• Anything ‘published’ on the web is viewed as intellectual property and, regardless of whether it displays a copyright symbol or not, is therefore copyrighted by the originator. The only exception to this is if there is a “free and unrestricted reuse” statement associated with the work.

    In order to protect our members and TFL from possible litigation, all members must abide by the following new rules:

    1. Copying and pasting entire articles from another site to TFL is strictly prohibited. The same applies to articles from print or other media, and to posting photographs taken of copyrighted pages or other media.

    2. Copyright law provides for “fair use” of portions of a copyrighted work. You can copy no more than a SINGLE paragraph from the article to your post (3 or 4 sentences at most).

    3. You must provide a link to the article along with the name of website. For example: ww.xxx.yyy/zzz (The Lower Thumbsuck Daily News).

    4. You must provide, in your own words, a brief summary of the article AND your reasons for believing it will be of interest to TFL members. Failure to do so may result in the thread being closed or your post being deleted as a “cut and paste drive by.”

    5. Photographs and other images are also copyrighted. "Hotlinking" of images (so that it appears in your message) from other sites is also prohibited unless you own rights to the image. If you wish to share an image, provide a clickable link to it.

    Posts that do not follow these new guidelines will be altered or deleted by staff. Members who continue to violate this policy may lose their posting privileges at TFL.

    Thank you for your cooperation and your participation in TFL, the leading online forum for firearms enthusiasts.

THR is down right now...again

Status
Not open for further replies.
I am another one who came over due to the outages. I see that another member has posted Derek's donation stations. For those who havent, please see that THR is in need of help. Even a few dollars will help.

I may be taking this a lil bit personal, but, I cut my teeth on THR.
Thanks
Mot
 
geojap said:
I'm not sure how they have their router at THR set up, but if it's a UNIX or Linux box, you just have to add some sanity rules and it will stop DOS attacks.
Click to expand...
If only it were that easy.
 
Originally Posted by geojap
I'm not sure how they have their router at THR set up, but if it's a UNIX or Linux box, you just have to add some sanity rules and it will stop DOS attacks.
Click to expand...

That doesn't work here.

1. The attack still takes up bandwidth, so either the THR router/firewall is overwhelmed or legitimate packets get dropped by the ISP because bandwidth is maxed out.

2. THR is still paying for all the bandwidth used by the attack. So shutting down the site is preferred.
 
I'm a long-time member of THR, but I just joined The Firing Line a few days ago since I can never get on THR anymore it seems...
Click to expand...

Me too (today). I thought I had joined before but my name was not registered.

This is nutz. I hope they get things fixed soon. Good to know whats going on at least.
 
I am totally amazed from what I've read here that there seems to be no recourse but take it.

Can't find those responsible and prosecute.
Can't stop the DOS attacks.
Can't filter the attacks reducing their impact.

One would think that with all the expertise in internet technology out there that some way of making DOS attacks no threat would have been devised by now.

If it's so easy and almost risk free why aren't the a'holes doing this attacking banks or big businesses that rely on the internet and collecting protection money?

The mafia ran the same scheme for years only face to face. This DOS thing seems to be almost risk free from what the local guys who seem to know what they're talking about say.

Why screw with THR?
 
guys, i'm not going to make it, the site has been down for what seems like days. TFL is good, but i need my high road. i've got nervous convulsions, cold sweats, the urge to go fondle my own guns, or to even surf the net looking for gunp0rn. i'm glad you guys are here to keep me from losing it.
 
Money?

I daresay there are several of us (and I would be one) who would be willing to make a dollar commitment monthly to see THR up and running reliably.

A few bucks from a hundred of us (or two) would, I'm sure go a long way.

Of course, there are hosts out there that charge 5-digit sums for the kind of reliability we'd really like.

It seems to me, however, that isolating the offending servers should not be that difficult. It doesn't matter that they're zombies, the provider at that level should be able to simply kill packets from those boxes before they ever get to the backbone. It might require blue envelope treatment, but the compromised boxes (if they're centralized) should be subject to summary isolation. If the zombies are spread out, then it's harder.
 
