Facebook was not taken completely offline by the attack
A “massively co-ordinated” attack on websites including Google, Facebook and Twitter was directed at one individual, it has been confirmed.
Facebook told BBC News that the strike was aimed at a pro-Georgian blogger known as Cyxymu.
The attack caused a blackout of Twitter for around two hours, while Facebook said its service had been “degraded”.
Google said it had defended its sites and was now working with the other companies to investigate the attack.
“[The] attack appears to be directed at an individual who has a presence on a number of sites, rather than the sites themselves,” a Facebook spokesman told BBC News.
“Specifically, the person is an activist blogger and a botnet was directed to request his pages at such a rate that it impacted service for other users.”
Botnets are networks of computers under the control of hackers.
The machines were used to mount a so-called denial-of-service (DOS) attack on Thursday.
DOT.LIFE BLOG
‘Up is down, left is right and black is white,’ a chief security researcher told me. ‘These attacks do not make sense’
DOS attacks take various forms but often involve a company’s servers being flooded with data in an effort to disable them.
“Attacks such as this are malicious efforts orchestrated to disrupt and make unavailable services such as online banks, credit card payment gateways and, in this case, Twitter, for intended customers or users,” wrote Twitter co-founder Biz Stone on his blog.
Writing on his blog, Graham Cluley of security firm Sophos said: “This raises the astonishing thought that a vendetta against a single user caused Twitter to crumble, forcing us to ask serious questions about the site’s fragility.”
Silencing tactic
It is still not known who perpetrated the attack or why they may have targeted Cyxymu and his accounts.
However, in an interview with the UK’s Guardian newspaper, the blogger blamed Russia.
Twitter updated users via a status page
“Maybe it was carried out by ordinary hackers but I’m certain the order came from the Russian government,” he said.
The blogger has previously criticised Russia over its conduct in the war over the disputed South Ossetia region, which began one year ago.
A previous statement by Facebook said that the attack on the websites where he held accounts was “to keep his voice from being heard”.
Other sites such as Live Journal, where Cyxymu has his blog, were also targeted in the attack on Thursday.
Only Google seems to have escaped unscathed from the attack.
“Google systems prevented substantive impact to our services,” the company said in a statement.
The company has not confirmed which services were targeted in the attack, but it is thought that its e-mail service Gmail and video site YouTube were under fire.
“We are aware that a handful of non-Google sites were impacted by [an]… attack this morning, and are in contact with some affected companies to help investigate this attack,” the company said.
Protest tool
All of the affected services were keen to stress that users’ data had not been put at risk in the attacks.
“Please note that no user data was compromised in this attack,” wrote Twitter’s Biz Stone.
Twitter CEO Evan Williams on BBC Two’s Newsnight
“This activity is about saturating a service with so many requests that it cannot respond to legitimate requests thereby denying service to intended customers or users.”
Twitter has had a meteoric rise since its launch in 2006.
A ComScore study suggests that Twitter had about 45 million users worldwide as of June 2009.
However, as many users interact with the service through mobile phones or third-party software, the actual number of users is likely to be higher.
However, that pales in comparison to Facebook, which claims to have 250m active users worldwide.
Both sites recently garnered worldwide attention when they were used by Iranians to co-ordinate demonstrations following the disputed election of Mahmoud Ahmadinejad as president.
Many protesters believed there was electoral fraud and that opposition leader Mir Hossein Mousavi should have won.
Twitter chose to delay upgrade work during the protests to allow communication to continue.
In a BBC interview, co-founder Evan Williams denied the move had been a response to a US state department request.
I am going to give you a tutorial on what to install that might help you. You have to have a program like putty and root access on your server(VPS or Dedicated Server) for all of these applications. This is for linux. I wrote this article. I made the best effort not to include typos.
Process Resource Monitor
Kills processes automatically and emails you when its killed.
Code:
mkdir /root/downloads
cd /root/downloads
wget http://www.rfxn.com/downloads/prm-current.tar.gz
tar -xvzf prm-current.tar.gz
cd prm-*
./install.sh
pico /usr/local/prm/conf.prm
Edit the configuration file and set the email address & settings to whatever you feel comfortable with.
Control+X to escape and Control+X to save your changes(type y+enter to save and n to not save the file)
Use arrow keys to move around and to delete things use the backspace key while viewing the file.
The application will email you when a process is killed on your server!
