It looks like you're using an Ad Blocker.
Please white-list or disable AboveTopSecret.com in your ad-blocking tool.
Thank you.
Some features of ATS will be disabled while you continue to use an ad-blocker.
1.-----------------------------------------------------------------------
2.01001111 01110000 01100101 01110010 01100001 01110100 01101001 01101111
3.01101110 01000111 01101100 01101111 01100010 01100001 01101100
4.01000010 01101100 01100001 01100011 01101011 01101111 01110101 01110100
5.-----------------------------------------------------------------------
6. ___ _ _ ___ _ _ _
7. / _ \ _ __ ___ _ _ __ _| |_(_)___ _ _ / __| |___| |__ __ _| |
8.| (_) | '_ \/ -_) '_/ _` | _| / _ \ ' \ | (_ | / _ \ '_ \/ _` | |
9. \___/| .__/\___|_| \__,_|\__|_\___/_||_| \___|_\___/_.__/\__,_|_|
10. |_|
11. ___ _ _ _
12.| _ ) |__ _ __| |_____ _ _| |_
13.| _ \ / _` / _| / / _ \ || | _|
14.|___/_\__,_\__|_\_\___/\_,_|\__|
15.
16.-----------------------------------------------------------------------
17.01001111 01110000 01100101 01110010 01100001 01110100 01101001 01101111
18.01101110 01000111 01101100 01101111 01100010 01100001 01101100
19.01000010 01101100 01100001 01100011 01101011 01101111 01110101 01110100
20.-----------------------------------------------------------------------
21. "The greatest enemy of freedom is a happy slave."
22.
23.To protest SOPA, Wallstreet, our irresponsible leaders and the beloved
24.bankers who are starving the world for their own selfish needs out of
25.sheer sadistic fun, On March 31, the Internet will go Black.
26.
27.In order to shut the Internet down, one thing is to be done. Down the
28.13 root DNS servers of the Internet. Those servers are as follow:
29.
30.A 198.41.0.4
31.B 192.228.79.201
32.C 192.33.4.12
33.D 128.8.10.90
34.E 192.203.230.10
35.F 192.5.5.241
36.G 192.112.36.4
37.H 128.63.2.53
38.I 192.36.148.17
39.J 192.58.128.30
40.K 193.0.14.129
41.L 199.7.83.42
42.M 202.12.27.33
43.
44.By cutting these off the Internet, nobody will be able to perform a
45.domain name lookup, thus, disabling the HTTP Internet, which is,
46.after all, the most widely used function of the Web. Anybody entering
47."http://www.google.com" or ANY other url, will get an error page,
48.thus, they will think the Internet is down, which is, close enough.
49.Remember, this is a protest, we are not trying to 'kill' the Internet,
50.we are only temporarily shutting it down where it hurts the most.
51.
52.While some ISPs uses DNS caching, most are configured to use a low
53.expire time for the cache, thus not being a valid failover solution
54.in the case the root servers are down. It is mostly used for speed,
55.not redundancy.
56.
57.I have compiled a Reflective DNS Amplification DDoS tool to be used for
58.this attack. It is based on AntiSec's DHN, contains a few bugfix, a
59.different dns list/target support and is a bit stripped down for speed.
60.
61.The principle is simple; a flaw that uses forged UDP packets is to be
62.used to trigger a rush of DNS queries all redirected and reflected to
63.those 13 IPs. The flaw is as follow; since the UDP protocol allows it,
64.we can change the source IP of the sender to our target, thus spoofing
65.the source of the DNS query.
66.
67.The DNS server will then respond to that query by sending the answer to
68.the spoofed IP. Since the answer is always bigger than the query, the
69.DNS answers will then flood the target ip. It is called an amplified
70.because we can use small packets to generate large traffic. It is called
71.reflective because we will not send the queries to the root name servers,
72.instead, we will use a list of known vulnerable DNS servers which will
73.attack the root servers for us.
74.
75.DDoS request ---> [Vulnerable DNS Server ] Normal answer Normal Client request
76. \
77. | ( Spoofed UDP requests
78. | will redirect the answers
79. | to the root name server )
80. |
81. [ 13 root servers ] * BAM
82.
83.Since the attack will be using static IP addresses, it will not rely
84.on name server resolution, thus enabling us to keep the attack up even
85.while the Internet is down. The very fact that nobody will be able to
86.make new requests to use the Internet will slow down those who will try
87.to stop the attack.
88.
89. "He who sacrifices freedom for security deserves neither."
90. Benjamin Franklin
91.
92.We know you wont' listen. We know you won't change. We know it's because
93.you don't want to. We know it's because you like it how it is. You bullied
94.us into your delusion. We have seen you brutalize harmless old womans who were
95.protesting for peace. We do not forget because we know you will only use that
96.to start again. We know your true face. We know you will never stop. Neither
97.are we. We know.
98.
99.We are Anonymous.
100.We are Legion.
101.We do not Forgive.
102.We do not Forget.
103.You know who you are, Expect us.
Originally posted by koder
reply to post by Swills
But you can my friend....you can...
Originally posted by Swills
reply to post by LightSpeedDriver
And how many DNS servers are there to be knocked out? Exactly.
Originally posted by LightSpeedDriver
Originally posted by Swills
reply to post by LightSpeedDriver
And how many DNS servers are there to be knocked out? Exactly.
13 Root servers, which google could also have told you.edit on 14/3/12 by LightSpeedDriver because: Correction
There are not 13 root servers. What there are is there are many hundreds of root servers at over 130 physical locations in many different countries. There are twelve organizations responsible for the overall coordination of the management of these servers.
I still meet people that think the following is true:
There are 13 root servers in the world
The A-root is the main DNS server
Almost all root servers are located in the USA
All of those statements, and similar, are just completely wrong. You can find more information about the organisations that run the root servers here, and find a map I have done at Google here.
Updated: Got information about a server existing on Fiji, and found on the homepage of Autonomica [I] that servers also existed in Kathmandu and Luleå. If you know more servers missing, just let me know (for example via a comment to this blog).
By cutting these off the Internet, nobody will be able to perform a
45.domain name lookup, thus, disabling the HTTP Internet, which is,
46.after all, the most widely used function of the Web.