar 24 i            i +- Re: Chinese downloads overloading my website1Don Y
20 Mar 24 i            i `* Re: Chinese downloads overloading my website2Carlos E.R.
20 Mar 24 i            i  `- Re: Chinese downloads overloading my website1Don Y
15 Mar 24 i            `- Re: Chinese downloads overloading my website1Don Y
8 Mar 24 +* Re: Chinese downloads overloading my website2Martin Brown
8 Mar 24 i`- Re: Chinese downloads overloading my website1legg
11 Mar 24 `* Re: Chinese downloads overloading my website7legg
12 Mar 24  `* Re: Chinese downloads overloading my website6Peter
12 Mar 24   `* Re: Chinese downloads overloading my website5legg
14 Mar 24    `* Re: Chinese downloads overloading my website4bitrex
15 Mar 24     `* Re: Chinese downloads overloading my website3Don Y
15 Mar 24      `* Re: Chinese downloads overloading my website2bitrex
15 Mar 24       `- Re: Chinese downloads overloading my website1Don Y

Haut de la page

Les messages affichés proviennent d'usenet.

NewsPortal