Login

masternerdguy · 11-14-2009, 02:17 AM,

Ok. Why are the servers down? a DDoS of course. But how did this attack start? Well, I think i figured it out.

I think that someone (possibly a mod developer, but not automatically so) has planted a small worm in the latest discovery download (4.85 release 2) that may have initiated this. Think about it. He/she would be able to infect every discovery client and possibly other computers.

How many people have downloaded/redownloaded discovery this week alone? What if its sending data to the server by those connections? Especially with the disco auto update feature.

This would not be the first time a developer has turned their own project into a malware. I believe in 2003 some major linux dev tried to sneak a personal backdoor into the OS code. Some iPods were shipped with computer viruses loaded on them.

It's just like the cannery worker getting irritated and sticking a fish eye in the tuna can!

This makes sense. Flame on. you guys must think im a total loony rite now but give it some thought.
But so I'm not just bitching and scheming i want to offer a defense against these types of attacks: We need an md5 checksum for the mod that you can download and check to see that the mod is valid.

Also, its possible to push a worm removal tool with the next release of discovery, to make sure clients are not affected.

Quote:Send the fat kid in to see if its a trap

Sprolf · (This post was last modified: 11-14-2009, 02:25 AM by Sprolf.)

My paranoia told me this exactly four days ago.

Elsdragon · 11-14-2009, 02:27 AM,

My paranoia states that you are using this to plant your unwanted ideas, like permadeath, into the discovery code without our knowldge.

No longer a slave to the man!

masternerdguy · 11-14-2009, 02:30 AM,

' Wrote:My paranoia states that you are using this to plant your unwanted ideas, like permadeath, into the discovery code without our knowldge.

yeah and igiss said no so i said ok and moved on.
i pushed the idea for my small network of random JHs, and he said no so i moved on.

I actually have respect for this mod and if they say no i know it means no.

Quote:Send the fat kid in to see if its a trap

Elsdragon · 11-14-2009, 02:34 AM,

The devs would respect the mod, and they dont "Insert" Worms. '
Besides, my previous paranoia makes sense.
same as yours

No longer a slave to the man!

masternerdguy · 11-14-2009, 02:36 AM,

' Wrote:The devs would respect the mod, and they dont "Insert" Worms. '
Besides, my previous paranoia makes sense.
same as yours

it doesnt have to be a dev. It could be some script kiddie who got backdoor access to the server and got it in before they put it up for download. I think its worth investigating.

Quote:Send the fat kid in to see if its a trap

mwerte · (This post was last modified: 11-14-2009, 02:47 AM by mwerte.)

stupid idea dies now

Cannon · (This post was last modified: 11-14-2009, 03:29 AM by Cannon.)

Right. That would be me you are talking since I built the last release and uploaded it to the distribution sites. I think you should shut up. Your idea is both stupid and wrong.

If I wanted to kill the server I would just delete the player files, the server and the backups.

Proud member of "the most paranoid group of people in the community"

Old Avatar #2 | Old Avatar #3

Login
Username:
Password:	Lost Password?
	Remember me