Telstra Cyber Attack Shows How Easy Australia Can Be Taken Offline

Leave a Reply

A cyber-attack against Telstra’s network that left tens of thousands of homes and businesses without internet is fair to say, a problem for all carriers and the Australian Government, because it shows how quickly Australia could be bought to a shuddering halt by Chinese or Russian hackers running denial of service attacks against Australian IT infrastructure.

Yesterday millions of Australian homes were left without broadband which in turn means no IP security cameras, no smart home technology and no content streaming or accessing the web.

The stark reality is that the next war will be as much a cyber war as it will be a war with bullets and missiles.

Foreign powers such as China will move to quickly knock out our carriers networks exactly as cyber attackers have done yesterday against Telstra, but if it’s war they will also knock out power grids providing them the power to control other essential services.

Globally cyber-attacks are being undertaken by foreign Governments such as China and Russia and violent anarchists who in the US have attempted to bring down Federal Government run operations with Cyber attacks such as the one Australia experienced.

Cyber-attacks such as the one that has bought down Telstra is a straight-out digital attack that hit servers using viruses and hacking attack tools.

In the case of Telstra, they chose to target DNS which stands for Domain Name System this is basically the phonebook of the Internet. Without going into detail you can search the basics of God DNS works via Wikipedia.

Back on point, hackers have bought Telstra and it’s NBN operation to a standstill and that resulted in millions of homes and businesses being cut off instantly.

Cyber criminals which Prime Minister Scott Morrison warned Australians about last month can easily disrupt the vital computer systems of a business or Government with the aim of creating damage, death, and destruction.

Future wars will see hackers using computer code to attack an enemy’s infrastructure, fighting alongside troops using conventional weapons like guns and missiles.

What todays hackers did was penetrate Telstra’s network which in reality should have had some form of protection in place to stop any attacks.

At the least they should have had an early warning detection system to alert of an inbound attack, IDS (Intrusion Detection Systems) don’t cost an arm and a leg.

Telstra’s home broadband including NBN services were affected by the outage and it was particularly hard for those Victorian’s who were told the next day that they were set to face stage 4 restrictions due to the COVID-19 epidemic gripping the State.

Why I ask, in the past six months I’ve been witness to multiple advertisements for cyber security related courses and degrees. Some of which are government funded? I ask why are so many companies such as Telstra not prepared for attacks of this nature.

It’s time to wake up Australia.

cPanel Servers Rant

33 Replies

Almost every day I’m fixing something on a cPanel server, no direct correlation towards the folks at cPanel themselves absolute terrific software, it’s the people that set out and say yes, I will buy this and use it for that, I will not read the manual, I will instead pay someone else to worry about it when “that” breaks.

First of all, the question should be asked: what do you hope to gain from this.

Renting a server running cPanel is simply not a “set and forget” type of handler; it does, much like almost anything else in this industry, have its complexities. Unless you are (or have) an experienced systems admin on hand to fine-tune it, stop it. Just stop.

The amount of work you create for people boggles the mind when something breaks, you whine and complain on forums, create support tickets clogging up helpdesks, submit bug requests bothering the authors with already documented issues.

If you don’t know what you’re doing, then stop doing it and learn first. Use a staging environment WELL away from anyone you could hurt and stop annoying the internet.

Restoration of an Old Testament

30 Replies

After trolling through some very old client backups, after noticing a bzipped file of unknown origin, or name for that matter. Low and behold it’s the very same blog I loved to bits years ago. I have decided to resurrect said blog and hopefully bring you guys some new refreshing, non biased and bullshit free content!

Bare with me whilst I attempt to bring all the posts back from this very corrupt and unstable database.

Big Props to Monk for the content, Mark for the nagging and the idea to begin with.

Amended for June 2020!

Criticisms of PBBans and other sites

43 Replies

I am writing this to complain about the entire system of anticheating. VAC etc all fall into this category. First and foremost, cheating is something that is given. People who cheat, cheat to piss others off. Plain and simple. If you can read memory and write to it, you can hack. There is no system of banning that will stop it. Banning players is a complete waste of time, because for $30, you can have a full undetected hack for about 2 months and another key. Now, sites like PBBans rely on the following:

A large group of clueless users who are more concerned with banning players than stopping cheats. I just looked at some ban lists, and they are screenshots of players with ESP running. I found it funny though because the people in the screenshots were saying ‘fuck you I hope you die’

To continue further. I am not advocating cheating. It’s a given. I used to write them, so I know a good bit about them.. One thing people don’t realize is that game developers don’t want to do anything about it to save money on buying worthless products like PB or the others. You simply need to do tricks like stop sending everyone positions to you that aren’t in your viewangles(), you can do this once per server frame, just before a prediction. This has the added benefit of saving the client tons of overhead as they don’t have to draw things you cannot see. This makes the server CPU have more overhead, but what’s a little more CPU into stopping wallhacks?