Code:
pico /etc/cron.d/prm
Control+X to escape and Control+X to save your changes(type y+enter to save and n to not save the file)
Use arrow keys to move around and to delete things use the backspace key while viewing the file.
Edit the cron job file and set the email address & settings to whatever you feel comfortable with. Its set to check your server every 5 minutes.
Code:
pico /usr/local/prm/killed
Control+X to escape and Control+X to save your changes(type y+enter to save and n to not save the file)
Use arrow keys to move around and to delete things use the backspace key while viewing the file.
You can ignore processes that need to be killed but the file has some that are set to ignore already.
You can run the program without the cron job by running these.
Code:
/usr/local/prm/prm -s
/usr/local/sbin/prm -s
You can run the program quietly without the cron job by running these.
Code:
/usr/local/prm/prm -q
/usr/local/sbin/prm -q
You can turn the cron job off and on by running these. If it says disabled, your cron job is disabled. If it says enabled, your cron job is on.
Control+X to escape and Control+X to save your changes(type y+enter to save and n to not save the file)
Use arrow keys to move around and to delete things use the backspace key while viewing the file.
Search Engine Optimizers often have two different views when it comes to
meta tags. One this is unanimous
meta tags have definitely been devalued for use in most major search engines but you will find they are still being used as the description often times when your site is listed in the search results.
Meta tags were started back in the early 90’s when the Internet was just getting its brand new legs and they were used to help the
search engines organize the growing number of web pages. This was an easy way to get your site indexed and listed high.
Soon after unethical webmasters started to abuse the meta tag by either spamming the page full of keywords or sometimes even made different websites appear in the results for a completely different keyword. Gambling sites would stuff their
meta tags with more commonly used phrases in order to bring their sites to the first page and trick
the search engine and moreover the user.
Now obviously, most
search engines have discontinued the use of
meta tags for organizing their search results. Algorithms have become much more technologically advanced and they use a number of other methods for indexing and sorting. The big question is if they are no longer viewed as a helpful tag, why do some SEO’s still use them?
Meta tags come in a multitude of different names and uses, so which ones do you use? There are four that I often find myself using when I am optimizing a site. They are as follows:
Meta Robots: This tag is still widely supported and it simply tells
the search bots to either follow the URL through or you can ask them not to index certain parts of your site for aspects that may not be relevant to your actual site.
Meta Description: My favorite tag. This is your first impression, if you don’t have this tag
search engines will just tag clips of your index page including the keyword that was being searched for by the surfer. First impressions often is the difference between a sale or no sale.
Meta Keywords:
A controversial meta tag, some use it, some don’t. I still thinks it holds a bit of value if you keep it simple. Don’t add more than 20 or so keywords, as I think it does increase your on-page keyword density.
Meta Content Type:
This is recommended because you may find that if you do not have this tag it could cause display problems.
Now, most
search engines don’t use the
meta tags as they did in the early nineties, but as I explained you can still use them for a variety of other reasons. There is of course a number of opinions on this matter: Some SEO firms are strong believers in the meta tag and other firms are strongly against it.
In conclusion, my opinion is that
meta tags can be used for a number of alternative reasons and still offer you a great place to sell your stuff.
I always will recommend the use of at least a small number of
Meta Tags, and if used correctly they will greatly improve your chances of higher rankings.
In case you don’t speak German (just as this hacker), I’ve tried a little translation to English. I might have made some spelling errors, but the original spelling wasn’t perfect either. The guy really said “buy buy” in the German version.
For information:
The dangerous hacker is called bitchchecker and the one being hacked and original author of the comments, who is talking here, is known as Elch.
127.0.0.1 is always the IP address of the computer you’re currently using; any request there will return to your computer.
Notice that in Germany we get Daylight Savings Time (DST) earlier than in the US.
