People running DOS attacks sometimes don't know what they're doing, they could easily be DOSing someone else.
How do the people participating in a DOS attack know who the actual target is? I guess most of them don't have enough network knowledge to run a netstat (or equivalent)
Regardless of who the target is; participating in a DOS attack is against almost every ISP TOS/AUP.
demetrius_z said:
I normally say "Don't fight abuse with abuse".
People running DOS attacks sometimes don't know what they're doing, they could easily be DOSing someone else.
How do the people participating in a DOS attack know who the actual target is? I guess most of them don't have enough network knowledge to run a netstat (or equivalent)
Regardless of who the target is; participating in a DOS attack is against almost every ISP TOS/AUP.
what website you're attacking is listed in the program. if you want to attack something legitimate, i believe it allows you to put that in. but at default, the 419 Flash Mob program only has these sites on the list.
superstringboy said:
what website you're attacking is listed in the program. if you want to attack something legitimate, i believe it allows you to put that in. but at default, the 419 Flash Mob program only has these sites on the list.
In the source code? Or in a dialog box?
It's not traceable, and not technically illegal. so come on kids, lets take down some websites!
What do you mean by "Not technically illegal"? Not illegal where? This is the WWW, are you prepared to say it's not illegal for the whole entire world?
Artists Against 419 suggest that people in the UK call "Crimestoppers", which is a free call for the person calling paid for by Crimestoppers. Crimestoppers is a registered charity. Abusing the crimestoppers service makes crimestoppers less available to people at risk of crime in their local community and does *nothing at all* to stop 419 fraud or UBE.
It'd be nicer to give people a clue about ARIN/APNIC/RIPE lookups, and a DIG tutorial.
Pointing people to the 419 Coalition website, which has country specific information, would be more useful. People could act on every 419 email they receive, and not risk losing their account.
On the one hand, I've often considered participating in this sort of vigilante net justice. It seems natural, when you have everything you need to mete out justice, and the system is not getting it done (or even putting a dent in the problem), to want to take matters into your own hands.
On the other hand, though, the web being what it is, it would be very difficult to hit a target site, know you're hitting the right site, and not hit any others. Consider a case where someone exploits a security vulnerability to gain access to a server, places a web site there and sends out a ton of spam. Even assuming it's still there by the time the vigilantes get around to it (which is probably assuming a lot), they're basically going to be shutting down whatever other sites also happened to be being served from that box, and they very well may cause problems with other servers at the same facility. So then you've got potentially hundreds of sites that are shut down, and there's no guarantee that you're even hitting your target.
I think the main positive effect this is actually going to have is making those geeks feel good about themselves and helping them build a name in the industry, and very little else.
dem_z
United Kingdom
June 2004
FEB 11, 2005 12:03 PM