The Wiert Corner – irregular stream of stuff

Jeroen W. Pluimers on .NET, C#, Delphi, databases, and personal interests

  • My work

  • My badges

  • Twitter Updates

  • My Flickr Stream




    More Photos
  • Pages

  • All categories

  • Enter your email address to subscribe to this blog and receive notifications of new posts by email.

    Join 1,652 other followers

The IoT strikes back again: half a million IoT devices killed DYN DNS for hours, but fixing this will be hard

Posted by jpluimers on 2016/10/22

Less than a month after The IoT strikes back: 650 Gigabit/second and 1 Terabit/second attacks by IoT devices within a week the IoT struck back again: an estimated half a million IoT devices was used to perform multiple DDoS attacks against Dyn Managed DNS that took around 11 hours to resolve.

Google DNS appears to

Google DNS appears to “live” near me in Amsterdam

High availability usually involves a mix of DNS TTL and/or BGP routing. That’s typically how CDN providers like Cloudflare work (it’s one of the reasons that global DNS servers like Google’s appear near to you and over time routes – some MPLS – to it change). Short DNS TTL can help CDN, requires a very stable DNS infrastructure and is similar to but different fromFast Flux network.

Last months attacks were on a security researcher and a single ISP. The Dyn DNS attack affected even more internet services (not just sites like Twitter, WhatsApp, AirBnB and Github). So I’m with Bruce Schneier that Someone Is Learning How to Take Down the Internet.

Handling these attacks is hard as the DDoS mitigation firms simply cannot handle the sudden increase of attack sizes yet. BCP38 should be part of mitigation, but the puzzle is big and fixing it won’t be easy.

On the client side, I learned that many users could cope by changing their DNS servers to either of these Public DNS Servers:

  • OpenDNS,,,
    • OpenDNS does a good job of handing “last known good” IPs when they can’t resolve.
  • Google Public DNS,
  • Level 3 DNS,,,,,

Some more interesting tidbits on the progress and mitigation on this particular attack are the over time heat-maps of affected regions and BGP routing changes below.

Read the rest of this entry »

Posted in DNS, Internet, IoT Internet of Things, Network-and-equipment, Opinions, Power User | Leave a Comment »

display – How can I move spaces between external monitors in Mavericks? – Ask Different

Posted by jpluimers on 2016/10/21

display – How can I move spaces between external monitors in Mavericks? – Ask Different [WayBack]

You can only move spaces which are non-active.

For example, lets say you have spaces 1 and 2. If space 1 is active, you can not move it. You first have to select space 2 then you can move space 1 to a different monitor.

This helped me work around version 8.35 of Microsoft Remote Desktop for OS X breaks second monitor usage [WayBack]:

  1. Double click a connection so it goes to a new space on the primary display
  2. Make the normal space active (by three finger swiping on the primary display)
  3. Go to mission control
  4. Move the non-active RDP space to the secondary monitor

Sometimes the primary monitor doesn’t have a non-active space any more so you have to create a new one in the top right of Mission Control [WayBack].


Posted in Apple, Mac, MacBook, MacBook Retina, MacBook-Pro, OS X, OS X Maverick, Power User, Remote Desktop Protocol/MSTSC/Terminal Services, Windows | Leave a Comment »

How To Patch and Protect Linux Kernel Zero Day Local Privilege Escalation Vulnerability CVE-2016-5195 [ 21/Oct/2016 ]

Posted by jpluimers on 2016/10/21

There is a nasty (Dirty COW: CVE-2016-5195) Linux kernel bug with zero-day exploits floating around

OpenSuSE updates will be available soon (likely this weekend); from the  #openSUSE-factory IRC channel :

wiert: any E.T.A. for CVE-2016-5195 in the various releases?

_Marcus_: 13.1 and 42.1 i just released. 13.2 submission i am still awaiting, so release likely tomorrow

wiert: How about Tumbleweed?

DimStar: for TW, I have it in staging and will try to squeeze it into the 1021 snapshot
so unlike something really bad happened, it should be shipping tomorrow or Sunday

via: How To Patch and Protect Linux Kernel Zero Day Local Privilege Escalation Vulnerability CVE-2016-5195 [ 21/Oct/2016 ] [WayBack]


Posted in *nix, openSuSE, Power User, SuSE Linux, Tumbleweed | Leave a Comment »

FileZilla on Windows is waaaay faster than WinSCP

Posted by jpluimers on 2016/10/21

Not sure why yet, but on a gigabit network between a Windows 2008 R2 Server and a Proxmox KVM machine, WinSCP gets around 10 megabit/second and FileZilla > 30 megabit/second.

Others seem to agree that filezilla faster than winscp.


Posted in Communications Development, Development, Internet protocol suite, Power User, Proxmox, SSH, TCP, Virtualization, VMware, Windows, Windows Server 2008, Windows Server 2008 R2 | Leave a Comment »

Some Google URLs

Posted by jpluimers on 2016/10/21

Below a table with clickable links, details are in the Via at the end. I added some more beyond the 10 original ones.

# URL What
Footer 1 Footer 2 Footer 3
1 Get a new account
2 Manage advertisement profile
3 Download your Google data (mail can take days!)
4 To file a complaint about using copyrighted or unpermissioned material
5 Shows where your devices have been
6 All your searches
7 Prevent extended inactivity, Google doesn’t delete your account after 9 months.
8 When you suspect account abuse
9 Set permissions of apps and sites relating to your account
10 Apps users: reset admin account by adding a CNAME to the DNS
11 G+ / Google Plus
12 Google Hangouts
13 GMail / Google Mail
14 Google Contacts (note + button to add is hidden behind Hangouts pop-up also on the lower right)
15 Calendar / Agenda
16 Sync Google Settings between various devices / applications
17 Account and privacy settings
18 Security settings like two-factor authentication (2-step signin)
19 Check if your security settings (recovery phone, recovery email, security question) are still up to date.
20 Setting your privacy
21 Manage Wallet
22 Google Play Store and settings
23 Where is your Android device
# href what
# href what
# href what
# href what
# href what
# href what
# href what
# href what
# href what
# href what
# href what


via: Some Imporatant URLs you should know as a Google User – I am Programmer.

Posted in GMail, Google, Power User | Leave a Comment »

%d bloggers like this: