Hi Derek

On Sun, Jun 15, 2025 at 02:53:57PM +0100, Derek Buitenhuis wrote:
> On 6/15/2025 2:42 PM, Michael Niedermayer wrote:
> > for the record, heres btw the 100 IP addresses from where the attack yesterday
> > happened: (i think timo said there where more addresses later but thats the list
> > when i looked)
> 
> These look like residential IPs from a botnet (all same ISP, so possibly compromised
> IoT device).

I hoped someone just made a honest mistake with their AI agents.

But if its a botnet
why would a botnet target ffmpegs bug tracker ?
Its expensive (in terms of computations) to solve anubis repeatedly.
A botnet is there to make some criminal a profit


> 
> Publishing these seems in poor taste.

Publishing is neccessary a first step so people can check if anyone did this
by mistake or if anyone knows where this came from.

Speaking of that. Do you have any idea, hunch or knowledge where this may
have come from ?
Or about anyone who might do this or pay a botnet operator to do this ?

thx

[...]
-- 
Michael     GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB

No snowflake in an avalanche ever feels responsible. -- Voltaire