Anti-Hacker Program

[Liberator]

In response to AVSIM and SimNASA being hacked I will make software to try and protect major simulator sites from hits. So far I have schematics of how it will work. For some of the experienced stuff that I don't know I need coders to help me. It is called Defense of Hackers or Hacker Defense. This may prevent hackers from destroying even more sites. Also, if hackers are spotted deadly viruses are sent to their computers destroying it.

Here is the list of people I need for it to work.

Manager: Liberator
Lead Coder:
Coder:
Coder:
Coder:
Coder:
Coder:
Program Builder:
Program Builder:
Program Builder:
Program Builder:

Note: I will be making a website and I will be making backups of data so it is not lost. I will do that if hackers try to take out this program.

 

[Artlav]

Um.
Sounds weird, how exactly is it supposed to work?

 

[Liberator]

Once a hacker enters a server and tries to hack the IP address is scanned, and immediately his IP address is blocked, and deadly viruses attack his computer and destroy the start up procedure ruining his hacking software.

 

[Nerull]

You realize that's illegal, right?

---------- Post added at 01:58 PM ---------- Previous post was at 01:57 PM ----------

Not to mention that thinking you can just "send viruses to destroy their computer" indicates your knowledge of computer security hovers around 'zero'.

 

[Liberator]

No. Okay new idea. It just blocks the IP address, and it does have a mind of its own. It has Artificial Intelligence. All Hackers beware of the Hacker Defense program. Also Schematics will be up soon.

 

[Woo482]

listen do "windows key+R" then do "shutdown /s" that'll keep the hacker's out

 

[Nerull]

Oh, so now you're an expert in AI research?

I hope you're aware that most attacks worth bothering about come from botnets made up of millions of PCs, and any 'hacker' who is actually trying to attack a website and not just running automated programs to take down random websites people can't be bothered to keep up to date (The likely attack on SimNASA) can get around an IP block with no issues.

 

[garyw]

How do you differentiate an attack from legit traffic?

"Deadly viruses" can be a two edged weapon - What happens if your system takes out itself?

A.I. right................. You and a few programmers are going to write a neural network? Good luck!

Finally, Anything that can be programmed can be hacked.

 

[ar81]

I have a better idea. How about sending a teleportation beam back to attacker IP, so he is beamed up to the moon without his computer... :lol::rofl:

 

[Liberator]

Okay until further notice this is halted. If you have ideas post them and I will take them into consideration.

 

[garyw]

No. Okay new idea. It just blocks the IP address, and it does have a mind of its own. It has Artificial Intelligence. All Hackers beware of the Hacker Defense program. Also Schematics will be up soon.

Umm, What do you do about DHCP? How long do you keep the address blocked for?

 

[Woo482]

Liberator what's a Dynamic Host Configuration Protocol ?

 

[garyw]

Okay until further notice this is halted. If you have ideas post them and I will take them into consideration.

I do have a few, for example:

IDS/IPS, Dynamic firewall updates
Reverse Proxy
offsite backup
proper clustering and load balancing
Defense in depth
Hardened servers

and so on.

This is part of what I do for a living. There is no magic bullet.

 

[blane]

Actually, I bet this can be solved easily by avsim by auditing their code.

I haven't read about the issue, neither do I want to. But I bet a new XR5 that this was either due to sloppy php, some other lame cross-site scripting attack or even worse, just plain negligence about standard security mechanisms.

Or did some admin use admin as password? :lol:

 

[ar81]

If I was a gardener and the site was a garden, I would say "you need to create a fence around the garden, and a banner that reads 'do not step on the grass' ".

---------- Post added at 18:45 ---------- Previous post was at 18:42 ----------

Or did some admin use admin as password? :lol:

That reminds me once at the bus. A high school kid claimed to have entered president's computer, and he said "the password is PRESIDENTE"...:lol::rofl:

 

[blane]

If I was a gardener and the site was a garden, I would say "you need to create a fence around the garden, and a banner that reads 'do not step on the grass' ".

 

[Artlav]

Liberator, automatically distinguishing an attack from not an attack is a transcomputable task.
Stated like that, what you propose is about impossible.

I have a better idea. How about sending a teleportation beam back to attacker IP, so he is beamed up to the moon without his computer... :lol::rofl:

Bad idea. People will start hacking everyone for the ride.

 

[ar81]

Very old news, but it seems to fit here.
BBC: Dangerous coding errors revealed

 

[garyw]

Liberator, automatically distinguishing an attack from not an attack is a transcomputable task.
Stated like that, what you propose is about impossible.

I once sat down with an IDS system that was installed on the user facing VLAN for a company that develops software.

In just a week there were over 30,000 potential security breaches - mostly caused by automated test scripts "attacking" the compiled binaries from the nightly builds. These systems HAD to deliberately throw all sorts of oddities at build environment to find bugs.

My official recommendation was to remove the IDS devices and redeploy them in front of the production servers rather than out on the user vlans because trawling through that lot and working out what was and was not an attack would have taken a lot longer than the week I was allocated.

 

[ar81]

I have the final code. If it is too complex, do not blame me. It is designed to be hacker proof.

Public Sub FinalSolution
Open Internet for Input as #1
Do While Not Disconnected
  Line Input #1, Buffervar
  If ContainsAttack(Buffervar) then
     AttackerIP = InternetIP
     Call SendYelling(AttackerIP)
     Call StopAttack(AttackerIP)
  Else
     Proceed vbNormally
  Endif
Loop
Close #1
End Sub