Most active commenters
  • jldugger(3)

←back to thread

Resurrecting a dead torrent tracker and finding 3M peers

(kianbradley.com)
655 points k-ian | 14 comments | 17 Jun 25 17:40 UTC | HN request time: 1.362s | source | bottom
1. jldugger ◴[17 Jun 25 20:22 UTC] No.44303516[source]
In other words, you can DDoS any ip for the cost of registering a domain and publishing a specific DNS record.
replies(4): >>44304121 #>>44304759 #>>44306797 #>>44310896 #
2. 57473m3n7Fur7h3 ◴[17 Jun 25 21:24 UTC] No.44304121[source]
Is it really going to be all that bad?

The BitTorrent clients I’ve used all seemed pretty polite, backing off for like 60s at least for each tracker they can’t connect to.

If you buy one of the dead tracker domains and point it at an IP of someone else, but their services aren’t even listening on the port client wants to connect to (and don’t speak BitTorrent even if the port happened to coincide), I can’t imagine that even with a million BitTorrent clients wanting to connect it would really be all that much of a problem.

replies(3): >>44304365 #>>44305978 #>>44308022 #
3. ◴[17 Jun 25 21:53 UTC] No.44304365[source]
4. daneel_w ◴[17 Jun 25 22:40 UTC] No.44304759[source]
Common clients' announce interval is pretty long (usually 30 minutes). Then again, 3M peers makes for some volume...
5. jldugger ◴[18 Jun 25 01:57 UTC] No.44305978[source]
It can be: https://www.jwz.org/blog/2015/01/chinese-bittorrent-the-gift...
replies(1): >>44307303 #
6. udev4096 ◴[18 Jun 25 04:59 UTC] No.44306797[source]
You mean redirect all the traffic to any IP the author intends to theoretically DDoS? Never thought of it, definitely scary with 3M peers
7. globular-toast ◴[18 Jun 25 06:56 UTC] No.44307303{3}[source]
Careful. This guy doesn't like HN and you'll get a picture of a testicle if you click.
replies(4): >>44309231 #>>44309586 #>>44309966 #>>44311330 #
8. immibis ◴[18 Jun 25 08:58 UTC] No.44308022[source]
So that's one request per 60 seconds - times 3,000,000 or so clients. See the problem? That's 50,000 requests per second.
9. mouse_ ◴[18 Jun 25 12:19 UTC] No.44309231{4}[source]
what a guy
10. ChoGGi ◴[18 Jun 25 13:09 UTC] No.44309586{4}[source]
Better than goatse
11. graealex ◴[18 Jun 25 14:00 UTC] No.44309966{4}[source]
I do like the commitment of registering a whole domain for no other purpose as to be able to spam a single picture, though.
replies(1): >>44325903 #
12. ircop ◴[18 Jun 25 15:45 UTC] No.44310896[source]
More harming I think is that you can redirect all the DMCA complaints that come from aggressive intellectual property holders at a residential IP address. ISPs will just cancel your account, despite how legal running a tracker may be.
13. jldugger ◴[18 Jun 25 16:35 UTC] No.44311330{4}[source]
Whoops, i thought i tested that and it didnt do that for me anymore. must have been a cached response
14. 57473m3n7Fur7h3 ◴[20 Jun 25 09:13 UTC] No.44325903{5}[source]
Everyone else that visits the site from other places get the actual content and not the testicle. So it’s not just that one image. That only shows up when your referrer is HN.