[FFmpeg-devel] Forensics Was: [RFC] statictrac, trac and caching
Michael Niedermayer
michael at niedermayer.cc
Sun Jun 15 18:58:59 EEST 2025
Hi Derek
On Sun, Jun 15, 2025 at 02:53:57PM +0100, Derek Buitenhuis wrote:
> On 6/15/2025 2:42 PM, Michael Niedermayer wrote:
> > for the record, heres btw the 100 IP addresses from where the attack yesterday
> > happened: (i think timo said there where more addresses later but thats the list
> > when i looked)
>
> These look like residential IPs from a botnet (all same ISP, so possibly compromised
> IoT device).
I hoped someone just made a honest mistake with their AI agents.
But if its a botnet
why would a botnet target ffmpegs bug tracker ?
Its expensive (in terms of computations) to solve anubis repeatedly.
A botnet is there to make some criminal a profit
>
> Publishing these seems in poor taste.
Publishing is neccessary a first step so people can check if anyone did this
by mistake or if anyone knows where this came from.
Speaking of that. Do you have any idea, hunch or knowledge where this may
have come from ?
Or about anyone who might do this or pay a botnet operator to do this ?
thx
[...]
--
Michael GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB
No snowflake in an avalanche ever feels responsible. -- Voltaire
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 195 bytes
Desc: not available
URL: <https://ffmpeg.org/pipermail/ffmpeg-devel/attachments/20250615/46ebb376/attachment.sig>
More information about the ffmpeg-devel
mailing list