The story starts (I’m shortcutting here) with a kid insulting everyone on the #stopHipHop IRC channel. Most people there believed it was rather funny, but it got even more funny…
* bitchchecker (~java@euirc-a97f9137.dip.t-dialin.net) Quit (Ping timeout#)
* bitchchecker (~java@euirc-61a2169c.dip.t-dialin.net) has joined #stopHipHop <bitchchecker> why do you kick me <bitchchecker> can’t you discus normally <bitchchecker> answer! <Elch> we didn’t kick you <Elch> you had a ping timeout: * bitchchecker (~java@euirc-a97f9137.dip.t-dialin.net) Quit (Ping timeout#) <bitchchecker> what ping man <bitchchecker> the timing of my pc is right <bitchchecker> i even have dst <bitchchecker> you banned me <bitchchecker> amit it you son of a bitch <HopperHunter|afk> LOL <HopperHunter|afk> shit you’re stupid, DST^^ <bitchchecker> shut your mouth WE HAVE DST! <bitchchecker> for two weaks already <bitchchecker> when you start your pc there is a message from windows that DST is applied. <Elch> You’re a real computer expert <bitchchecker> shut up i hack you <Elch> ok, i’m quiet, hope you don’t show us how good a hacker you are ^^ <bitchchecker> tell me your network number man then you’re dead <Elch> Eh, it’s 129.0.0.1 <Elch> or maybe 127.0.0.1 <Elch> yes exactly that’s it: 127.0.0.1 I’m waiting for you great attack <bitchchecker> in five minutes your hard drive is deleted <Elch> Now I’m frightened <bitchchecker> shut up you’ll be gone <bitchchecker> i have a program where i enter your ip and you’re dead <bitchchecker> say goodbye <Elch> to whom? <bitchchecker> to you man <bitchchecker> buy buy <Elch> I’m shivering thinking about such great Hack0rs like you
* bitchchecker (~java@euirc-61a2169c.dip.t-dialin.net) Quit (Ping timeout#)
What happened is clear: That guy entered his own IP address in his mighty Hack-Tool and crashed his own PC. This way, the attack on my PC was a failure.
I was already starting to think that I did not have to worry, but a good hacker never calls it a day. Two minutes later he returned.
* bitchchecker (~java@euirc-b5cd558e.dip.t-dialin.net) has joined #stopHipHop <bitchchecker> dude be happy my pc crashed otherwise you’d be gone <Metanot> lol <Elch> bitchchecker: Then try hacking me again… I still have the same IP: 127.0.0.1 <bitchchecker> you’re so stupid man <bitchchecker> say buy buy <Metanot> ah, [Please control your cussing] off <bitchchecker> buy buy elch
* bitchchecker (~java@euirc-b5cd558e.dip.t-dialin.net) Quit (Ping timeout#)
There was a tension in the room… Would he manage, after these two failures, to crash my PC? I waited. Nothing happened. I felt relieve…
Six minutes passed by until he prepared the next wave of attack. Being a Hacker, who usually cracks whole data centers, he knew what his problem was now.
* bitchchecker (~java@euirc-9ff3c180.dip.t-dialin.net) has joined #stopHipHop <bitchchecker> elch you son of a bitch <Metanot> bitchchecker how old are you? <Elch> What’s up bitchchecker? <bitchchecker> you have a frie wal <bitchchecker> fire wall <Elch> maybe, i don’t know <bitchchecker> i’m 26 <Metanot> such behaviour with 26? <Elch> how did you find out that I have a firewall? <Metanot> tststs this is not very nice missy <bitchchecker> because your gay fire wall directed my turn off signal back to me <bitchchecker> be a man turn that shit off <Elch> cool, didn’t know this was possible. <bitchchecker> thn my virus destroys your pc man <Metanot> are you hacking yourselves? <Elch> yes bitchchecker is trying to hack me <Metanot> he bitchchecker if you’re a hacker you have to get around a firewall even i can do that <bitchchecker> yes man i hack the elch but the sucker has a fire wall the <Metanot> what firewall do you have? <bitchchecker> like a girl <Metanot> firewall is normal a normal hacker has to be able to get past it…you girl^^ <He> Bitch give yourself a jackson and chill you’re letting them provoce you and give those little girls new material all the time <bitchchecker> turn the firewall off then i send you a virus [Please control your cussing]er <Elch> Noo <Metanot> he bitchchecker why turn it off, you should turn it off <bitchchecker> you’re afraid <bitchchecker> i don’t wanna hack like this if he hides like a girl behind a fire wall <bitchchecker> elch turn off your shit wall! <Metanot> i wanted to say something about this, do you know the definition of hacking??? if he turns of the firewall that’s an invitation and that has nothing to do with hacking <bitchchecker> shut up <Metanot> lol <bitchchecker> my grandma surfs with fire wall <bitchchecker> and you suckers think you’re cool and don’t dare going into the internet without a fire wall
He calls me girly and says only his grandma would use a firewall. I know that elder people are much more intelligent then younger, but I couldn’t let that rest. To see whether he really is a good hacker I lie and let everything as it is. I don’t have a firewall at all, only my router.