Oleg,

How about the host that TFL uses?

We haven't seen them drop off the map but maybe once (that I'm aware of.)

I've sent Derek some coin. I'm sure there are many more members that are willing to do the same. Just point us in a direction.
 
Arfin, if the attack's coming from the same place it was last time, the colo in question is notorious for not handling abuse issues.
 
One would think that with all the expertise in internet technology out there that some way of making DOS attacks no threat would have been devised by now.
Click to expand...

The problem is that the basic protocols upon which the Internet is built are flawed and very vulnerable to abuse. A little Internet history --

What we know now as the Internet began as a government research project back in the 1960's when the Advanced Research Projects Agency (ARPA) was given the task of developing a decentralized, packet switched computer network which could survive efforts at sabotage. Major universities were eventually invited to participate in developing the new network and eventually the universities took the lead as ARPA eventually moved on to other things. Most of the communications protocols that underly the Internet were developed in an academic setting with no real thought given to security or preventing rogue behavior. The original developers just saw the experimental network as an academic project that universities used to talk to each other. No one ever imagined that the 'net would ever become a commercial entity. Eventually, the rest of the world discovered the Internet and it became one of the biggest success stories in the history of modern technology. But, unfortunately, we're still hamstrung with the short sighted thinking of the early developers who failed to build proper security controls into the basic protocols. And changing those protocols at this point in the game to remedy some of those old problems is very, very difficult.

The reason that DOS attacks are so hard to stop is because it's very difficult to tell where the packets are coming from. The source addresses on IP packets can be easily forged (one of the weaknesses in the IP protocols) and when the packet arrives at your router, there's no way to tell where it came from if the source address is fake. If you try to filter the packets based on source address, the attacker just changes the source address in the packets and they go right past your filter rules.

There is no easy way to stop a determined DOS attack without spending BIG $$$.
 
Perhaps a blue envelope would wake them up.
Click to expand...

There's at least a couple of us who have suggested to Derek and Oleg that they contact the FBI to see if they'll help put an end to these attacks. The FBI does take internet attacks seriously. But since THR is a noncommercial site, I'm not sure if the FBI will be willing to help. But it can't hurt to ask.
 
But, but- I thought Al Gore invented the internet:rolleyes:
At least, that is who I blame for THR going down.

Seriously, this has got to stop. I can't live w/o my THR fix!

But, TFL will substitute for now...
 
we should all take a look at various left/rino forums

to see if some one is bragging about it.

I have encountered hackers before when starting up internet groups
to protest illegal immigration, I believe it was supporters of "southern poverty law center" that attacked me.
I had to shut down my groups because I am neither savvy enough and don't have the time.
 
The THR outages brought me here too. Well, I've been a lurker at TFL for years, but never signed up. 'Bout time I participate here anyway.
 
I really think THR was attacked as payback for all the left wing polls we swept after the VT tragedy. If you'll recall, we really made Second Amendment freedom ring in those polls. Remember where at least one liberal news agency made their anti-gun poll completely disappear after they didn't get the results they wanted? I firmly believe we ruined a lot of their polls, making them look like their lefty-leaning readers suddenly had an epiphany concerning Second Amendment Rights.

I believe a hacker was brought in by someone from one of those agencies for a little payback. Either with the approval of the front office or an angry individual bringing in a cyber-hitman.

I keep loosening my tin foil hat, but, I can't shake this feeling that this is the case. Maybe I need another layer of foil? :confused::o;)


Also, you all just signing up will really enjoy this forum.
These folks are every bit as "High Road" as the folks over at the home forum.:cool:
It's a great place to talk guns.
 
Last edited:
Not only to enjoy this board. This is what THR was modeled after originally.

I do not think this is a professional hit on THR. If it is still out of one DC in Chicago then it may only be an individual that has some support roll in that DC. After all they have not shut us down for 2 whole weeks solid. Someone hired for this nasty could use resources from all over the internet through different sets of compromised systems.
So far this has mostly been over weekends.
 
Status
Not open for further replies.
Back
Top