越是忙,裹乱的人就越多
昨天感觉身体不适,于是请假在家,到傍晚的时候才醒过来。
然后发现手机上有一条短信说,FreeBSDChina.org倒了。后来问了一下,说是有人DoS。
这事儿多少跟我有点关系,其实挺早以前的代码审计我就发现有很多DoS问题,但是,我一直觉得不会有人无聊到用DoS这种下三滥的手段去对付一个公益站点。
但是看来我错了,不仅有人分不清楚DoS和DDoS,而且流氓到把攻击程序发到论坛上。当然,毫无疑问地,还有另一些人会下载这些程序,然后运行。
翻译文档的时候没几个人吭声(也许没人知道,在我们—-一个人人小时候都被教育"人人为我,我为人人"的国度,一个进度比奉行万恶的资本主义的整天参拜靖国神社的国家的翻译进度快许多的项目,居然只有两三个人利用业余时间去完善文档),捐赠服务器的时候首先想到的是让我们在所有页面上挂广告(不要忘记,是阿鲁等人使用自己个人的资金、业余时间去维护和架设全部的镜像、网站,要说挂广告也得他们先说话吧?另外谁看到过FreeBSD网站所有页面写上Powered by Yahoo!了?),当有人偶然透露我所工作的公司的时候,马上有人说"这是FreeBSD的无奈"—-仿佛开源人士都应该失业在家一样;当主站出现问题的时候,几乎没有人想到如何去解决问题,而是不约而同地用激烈的言论去抨击政府;当FreeBSD.org.cn改版的时候,立刻有人猜测"是不是被黑了";当FreeBSDChina.org被DoS的时候,又有这么多人说风凉话,而当有人采取了一些临时措施时,马上开始有人分析:哟,他们居然用root去连接数据库……
我实在想不明白,为什么干点公益事业就这么难—-有安全问题,我当然需要立刻去解决,但是DoS,在年底大家都忙得不可开交的时候,最简单的办法就是封锁整个网段(ISP)。如果再发生,我决不客气。
[delphij@www] > whois __61.171.41.225__
OrgName: Asia Pacific Network Information Centre
OrgID: APNIC
Address: PO Box 2131
City: Milton
StateProv: QLD
PostalCode: 4064
Country: AU
ReferralServer: whois://whois.apnic.net
NetRange: 61.0.0.0 - 61.255.255.255
CIDR: 61.0.0.0/8
NetName: APNIC3
NetHandle: NET-61-0-0-0-1
Parent:
NetType: Allocated to APNIC
NameServer: NS1.APNIC.NET
NameServer: NS3.APNIC.NET
NameServer: NS4.APNIC.NET
NameServer: NS-SEC.RIPE.NET
NameServer: TINNIE.ARIN.NET
Comment: This IP address range is not registered in the ARIN database.
Comment: For details, refer to the APNIC Whois Database via
Comment: WHOIS.APNIC.NET or http://www.apnic.net/apnic-bin/whois2.pl
Comment: ** IMPORTANT NOTE: APNIC is the Regional Internet Registry
Comment: for the Asia Pacific region. APNIC does not operate networks
Comment: using this IP address range and is not able to investigate
Comment: spam or abuse reports relating to these addresses. For more
Comment: help, refer to http://www.apnic.net/info/faq/abuse
Comment:
RegDate: 1997-04-25
Updated: 2005-05-20
OrgTechHandle: AWC12-ARIN
OrgTechName: APNIC Whois Contact
OrgTechPhone: +61 7 3858 3100
OrgTechEmail: search-apnic-not-arin@apnic.net
# ARIN WHOIS database, last updated 2006-01-24 19:10
# Enter ? for additional hints on searching ARIN's WHOIS database.
% [whois.apnic.net node-2]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: __61.169.0.0 - 61.171.255.255__
netname: CHINANET-SH
descr: CHINANET Shanghai province network
descr: Data Communication Division
descr: China Telecom
country: CN
admin-c: CH93-AP
tech-c: XI5-AP
mnt-by: MAINT-CHINANET
mnt-lower: MAINT-CHINANET-SH
status: ASSIGNED NON-PORTABLE
changed: hostmaster@ns.chinanet.cn.net 20001201
changed: hm-changed@apnic.net 20040927
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: lqing@chinatelecom.com.cn 20051212
mnt-by: MAINT-CHINANET
source: APNIC
person: Wu Xiao Li
address: Room 805,61 North Si Chuan Road,Shanghai,200085,PRC
country: CN
phone: +86-21-63630562
fax-no: +86-21-63630566
e-mail: ip-admin@mail.online.sh.cn
nic-hdl: XI5-AP
mnt-by: MAINT-CHINANET-SH
changed: ip-admin@mail.online.sh.cn 20010510
source: APNIC