Jump to content

AT&T Blocks 4Chan

rangercal

By rangercal
in SLaM

 Share

Recommended Posts

rangercal Grand Master

rangercal

Posted
Posted

For those who don't know, 4chan started LOL Cats, Rick Rolling and made Chocolate Rain Popular. They are also a group that started "Anonymous" and were behind in hacking Sarah Palin's email account.

 

 

http://stormen.wordpress.com/2009/07/27/att-blocks-4chan/

 

 

 

 

My take..... I don't agree with everything 4chan stands for, but this seems like a step towards net neutrality. Who is to say a site like Soxtalk will exist 20 years from now?

 

Nonetheless, this story should get VERY interesting. 4chan is the last site you want to mess with. *grabs popcorn*

Link to comment
Share on other sites
southsideirish71 Grand Master

southsideirish71

Posted
Posted
QUOTE (rangercal @ Jul 27, 2009 -> 09:49 AM)
For those who don't know, 4chan started LOL Cats, Rick Rolling and made Chocolate Rain Popular. They are also a group that started "Anonymous" and were behind in hacking Sarah Palin's email account.

 

 

http://stormen.wordpress.com/2009/07/27/att-blocks-4chan/

 

 

 

 

My take..... I don't agree with everything 4chan stands for, but this seems like a step towards net neutrality. Who is to say a site like Soxtalk will exist 20 years from now?

 

Nonetheless, this story should get VERY interesting. 4chan is the last site you want to mess with. *grabs popcorn*

 

f*** Net Neutrality. Any site that is either affiliated or responsible for hacking/malware/phishing/crap should be blocked. And 4Chan's pub makes them more scary than they really are. A Russian Botnet, or Chinese malware with a vm kicker is a hell of a lot more scary than some mopes dressing up and protesting who use a social engineering attack on another mope who ran for VP.

Link to comment
Share on other sites
southsideirish71 Grand Master

southsideirish71

Posted
Posted
QUOTE (Buehrle>Wood @ Jul 27, 2009 -> 12:11 PM)
AT&T HQs can be expecting a lot of pizza deliveries today.

 

I doubt it. They are going to be too busy at Blackhat in Vegas playing spot the fed, driving in the cannonball run, attack and defend and other associated "hacker" games. I will be at the same conference hopefully getting some more info on malware analysis.

 

 

 

 

Link to comment
Share on other sites
StrangeSox Grand Master

StrangeSox

Posted
Posted

It was a temporary response t a DoS problem.

http://www.att.com/gen/press-room?pid=4800...articleid=26970

 

Beginning Friday, an AT&T customer was impacted by a denial-of-service attack stemming from IP addresses connected to img.4chan.org. To prevent this attack from disrupting service for the impacted AT&T customer, and to prevent the attack from spreading to impact our other customers, AT&T temporarily blocked access to the IP addresses in question for our customers. This action was in no way related to the content at img.4chan.org; our focus was on protecting our customers from malicious traffic.

 

Overnight Sunday, after we determined the denial-of-service threat no longer existed, AT&T removed the block on the IP addresses in question. We will continue to monitor for denial-of-service activity and any malicious traffic to protect our customers.

Link to comment
Share on other sites
BobDylan Grand Master

BobDylan

Posted
Posted
QUOTE (southsideirish71 @ Jul 27, 2009 -> 09:05 AM)
f*** Net Neutrality. Any site that is either affiliated or responsible for hacking/malware/phishing/crap should be blocked. And 4Chan's pub makes them more scary than they really are. A Russian Botnet, or Chinese malware with a vm kicker is a hell of a lot more scary than some mopes dressing up and protesting who use a social engineering attack on another mope who ran for VP.

 

That's not really what 4chan is. It's just something that they happened to do. They don't claim to be scary in any regard, nor do they make it a habit to target companies or specific people. It's just a showing of what a large social site can do when they all group together. Reddit.com has pulled some tricks of the same ilk.

Link to comment
Share on other sites
southsideirish71 Grand Master

southsideirish71

Posted
Posted
QUOTE (BobDylan @ Jul 27, 2009 -> 09:31 PM)
That's not really what 4chan is. It's just something that they happened to do. They don't claim to be scary in any regard, nor do they make it a habit to target companies or specific people. It's just a showing of what a large social site can do when they all group together. Reddit.com has pulled some tricks of the same ilk.

