Baidu harsh launch DDoS attack 8848 last night, no login
[Reprinted Self-Singdi] · On 18:00 on January 21, 8848 found that the homepage was attacked; · On January 21st, 8848 technicians found that the IP address of the DDoS attack and initiated the attack, all from Baidu search alliance members · On January 21st, 8848 reported; · From January 22, 8848 came to the Beijing Public Security Bureau Network Supervision Office to conduct evidence, and hired two law firms to do fairness, and the forensics ended at around 16 o'clock. · As of 18:00 on January 22, the 8848 home (http://www.8848.com/) is still unable to access. [CCID News] January 22 Said.com editor learned that the 8848 website is attacked. From January 21st, it has been unable to access. The home page is always displayed as "the page cannot be displayed", in order to find things to come to the dragon, The editor of CCID came to the 8848 office building. Come to 8848, I found that there is a atmosphere of rest, the staff is busy, I know that 8848 is "black" by Baidu! Starting from 18:00 on January 21, the 8848 homepage cannot be accessed. After discovering two judgments, infecting viruses or attacks, after the exclusion is a virus, tens of millions from Baidu Search Alliance members The IP address accesses 8848 homepage in a short time, causing blockage, which is called "DDoS attack". In other words, it is a hundred thousands of users who are 8848 plugged in 8848, and they have not been able to do business. After analyzing the technical staff, it was found that Baidu passed the technical means, in the case of its alliance members, joined a piece of code on its server, and a hidden frame is embedded in the search bar (width = 0 height = 0 frameborder = 0 The size of the frame is set to 0, causing the user to access the search bar at the same time, 8848 homepage at the same time. "This process has been fully recorded in the Beijing Municipal Public Security Bureau Network Supervision Office." According to 8848, why Will you bite it by Baidu black? In addition to the above IP address as evidence, 8848 also proposed the following items: 1. In Baidu search alliance members, some people have discovered Baidu's practices, and proposed protests, Baidu On the post, I left an angry post. The strange thing is that these posts are deleted in a short time. The 8848 Program Manager Wei Wei regrets that I saw these posts did not make timely save, and I only reserved it. One of the posts, it is not difficult to see in the post, the members of the alliance are also in Baidu Mongoli, in other words, it is Baidu secretly dry, do not want to be discovered by others. 2, after the post, 8848 technicians then found that Baidu updated the attack code, more hidden, according to 8848: "From time to the method, it is not difficult to see Baidu's behavior is a long time." Yudi.com's January 22 news part extracted 8848 people claimed that in 2005 On January 1st, 8848 has launched an IE search plug-in My search. Since Baidu believes that this plug-in has damaged its business model and leading to its own users, the Baidu Alliance also issued a lawyer letter to 8848 companies. But Because the matter is difficult to operate in the legal operation, it can only be unable to. 8848 said that this is the reason why Baidu does not hesitate to attack 8848. Noun explanation: Distributed Denger Service Attack (DOS): DOS There are many kinds of attack methods. The most basic DOS attack is to use reasonable service requests to occupy too much service resources, so that legitimate users cannot obtain the response of services.
DDoS attack means is a class of attacks generated on the traditional DOS attack. Single DOS attack is generally adopted one-to-one, when the target CPU speed is low, the memory is small, or the network bandwidth is small, and the performance indicator is not high. With the development of computer and network technology, the computer's processing capacity increases rapidly, and the memory has increased, and there is also a gigabit network. This makes the difficulties of DOS attacks - the target for malicious attack packages "Strengthening a lot, for example, your attack software can send 3,000 attack packs per second, but my host and network bandwidth can handle 10,000 attack packs per second, so that the attack does not have any effect. At this time, the Hou Distributed Deny Service Attack Means (DDoS) will be delivered. You understand the DOS attack, it is very simple. If the processing capability of the computer and the network is increased by 10 times, with an attack machine to attack the attack, the attacker uses 10 attack machines to attack at the same time? Use 100 units? DDOS is to use more 傀儡 machines to initiate attacks to attack victims than larger scale. A high-speed extensive network has brought convenience, and also creates extremely favorable conditions for DDOS attacks. At the low-speed network era, when the hacker occupies the jumpsuit of the attack, it will always take into account the machine from the target network, as the number of hops of the router is small, the effect is good. Now the connection between the telecom backbone node is granular, and the big cities can reach 2.5G connection, which makes attacks from farther places or other cities, and the attacker's 傀儡 machine location In a bigger range, it is more flexible in distribution. Shantou: Of course, I don't believe Baidu will do this, this is no benefit to Baidu. However, in Baidu's search alliance website code, it does contain links to the 8848 home page. If it is not an internal individual, it is an external HACK. This is also very shameful for Baidu.
