#networking

We're coming through what is seeming like a tipping point in the history of DDoS on the Internet. Rather than targeting a company or online gaming, one of the largest DDoS attacks ever targeted an individual, Brian Krebs, most likely for his work exposing a so-called "booter service", a DDoS-for-hire outfit called vDOS, which ultimately led to the alleged proprietors being arrested…

I'll be writing a bit more about DDoS attacks and security, and so I thought it would be handy to jot down some commonly used terms in one place. I'll also look at how some of those terms are interrelated…

Recently, we're seeing an uptick in GRE traffic as part of a DDoS mix. Most prominently, GRE featured as the biggest volume contributor in the record 600+ Gbps attack on krebsonsecurity.com. (Note that the site is currently offline as it's finding a new home, so any links to krebsonsecurity.com will reference The Internet Archive instead.)…

So, I'm bringing a little Chromebox back into use on our home network to do some basic network services: dhcp, dns, and probably actually using it as a router (long story; tl;dr TekSavvy says they'll give you a /56 but then the VDSL modem they sell you can't do DHCPv6-PD properly). Anyway... I slapped Ubuntu 16.04 Xenial server on it and started plugging away at a couple of things. I opted to use ISC's newer Kea DHCP server rather than isc-dhcp-server. Little did I know that Ubuntu and systemd had other ideas…