Author's Opinion

The views in this column are those of the author and do not necessarily reflect the views of iTWire.

Have your say and comment below.

Friday, 28 October 2016 12:27

DDoS: Firms try to capitalise on others' misery

By

The worst thing about a distributed denial of service attack is not the attack itself. Rather, it is the slew of bottom-feeders who appear on the horizon after the deed and try to profit from the misery of others.

In the true spirit of American greed, security firm Norton by Symantec is out there today, plugging figures from some survey or the other to push the case that small and medium businesses — many already unable to cope with existing expenses — should also invest in insurance as a means of recouping damages from a likely DDos.

No surprise, the insurance on offer is from a partner of Norton!

Close on its heels, is Computer Services Corporation, another firm that is attempting to feed on others' misfortune.

CSC has issued a white paper (why are all these papers white?) trying to push its wares.

Note carefully that neither of these companies has any suggestion as to how the Internet itself can be strengthened so that everyone has less of a chance of suffering from a DDoS. No suggestion as to how mitigation can be improved for the public good.

Indeed, Dynamic Network Services, the very company that was the target of the attacks, tried to project itself as better than it is at managing such attacks by claiming that millions of devices had participated in the DDoS.

Later, it had to recant and admit that the actual number was closer to 100,000.

No, greed is first and foremost. It reminds me of the film The Corporation where a stock trader was quoted as saying that when he saw the planes crashing into the World Trade Centre towers on 11 September 2001, his first thought was how he could help his clients to make money by shorting airline stocks.

The Internet was built on free and open source software, using protocols that are free. But now there are millions of rent-seekers who want to use the network to line their own pockets. If they did so while also contributing to the public realm, I would have no problem with it.

This self-interest has been seen many times in the recent past. The Heartbleed vulnerability in OpenSSL put millions at risk; that project has meagre resources, both monetary and staff-wise, but its software has almost universal use. How many mega-corporations have come forward to donate money or resources to improve the security of OpenSSL?

The only person to do something worthwhile was Theo de Raadt, the head of the OpenBSD operating system project, a free software entity. He and his so-developers started a fork of OpenSSL, called LibreSSL, to weed out the many flaws in its code.

Or take the case of OpenSSH, which, coincidentally, is also developed by de Raadt's project. Nearly 90% of those who use SSH use the OpenBSD incantation.

De Raadt told me more than a decade ago that contributions to free software that is almost universally used comes mostly from individuals, not corporations. To quote him: ""Hardware donations do not come from vendors who use OpenSSH on parts of their stuff. They come from individuals. The hardware vendors who use OpenSSH on all of their products have given us a total of one laptop since we developed OpenSSH five years ago. And asking them for that laptop took a year. That was IBM. It took a year of negotiation and I had to talk to 15 people and I had the right person from the beginning but she had to get okays from other people and I had to write letters to say why. It was astounding."

For one reason or another, DDoS attacks are going to have massive impacts on online businesses, until technical solutions are devised to lessen their impact. Crude marketing moves are not going to help in any way to make the Internet a better place to do business.


Subscribe to ITWIRE UPDATE Newsletter here

GRAND OPENING OF THE ITWIRE SHOP

The much awaited iTWire Shop is now open to our readers.

Visit the iTWire Shop, a leading destination for stylish accessories, gear & gadgets, lifestyle products and everyday portable office essentials, drones, zoom lenses for smartphones, software and online training.

PLUS Big Brands include: Apple, Lenovo, LG, Samsung, Sennheiser and many more.

Products available for any country.

We hope you enjoy and find value in the much anticipated iTWire Shop.

ENTER THE SHOP NOW!

INTRODUCING ITWIRE TV

iTWire TV offers a unique value to the Tech Sector by providing a range of video interviews, news, views and reviews, and also provides the opportunity for vendors to promote your company and your marketing messages.

We work with you to develop the message and conduct the interview or product review in a safe and collaborative way. Unlike other Tech YouTube channels, we create a story around your message and post that on the homepage of ITWire, linking to your message.

In addition, your interview post message can be displayed in up to 7 different post displays on our the iTWire.com site to drive traffic and readers to your video content and downloads. This can be a significant Lead Generation opportunity for your business.

We also provide 3 videos in one recording/sitting if you require so that you have a series of videos to promote to your customers. Your sales team can add your emails to sales collateral and to the footer of their sales and marketing emails.

See the latest in Tech News, Views, Interviews, Reviews, Product Promos and Events. Plus funny videos from our readers and customers.

SEE WHAT'S ON ITWIRE TV NOW!

BACK TO HOME PAGE
Sam Varghese

Web Analytics

Sam Varghese has been writing for iTWire since 2006, a year after the site came into existence. For nearly a decade thereafter, he wrote mostly about free and open source software, based on his own use of this genre of software. Since May 2016, he has been writing across many areas of technology. He has been a journalist for nearly 40 years in India (Indian Express and Deccan Herald), the UAE (Khaleej Times) and Australia (Daily Commercial News (now defunct) and The Age). His personal blog is titled Irregular Expression.

Share News tips for the iTWire Journalists? Your tip will be anonymous

WEBINARS ONLINE & ON-DEMAND

GUEST ARTICLES

VENDOR NEWS

Guest Opinion

Guest Interviews

Guest Reviews

Guest Research

Guest Research & Case Studies

Channel News

Comments