LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices



Reply
 
Search this Thread
Old 10-24-2009, 07:08 PM   #31
Ulysses_
Member
 
Registered: Jul 2009
Posts: 650

Original Poster
Rep: Reputation: 42

Quote:
I have never seen a setup that changes the DNS for JUST the browser. If you have such a addon please post a link to it.
If a firefox addon can do the equivalent of a ping to site.com, it can get the associated ip, which it can place in the address bar and load up the content. EDIT: I forgot, that's not what we want. But what can an addon do anyway, can't it open a tcp/ip connection and mimic the format of a dns request to myDnsServer.com?

Quote:
Originally Posted by lazlow View Post
What does people not changing their DNS server (due mostly to laziness) have to do with mainstream media?
Haha I knew you were not ready for it. Here's some clues. The Mexican government is suing Baxter, because almost all who died of "swine flu" had taken the swine flu vaccine, and such is the news that matters. Such news is being suppressed by the controlled media, and will eventually also disappear from internet search engines, even from the web by flagging such sites as terrorist. But such news will never disappear from p2p networks. Eventually p2p networks will be the only place for free news exchange and a free press. For people that are not completely hypnotized by the mainstream media, pressing a button in an addon to switch between normal web and p2p web is easy. I believe they don't need to edit their linux configuration files or install software to mess with them.

Quote:
If you are referring to bandwidth costs, you get charged for all traffic not just the traffic that you accept. Which is one of the reasons metered billing for residential lines is such a bad idea. If you mean machine resources (cpu cycles etc), sure rejecting all traffic except on port (whatever) means that (after refusing that connection) no further machine resources are used on that connection(you still eat the bandwidth).
I was thinking just in comparison to a regular p2p server. A regular p2p tracker has much more work to do than the dns server which only needs 1. dns lookups for visitors and 2. dns updates from participants powering up their web servers. What is cheaper then in terms of bandwidth required?

Last edited by Ulysses_; 10-24-2009 at 07:23 PM.
 
Old 10-24-2009, 07:26 PM   #32
lazlow
Senior Member
 
Registered: Jan 2006
Posts: 4,362

Rep: Reputation: 172Reputation: 172
There are lots of underground news(as in newspaper like) servers around. Probably the easiest is also one of the oldest, usenet. People can connect anonymously to read and post, SSL connections are allowed on many servers. Just google usenet. Underground news still has nothing to do with people being lazy.
 
Old 10-24-2009, 07:28 PM   #33
Ulysses_
Member
 
Registered: Jul 2009
Posts: 650

Original Poster
Rep: Reputation: 42
Quote:
Originally Posted by lazlow View Post
Underground news still has nothing to do with people being lazy.
But people being lazy has nothing to do with pressing a button in the toolbar.
 
Old 10-24-2009, 07:32 PM   #34
Ulysses_
Member
 
Registered: Jul 2009
Posts: 650

Original Poster
Rep: Reputation: 42
"dig", that's what the addon needs to be able to do when enabled.
 
Old 10-24-2009, 07:32 PM   #35
lazlow
Senior Member
 
Registered: Jan 2006
Posts: 4,362

Rep: Reputation: 172Reputation: 172
I really doubt you are going to be able to easily change DNS servers with a toolbar button. If nothing else changing the DNS requires root privileges on most systems and mixing root privileges with browsing is a bad idea.
 
Old 10-24-2009, 07:34 PM   #36
lazlow
Senior Member
 
Registered: Jan 2006
Posts: 4,362

Rep: Reputation: 172Reputation: 172
Dig just looks up the information it does not change the DNS.
 
Old 10-24-2009, 07:36 PM   #37
Ulysses_
Member
 
Registered: Jul 2009
Posts: 650

Original Poster
Rep: Reputation: 42
Quote:
Originally Posted by lazlow View Post
Dig just looks up the information it does not change the DNS.
We get from myDnsServer.com the information that site.com is currently associated with 195.3.2.1, and open http://195.3.2.1/ That's what the system would normally do with its own dns server instead of myDnsServer.com. No need to change the system settings.

Last edited by Ulysses_; 10-24-2009 at 07:43 PM.
 
Old 10-24-2009, 07:44 PM   #38
lazlow
Senior Member
 
Registered: Jan 2006
Posts: 4,362

Rep: Reputation: 172Reputation: 172
And you have just made myDnsServer.com the target for the attack. Once they bring it down it(effectively) bring down your site.
 
