this post was submitted on 29 Apr 2025
539 points (97.5% liked)

Technology

69600 readers
3128 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
L4s@hackingne.ws
539
I use Zip Bombs to Protect my Server (idiallo.com)
submitted 2 days ago by some_guy@lemmy.sdf.org to c/technology@lemmy.world
97 comments fedilink hide all child comments
 

The one-liner:

dd if=/dev/zero bs=1G count=10 | gzip -c > 10GB.gz

This is brilliant.

you are viewing a single comment's thread
view the rest of the comments
[–] deaddigger@lemm.ee 20 points 2 days ago (15 children)

At least in germany having one of these on your system is illegal

[–] dzso@lemmy.world 12 points 2 days ago (11 children)

Out of curiosity, what is illegal about it, exactly?

[–] deaddigger@lemm.ee 16 points 2 days ago* (last edited 1 day ago) (10 children)

I mean i am not a lawyer.

In germany we have § 303 b StGB. In short it says if you hinder someone elses dataprocessing through physical means or malicous data you can go to jail for up to 3 years . If it is a major process for someone you can get up to 5 and in major cases up to 10 years.

So if you have a zipbomb on your system and a crawler reads and unpacks it you did two crimes. 1. You hindered that crawlers dataprocessing 2. Some isp nodes look into it and can crash too. If the isp is pissed of enough you can go to jail for 5 years. This applies even if you didnt crash them due to them having protection against it, because trying it is also against the law.

Having a zipbomb is part of a gray area. Because trying to disrupt dataprocessing is illegal, having a zipbomb can be considered trying, however i am not aware of any judgement in this regard

Edit: btw if you password protect your zipbomb, everything is fine

[–] raltoid@lemmy.world 2 points 2 days ago* (last edited 2 days ago) (1 children)

TL;DR: It's illegal to have publically available or share.

Making it illegal to create one for research purposes on your own hardware is not illegal as far as I know. And if it is, I wouldn't mind seeing someone challenge that with the EU.

[–] deaddigger@lemm.ee 1 points 1 day ago

For research purposes you could make it password protected, which would make it legal, though. Like i said having one is a gray area, because the law is made extremly vague. Like i said i dont know of any judgements about it, but it is still a possibility. If you life in germany and are inclined for an archive bomb and care about your legal safety contact a lawyer beforehand

load more comments (8 replies)
load more comments (8 replies)
load more comments (11 replies)