Re: Death of the Internet, Film at 11

2016-10-23 Thread clinton mielke
A number of people are asking for advice on how to detect this bug. Here are some thoughts. Im a mathematician, and not a network operator, so would love feedback. The source code of Mirai is here, and Ive had some fun taking it apart over the last week: https://krebsonsecurity.com/2016/10/hacked-

Re: IoT security

2017-02-08 Thread clinton mielke
Having spent the last few months systematically scanning ~700k of these hosts, Im thinking the following could be considered: As an ISP, scan your customers netrange, and notify customers with known vulnerable devices. With regards to the current Mirai threat, theres only a handful of devices that

Re: IoT security

2017-02-08 Thread clinton mielke
Yup! All the mapping Ive done is over port 80. Id have a lot more than I currently have if I was looking at other ports, probably. On Wed, Feb 8, 2017 at 10:00 PM, wrote: > On Wed, 08 Feb 2017 21:04:07 -0800, clinton mielke said: > > > As an ISP, scan your customers netrange

Re: IoT security

2017-02-09 Thread clinton mielke
Feb 9, 2017 12:04 PM, wrote: > On Wed, 08 Feb 2017 22:19:01 -0800, clinton mielke said: > > > Yup! All the mapping Ive done is over port 80. Id have a lot more than I > > currently have if I was looking at other ports, probably. > > Wow. How does this work if more than one

Re: IoT security

2017-02-10 Thread clinton mielke
It's hilarious they reported on his honeypots :) Kinda surprised I haven't gotten similar letters. I've gotten infected so many times. Amazon certainly noticed my cloud honeypot instances. On Feb 10, 2017 5:48 AM, "Marco Slater" wrote: > > > As an ISP, scan your customers netrange, and notify c

Re: IoT security

2017-02-10 Thread clinton mielke
That being said, I think if other ISPs took virgins lead then we can start getting this population of devices reduced. The hard part is getting overseas ISPs to help with the problem. Most inbound infectious scanning traffic appears to come from China and Vietnam. I need to create some better aggr

Re: Russian diplomats lingering near fiber optic cables

2017-06-01 Thread clinton mielke
Sea levels rose pretty quickly On Thu, Jun 1, 2017 at 12:54 PM, Sean Donelan wrote: > On Thu, 1 Jun 2017, Rod Beck wrote: > >> As someone who has sold a lot of capacity on Hibernia Atlantic, I must >> concur. There is a website showing where most of the Trans-Atlantic cables >> land on the West