 

If the site is launching a DoS attack, its beyond just a group getting together as a social site for a common cause. It doesn't matter that they target a specific company or people. When they fling packets into the dark abyss, everything on its path is affected. That affects other companies as well as other entities. Internet traffic for the most part, passes from ISP to ISP via peering agreements. So when they wind up and throw their packets to the wind at ISP B, they might traverse 3 ISP hops and affect the transit routers and other customers as well.

Link to comment
Share on other sites
BobDylan Grand Master

BobDylan

Posted
Posted (edited)
QUOTE (southsideirish71 @ Jul 27, 2009 -> 11:27 PM)
If the site is launching a DoS attack, its beyond just a group getting together as a social site for a common cause. It doesn't matter that they target a specific company or people. When they fling packets into the dark abyss, everything on its path is affected. That affects other companies as well as other entities. Internet traffic for the most part, passes from ISP to ISP via peering agreements. So when they wind up and throw their packets to the wind at ISP B, they might traverse 3 ISP hops and affect the transit routers and other customers as well.

 

I don't give a s*** what a DoS attack is. Blocking the site, which didn't do the DoS attack itself (as far as I know), doesn't solve the issue, does it? You just don't go around and punish people who have AT&T internet because a few people banded together and did something stupid. That's ridiculous. It's an ugly path they're walking down and I'd hate to see other companies follow them. Thankfully it appears that AT&T only temporarily blocked the site.

Edited by BobDylan
Link to comment
Share on other sites
southsideirish71 Grand Master

southsideirish71

Posted
Posted (edited)
QUOTE (BobDylan @ Jul 28, 2009 -> 05:07 AM)
I don't give a s*** what a DoS attack is. Blocking the site, which didn't do the DoS attack itself (as far as I know), doesn't solve the issue, does it? You just don't go around and punish people who have AT&T internet because a few people banded together and did something stupid. That's ridiculous. It's an ugly path they're walking down and I'd hate to see other companies follow them. Thankfully it appears that AT&T only temporarily blocked the site.

 

The attack was sourced from img.4chan.org, which is the same IP that houses www.4chan.org. This is why it got blocked. And I hate to break it to you, but this is normal operating procedure to deal with attacks on the internet, especially DoS attacks. Someone sends an abuse request to the ISP, they investigate, and then take the node offline if there is evidence of malicious behavior. If I started to attack one of my competitors, my ISP would probably take me offline temporarily, contact me as the abuse contact to investigate my site for evidence of compromise or to eliminate the threat. Once this happened, they would bring my connection back up online. Hell, when we got an IP address block from one of our ISPs, the previous owners of the block were on a blacklist and we couldnt get ourselves off of it. We had to change IP addresses so we could operate on the internet properly. And yes a single person, or a few banded together that does something stupid can affect you and your company and your website.

 

 

 

Their DNS records for 4chan

 

img.4chan.org. 0 IN A 208.69.36.130

www.4chan.org. 0 IN A 208.69.36.130

Edited by southsideirish71
Link to comment
Share on other sites
BobDylan Grand Master

BobDylan

Posted
Posted
QUOTE (southsideirish71 @ Jul 28, 2009 -> 09:45 AM)
The attack was sourced from img.4chan.org, which is the same IP that houses www.4chan.org. This is why it got blocked. And I hate to break it to you, but this is normal operating procedure to deal with attacks on the internet, especially DoS attacks. Someone sends an abuse request to the ISP, they investigate, and then take the node offline if there is evidence of malicious behavior. If I started to attack one of my competitors, my ISP would probably take me offline temporarily, contact me as the abuse contact to investigate my site for evidence of compromise or to eliminate the threat. Once this happened, they would bring my connection back up online. Hell, when we got an IP address block from one of our ISPs, the previous owners of the block were on a blacklist and we couldnt get ourselves off of it. We had to change IP addresses so we could operate on the internet properly. And yes a single person, or a few banded together that does something stupid can affect you and your company and your website.

 

 

 

Their DNS records for 4chan

 

img.4chan.org. 0 IN A 208.69.36.130

www.4chan.org. 0 IN A 208.69.36.130

 

You seem to be missing my point. Fair enough.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...