Old 10-24-2009, 07:47 PM   #39
Ulysses_
Member
 
Registered: Jul 2009
Posts: 650

Original Poster
Rep: Reputation: 42
Quote:
Originally Posted by lazlow View Post
And you have just made myDnsServer.com the target for the attack.
Whether it's myDnsServer.com or someEdonkeyTracker.com, there still exists a target for the attack. What is cheaper in terms of required bandwidth I want to know.
 
Old 10-24-2009, 07:54 PM   #40
Ulysses_
Member
 
Registered: Jul 2009
Posts: 650

Original Poster
Rep: Reputation: 42
Actually if the dns server only allows one lookup per 10 seconds per visitor ip, a DoS attacker with just one computer can't bring the dns server down, or can they?
 
Old 10-24-2009, 08:00 PM   #41
lazlow
Senior Member
 
Registered: Jan 2006
Posts: 4,362

Rep: Reputation: 172Reputation: 172
In the end it will be the same price. More than likely if you register with myDNS as you have described (assuming you are attacked as you believe), myDNS will either kick you for changing the linked IP too many times in a month/day or they will kick you for making them a target for an attack.

If the goal is really to disseminate news type stories I would STRONGLY encourage you to use usenet. You choose which(of literally thousands) newserver you will post to (so they cannot prevent you from posting). The servers are all interconnected (privately), so attacking one newserver will not prevent your message from getting out. For the type of media you are hinting at (mostly text) your only costs will be your bandwidth used to upload the text (could easily be done from even a dialup account). The text will stay up on most newserver for literally years.
 
Old 10-24-2009, 08:02 PM   #42
lazlow
Senior Member
 
Registered: Jan 2006
Posts: 4,362

Rep: Reputation: 172Reputation: 172
Attackers will not be using just one machine they will be using thousands of machines. Second they do not need to actually have to have the server accept the connection to cause a issue, they just flood the incoming que with requests to connect which prevents anybody else from being able to connect.
 
Old 10-24-2009, 08:09 PM   #43
Ulysses_
Member
 
Registered: Jul 2009
Posts: 650

Original Poster
Rep: Reputation: 42
I used to use USENET back in the... mid 90's, it seems to do pretty much what I want. It suffered from spam and was abandoned by most people now that we have forums. It was too easy to spam. Maybe I'd have the same trouble with spam whatever I do, someone has to sort that out too.

By the way, DynDNS was for when we were talking about using normal dns servers, we're past that. Now I'm hoping to use myDnsServer.com, and compare it with an existing p2p tracker.
 
Old 10-24-2009, 08:14 PM   #44
lazlow
Senior Member
 
Registered: Jan 2006
Posts: 4,362

Rep: Reputation: 172Reputation: 172
And again, myDnsServer.com has just become the target. When it gets brought down the rest of your network goes with it.

While many groups did (and do) suffer from large amounts of spam, the moderated groups are kept pretty clean. Usenet is FAR from abandoned, there are MANY more posts made today than there were in the 90s, even after you discount the spam.
 
Old 10-24-2009, 08:24 PM   #45
Ulysses_
Member
 
Registered: Jul 2009
Posts: 650

Original Poster
Rep: Reputation: 42
And again, p2p trackers still exist even though they are so bad for Holywood interests. And the infinite loop goes on.

Why can't we just compare myDnsServer with an existing p2p entry server, what is cheaper in terms of bandwidth, no more is being asked at present.

Maybe baddies participating as web servers is a more serious problem. You take part in usenet at present?
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
LXer: Review: Linux Backups For Real People, Part 3 LXer Syndicated Linux News 0 11-15-2007 12:10 PM
LXer: Tutorial: Linux Backups For Real People, Part 2 LXer Syndicated Linux News 0 11-08-2007 12:30 PM
LXer: Tutorial: Linux Backups For Real People, Part 1 LXer Syndicated Linux News 0 11-01-2007 06:20 PM
Fun Poll for people like me at work. arioch General 10 12-17-2003 09:10 PM
How do many people get Esetroot to work under fluxbox? Rampage2884 Linux - Newbie 1 04-17-2002 07:49 AM


All times are GMT -5. The time now is 04:04 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration