Author's Opinion

The views in this column are those of the author and do not necessarily reflect the views of iTWire.

Have your say and comment below.

Friday, 28 October 2016 12:27

DDoS: Firms try to capitalise on others' misery


The worst thing about a distributed denial of service attack is not the attack itself. Rather, it is the slew of bottom-feeders who appear on the horizon after the deed and try to profit from the misery of others.

In the true spirit of American greed, security firm Norton by Symantec is out there today, plugging figures from some survey or the other to push the case that small and medium businesses — many already unable to cope with existing expenses — should also invest in insurance as a means of recouping damages from a likely DDos.

No surprise, the insurance on offer is from a partner of Norton!

Close on its heels, is Computer Services Corporation, another firm that is attempting to feed on others' misfortune.

CSC has issued a white paper (why are all these papers white?) trying to push its wares.

Note carefully that neither of these companies has any suggestion as to how the Internet itself can be strengthened so that everyone has less of a chance of suffering from a DDoS. No suggestion as to how mitigation can be improved for the public good.

Indeed, Dynamic Network Services, the very company that was the target of the attacks, tried to project itself as better than it is at managing such attacks by claiming that millions of devices had participated in the DDoS.

Later, it had to recant and admit that the actual number was closer to 100,000.

No, greed is first and foremost. It reminds me of the film The Corporation where a stock trader was quoted as saying that when he saw the planes crashing into the World Trade Centre towers on 11 September 2001, his first thought was how he could help his clients to make money by shorting airline stocks.

The Internet was built on free and open source software, using protocols that are free. But now there are millions of rent-seekers who want to use the network to line their own pockets. If they did so while also contributing to the public realm, I would have no problem with it.

This self-interest has been seen many times in the recent past. The Heartbleed vulnerability in OpenSSL put millions at risk; that project has meagre resources, both monetary and staff-wise, but its software has almost universal use. How many mega-corporations have come forward to donate money or resources to improve the security of OpenSSL?

The only person to do something worthwhile was Theo de Raadt, the head of the OpenBSD operating system project, a free software entity. He and his so-developers started a fork of OpenSSL, called LibreSSL, to weed out the many flaws in its code.

Or take the case of OpenSSH, which, coincidentally, is also developed by de Raadt's project. Nearly 90% of those who use SSH use the OpenBSD incantation.

De Raadt told me more than a decade ago that contributions to free software that is almost universally used comes mostly from individuals, not corporations. To quote him: ""Hardware donations do not come from vendors who use OpenSSH on parts of their stuff. They come from individuals. The hardware vendors who use OpenSSH on all of their products have given us a total of one laptop since we developed OpenSSH five years ago. And asking them for that laptop took a year. That was IBM. It took a year of negotiation and I had to talk to 15 people and I had the right person from the beginning but she had to get okays from other people and I had to write letters to say why. It was astounding."

For one reason or another, DDoS attacks are going to have massive impacts on online businesses, until technical solutions are devised to lessen their impact. Crude marketing moves are not going to help in any way to make the Internet a better place to do business.

Please join our community here and become a VIP.

Subscribe to ITWIRE UPDATE Newsletter here
JOIN our iTWireTV our YouTube Community here


It's all about Webinars.

Marketing budgets are now focused on Webinars combined with Lead Generation.

If you wish to promote a Webinar we recommend at least a 3 to 4 week campaign prior to your event.

The iTWire campaign will include extensive adverts on our News Site and prominent Newsletter promotion and Promotional News & Editorial. Plus a video interview of the key speaker on iTWire TV which will be used in Promotional Posts on the iTWire Home Page.

Now we are coming out of Lockdown iTWire will be focussed to assisting with your webinatrs and campaigns and assassistance via part payments and extended terms, a Webinar Business Booster Pack and other supportive programs. We can also create your adverts and written content plus coordinate your video interview.

We look forward to discussing your campaign goals with you. Please click the button below.



iTWire TV offers a unique value to the Tech Sector by providing a range of video interviews, news, views and reviews, and also provides the opportunity for vendors to promote your company and your marketing messages.

We work with you to develop the message and conduct the interview or product review in a safe and collaborative way. Unlike other Tech YouTube channels, we create a story around your message and post that on the homepage of ITWire, linking to your message.

In addition, your interview post message can be displayed in up to 7 different post displays on our the site to drive traffic and readers to your video content and downloads. This can be a significant Lead Generation opportunity for your business.

We also provide 3 videos in one recording/sitting if you require so that you have a series of videos to promote to your customers. Your sales team can add your emails to sales collateral and to the footer of their sales and marketing emails.

See the latest in Tech News, Views, Interviews, Reviews, Product Promos and Events. Plus funny videos from our readers and customers.


Sam Varghese

Sam Varghese has been writing for iTWire since 2006, a year after the site came into existence. For nearly a decade thereafter, he wrote mostly about free and open source software, based on his own use of this genre of software. Since May 2016, he has been writing across many areas of technology. He has been a journalist for nearly 40 years in India (Indian Express and Deccan Herald), the UAE (Khaleej Times) and Australia (Daily Commercial News (now defunct) and The Age). His personal blog is titled Irregular Expression.

Share News tips for the iTWire Journalists? Your tip will be anonymous