The people who run the ban sites criticize cheaters for not having any lives, but who really doesn’t have a life? A guy who buys a cheat or writes one that goes into a server for 30 minutes and all out rages, or a person who spends thousands of hours of time and money to create a site to ban groups of people from a game? What about when that one anticheat site was getting blasted by multi gigabit attacks for weeks on end because they thought it would be funny to humiliate a user? Doing that behaviour to people won’t even stop them because they will be back online in 15 minutes hacking the shit out of the game in revenge?

Shrug.

SRCDS Memory Usage

Leave a Reply

So you’ve got a server, and (over time?) it seems to consume a large amount of virtual memory?

blah 22011 3.9 6.5 1368616 165440 ? Rl 04:02 31:40 ./srcds_linux -game cstrike -console +ip 1.2.3.4 -port 27015 +tv_port 28020 +maxplayers 12 +map de_dust2 -autoupdate

See the ’1368616′ number? That’s your virtual memory aka mapped memory. That number is usually larger on glibc 2.3.2+ because of NPTL’s stack size, which is usually this (x86_64):

stack size (kbytes, -s) 8192

[gary@dallas ~]$ ulimit -s
8192

That is just way too large for gameservers. AIX and Solaris use 96 and 64, respectively, and 8192 is just way too large.

[gary@dallas ~]$ ulimit -s 512
blah 31008 6.7 0.5 126440 21528 pts/4 Sl+ 17:20 01:40 ./srcds_linux -game cstrike -console +ip 1.2.3.4 -port 27015 +tv_port 28020 +maxplayers 12 +map de_dust2 -autoupdate

Much better:

Old:
mapped: 368616K writeable/private: 326688K shared: 0K
New:
mapped: 168044K writeable/private: 130164K shared: 0K

WTF

Leave a Reply

Does anyone think running realtime kernels for gameservers is a complete waste of time?

Realtime kernels on x86 is slow, because of interrupt latency 🙁

Updated Services

Leave a Reply

I’ve expanded my services

Support for the following OS’s
– CentOS
– Fedora
– Gentoo
– FreeBSD
– NetBSD

Features for Linux
– Optimized kernel package with different headers
– Optimized i686 glibc packages for x86_64 that are faster and lower CPU usage on large servers. I have personally used these in production and they are much faster. As soon as I have enough time, I’ll post some benchmarks (I/O etc)
– PaX / SSP / Security Packages available (BETA)
– uboost plugin that optimized gameservers:
– SSE2 memory copies
– Userland timecounter support. Avoids overhead calling time over and over and caches last timestamp if it hasn’t changed and uses that value.
– Free updates, access to beta test code, and newer kernels. Unlimited support.
Features for FreeBSD + Linux emulation

– Custom rewritten timecounter code that gives very excellent tickrate / FPS behavior
– SSE2 based bcopy/bzero support
– A bunch of other things 🙂

Pricing for all services:

$99 USD one time fee. Refunds are NOT available, but I’ve never had a request for a refund.

Pricing for services

Leave a Reply

Here’s my consulting pricing; all in USD.

– Total machine optimization, including userland tools (optimized glibc), custom kernel additions for super low latency (written by me): $150 per machine (one time fee, unlimited support)
– Kernel only based optimization: $99
– A generic wrapper library to alter the frame time for games by reducing the cycles for each tick: $50 (It has a neat thing to allow you to pick which timesource on the system to use) 🙂

Other things include MySQL tuning, apache tuning, etc etc.. I also offer security audits.

The glibc/kernel stuff is for people who require maximum speed without the ability to debug coredump files. My kernel additions are heavy modifications to how the kernel services time for x86 based binaries, I memory map the results and have userland use the memory mapped section of memory of the last clock tick from hardware. It gives the BEST behaviour under load. My stuff doesn’t require those ridiculous idler programs that reduce scheduler latency, everything I have is custom.

The source code to my wrapper library, userland tools and kernel mods are not being released with my products, due to the fact people will copy my ideas and resell them to their friends without having a clue to what they do.

My modifications also have other benefits with other games, like COD etc.

The best OS for hosting games?

Leave a Reply

Is FreeBSD, or even newer versions of NetBSD. FreeBSD will busy wait on sleeping, so you get more accurate timing. Linux is okay, but I don’t really like using it for game server hosting due to each kernel having newer bu… err features than previous ones.

The problem with any of the linux binaries is they consume large amounts of CPU compared to their windows counterparts, plus they aren’t as optimized. Alfred from VALVe spoke with me and said they won’t move to a newer GCC because it breaks so many mods.