<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
<HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1">
<META NAME="Generator" CONTENT="MS Exchange Server version 6.5.7638.1">
<TITLE>RE: [AusNOG] Possible DDoS attack against .au governmental sites -~65minutes from now.</TITLE>
</HEAD>
<BODY>
<!-- Converted from text/plain format -->
<P><FONT SIZE=2>I know for a fact that there are Anonymous on this list though I doubt these would have any involvement in these attacks - I have seen postings from this list reposted on the 4chan messageboard.<BR>
<BR>
I would suggest you use relevant discretion when collaborating, should these attacks occur - there's a good chance you could receive backlash.<BR>
<BR>
We have been on the receiving end of an Anonymous initiated DDoS attack - these attacks are not something to sniff at - there are a significant number of malicious professionals with access to significant amounts of bandwidth who trawl these lists.<BR>
<BR>
Regards,<BR>
Curtis<BR>
<BR>
<BR>
-----Original Message-----<BR>
From: ausnog-bounces@lists.ausnog.net on behalf of Bevan Slattery<BR>
Sent: Wed 9/9/2009 5:57 PM<BR>
To: Roland Dobbins<BR>
Cc: ausnog@ausnog.net<BR>
Subject: Re: [AusNOG] Possible DDoS attack against .au governmental sites -~65minutes from now.<BR>
<BR>
Thanks for the heads up.<BR>
<BR>
Time to sit back and wait for the mrtg graphs tell the story :)<BR>
<BR>
[b]<BR>
<BR>
> -----Original Message-----<BR>
> From: ausnog-bounces@lists.ausnog.net<BR>
> [<A HREF="mailto:ausnog-bounces@lists.ausnog.net">mailto:ausnog-bounces@lists.ausnog.net</A>] On Behalf Of Roland Dobbins<BR>
> Sent: Wednesday, September 09, 2009 5:56 PM<BR>
> To: ausnog@ausnog.net<BR>
> Subject: [AusNOG] Possible DDoS attack against .au<BR>
> governmental sites - ~65minutes from now.<BR>
><BR>
><BR>
> There were some rumblings last week that a DDoS attack<BR>
> against .au governmental sites might take place today in<BR>
> order to protest the <BR>
> Internet filtering plans being posited by the present .au<BR>
> government. <BR>
> I didn't take it very seriously at the time, because no one<BR>
> seemed to have any specifics.<BR>
><BR>
> This has now changed; it's apparently Anonymous who're<BR>
> supposedly going to do this in about 70 minutes, and they've<BR>
> a considerable track record of mischief, sort of a '4chan<BR>
> Lite'. I've no idea whether the attacks will actually take<BR>
> place, but heightened vigilance is a good idea, especially as<BR>
> outbound DDoS from botted hosts can be just as disruptive to<BR>
> the networks in question as inbound DDoS.<BR>
><BR>
> SANS posted something on it here:<BR>
><BR>
> <<A HREF="http://isc.sans.org/diary.html?storyid=7108">http://isc.sans.org/diary.html?storyid=7108</A>><BR>
><BR>
> There's an extremely NSFW wiki page being used to coordinate the <BR>
> putative attacks, along with an IRC server/channel. I'm not<BR>
> going to <BR>
> link to them here, but some digging with various search<BR>
> engines can find them with relative ease.<BR>
><BR>
> Again, I've no idea whether or not this will actually happen,<BR>
> just a heads-up.<BR>
><BR>
> --------------------------------------------------------------<BR>
> ---------<BR>
> Roland Dobbins <rdobbins@arbor.net> // <<A HREF="http://www.arbornetworks.com">http://www.arbornetworks.com</A>><BR>
><BR>
> Sorry, sometimes I mistake your existential crises for<BR>
> technical insights.<BR>
><BR>
> -- xkcd #625<BR>
><BR>
> _______________________________________________<BR>
> AusNOG mailing list<BR>
> AusNOG@lists.ausnog.net<BR>
> <A HREF="http://lists.ausnog.net/mailman/listinfo/ausnog">http://lists.ausnog.net/mailman/listinfo/ausnog</A><BR>
><BR>
_______________________________________________<BR>
AusNOG mailing list<BR>
AusNOG@lists.ausnog.net<BR>
<A HREF="http://lists.ausnog.net/mailman/listinfo/ausnog">http://lists.ausnog.net/mailman/listinfo/ausnog</A><BR>
<BR>
</FONT>
</P>
</BODY>
</HTML>