<Elch> bitchchecker, a collegue showed me how to turn the firewall off. Now you can try again <Metanot> bitchhacker can’t hack <Black<TdV>> nice play on words ^^ <bitchchecker> wort man <Elch> bitchchecker: I’m still waiting for your attack! <Metanot> how many times again he is no hacker <bitchchecker> man do you want a virus <bitchchecker> tell me your ip and it deletes your hard drive <Metanot> lol ne give it up i’m a hacker myself and i know how hackers behave and i can tell you 100.00% you’re no hacker..^^ <Elch> 127.0.0.1 <Elch> it’s easy <bitchchecker> lolololol you so stupid man you’ll be gone <bitchchecker> and are the first files being deleted <Elch> mom… <Elch> i’ll take a look
In panic I started the Windows Explorer, my heart beating faster. Had I under-estimated him?
<bitchchecker> don’t need to rescue you can’t son of a bitch <Elch> that’s bad <bitchchecker> elch you idiout your hard drive g: is deleted <Elch> yes, there’s nothing i can do about it <bitchchecker> and in 20 seconds f: is gone
Yes, true, G: and F: were gone. Did I ever have them? Doesn’t matter, I did not have time to think, I was scared. bitchchecker was comforting me with a music tip.
<bitchchecker> tupac rules <bitchchecker> elch you son of a bitch your f: is gone and e: too
Drive E:? Oh my god… All the games are there! And the vacation pictures! I instantly take a look. Everything still there. But the hacker said it was deleted….
Or isn’t it happening on my computer?
<bitchchecker> and d: is at 45% you idiot lolololol <He> why doesn’t meta say anything <Elch> he’s probably rolling on the floor laughing <Black<TdV>> ^^ <bitchchecker> your d: is gone <He> go on BITCH
The guy is good: My CD-drive is allegedly deleted! Bitchchecker turned my ancient disk sucker into a burner! But how did he do this? I’ll have to ask him. Some encourage him. He himself is giving advice how to avoid the disaster on my hard drives.
<bitchchecker> elch man you’re so stupid never give your ip on the internet <bitchchecker> i’m already at c: 30 percent
cPanel (”Control Panel”) is a graphical web-based web-hosting control panel, designed to make administration of websites easy. cPanel handles all aspects of website administration in its interface. The software, which is proprietary and distributed by cPanel Inc., is designed for use by commercial web hosting services, so the company does not offer a reduced-cost personal use license; however, owners of non-profit organisations such as educational institutions and charities can request a license at a reduced cost. Reduced prices are frequently available from dedicated-server companies, who install it along with the operating system.cPanel runs on a number of popular RPM-based Linuxdistributions, such as SUSE, Fedora, Mandriva, CentOS, Red Hat Enterprise Linux, and cAos, as well as FreeBSD. Preliminary support for Debian is claimed, although this version has been in “beta” state for several years, and is not supported. cPanel is commonly accessed on ports 2082 and 2083 (for an SSL version). Authentication is either via HTTP or web page login.
cPanel System Requirements
Processor: 266 MHZ or faster
RAM: 66MB+, 1GB+ when hosting many sites
HDD space: 9.95GB plus
cPanel also requires a fresh operating system installation if you do not want data to be formatted
Features
To the client, cPanel provides front-ends for a number of common operations, including the management of PGP keys, crontab tasks, mail and FTP accounts, and mailing lists.
Several add-ons exist for an additional fee, the most notable being Fantastico, a bundle of scripts which automate the installation of, but not the update of (see article), web applications such as SMF, phpBB, Drupal, Joomla, TikiWiki, Moodle and over 50 others.
Unlike some other web hosting control panels, cPanel manages some software packages separately from the underlying operating system, applying upgrades to Apache, PHP, MySQL, and related software packages automatically. This ensures that these packages are kept up-to-date and compatible with cPanel, but has become a cause for consternation to some, as it becomes difficult to easily install newer versions of these packages.
As well as being accessible by the root admin, WHM is also accessible to users with reseller privileges. Reseller users of cPanel have a smaller set of features than the root user, generally limited by the server administrator, to features which they determine will affect their customers’ accounts rather than the server as a whole. From WHM, the server administrator can perform maintenance operations such as compile Apache and upgrade RPMs installed on the system
‘Up is down, left is right and black is white,’ a chief security researcher told me. ‘These attacks do not make sense’ 
