First off, be very careful with bs=1G as it may overload the RAM. You will want to set count accordingly
this post was submitted on 29 Apr 2025
558 points (97.4% liked)
Technology
69600 readers
3281 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related news or articles.
- Be excellent to each other!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
- Check for duplicates before posting, duplicates may be removed
- Accounts 7 days and younger will have their posts automatically removed.
Approved Bots
founded 2 years ago
MODERATORS
Yup, use something sensible like 10M or so.
I would normally go much lower,
bs=4K count=262144 which creates 1G with 4K block size
At least in germany having one of these on your system is illegal
Out of curiosity, what is illegal about it, exactly?
I mean i am not a lawyer.
In germany we have § 303 b StGB. In short it says if you hinder someone elses dataprocessing through physical means or malicous data you can go to jail for up to 3 years . If it is a major process for someone you can get up to 5 and in major cases up to 10 years.
So if you have a zipbomb on your system and a crawler reads and unpacks it you did two crimes. 1. You hindered that crawlers dataprocessing 2. Some isp nodes look into it and can crash too. If the isp is pissed of enough you can go to jail for 5 years. This applies even if you didnt crash them due to them having protection against it, because trying it is also against the law.
Having a zipbomb is part of a gray area. Because trying to disrupt dataprocessing is illegal, having a zipbomb can be considered trying, however i am not aware of any judgement in this regard
Edit: btw if you password protect your zipbomb, everything is fine
TL;DR: It's illegal to have publically available or share.
Making it illegal to create one for research purposes on your own hardware is not illegal as far as I know. And if it is, I wouldn't mind seeing someone challenge that with the EU.
load more comments
(1 replies)
load more comments
(7 replies)
Maybe bots shouldn't be trying to install malicious code? Sucks to suck.
Still illegal. Not immoral, but a lot of our laws aren't built on morality.
Illegal to publically serve or distribute.
Funny part is many of us crusty old sysadmins were using derivatives of this decades ago to test RAID-5/6 sequencial reads and write speeds.
I want to know he they built that visualization
Interesting. I wonder how long it takes until most bots adapt to this type of "reverse DoS".
Then we'll just be more clever as well. It's an arms race after all.
How I read that code:
"If the dev folder's bullshit is equal to 1 gram..."
This is why I use things like Docusaurus to generate static sites. Vulnerability injections are pretty hard when there's no code to inject into.
❤️