jesse
Touchdown! Greaser!
Access to PoA this morning has been intermittent and it may go down again. We're currently responding to what is likely a DDOS attack against another part of our network and PoA isn't a priority at this point.
Network issues
- Thread starter jesse
- Start date
denverpilot
Tied Down
Not fun. Hope you got it sorted.
jesse
Touchdown! Greaser!
It's sorted in the sense that it stopped and we hope it doesn't happen again as it flooded our upstream interfaces beyond our ability to even have a chance of figuring out what was going on.
Who's in favor of the death penalty for miscreants who hack networks and create viruses to spread misery to countless people they don't know?
I'm in favor.
DFH65
En-Route
- Joined
- Jun 29, 2013
- Messages
- 2,609
- Display Name
Display name:
DFH65
We have dealt with these from time to time. Typically they stop and then start again. You can try to null route the main ip address they come in on but if there is an infected machine inside that phones home it will just follow you. The last one we had went on for about an hour we got it to stop 2 or 3 times and it eventually just went away.
The question always is why are they targeting you.
The question always is why are they targeting you.
jesse
Touchdown! Greaser!
In this case killing the address space under attack simply isn't an option. We'd rather fight it and risk everything being down then kill that one incredibly important thing completely.
As to the reason they attacked? Who the hell knows. The particular resource under attack was a non-profit website and application that raises lots of money for cancer research. Why someone would spend their time trying to knock it offline I have no idea.
JeffDG
Touchdown! Greaser!
Aye!!
JeffDG
Touchdown! Greaser!
Some people are just incredibly annoying jerks.
DFH65
En-Route
- Joined
- Jun 29, 2013
- Messages
- 2,609
- Display Name
Display name:
DFH65
Recently we have been dealing with a plethora of phishing attacks and the knuckleheads who fall for them. So frustrating when you tell people over and over again we will never ask for your password. "But it looked so legit." 
It doesn't take much to get a DOS attack as a matter of fact look around the dark places of the internet and there are plenty of people advertising bot net armies and you can pay for an attack of any length and size you want.
It doesn't take much to get a DOS attack as a matter of fact look around the dark places of the internet and there are plenty of people advertising bot net armies and you can pay for an attack of any length and size you want.
denverpilot
Tied Down
He who dies with the most bandwidth, wins!
We were discussing yesterday how someone could basically destroy most small and medium businesses Internet pipes very cheaply with a few droplets fired up on DigitalOcean for an hour or two, and how unbelievably cheap that would be.
We have ass hats running script kiddie bull**** from Amazon's cloud against our Production machines. Amazon doesn't care. It pays their bills.
denverpilot
Tied Down
By the way there are companies who for a large sum will announce your BGP space to come to their massively connected server farms, drop the malicious traffic, and forward on the real stuff to your servers. It's really only cost effective for giant DDoS attacks against massive websites making serious money. Numerous online casinos have had to utilize these services when attacked at important getting times. Articles about it a few years ago in a few security trade rags.
How about just death penalty for anyone who spreads misery period?
I think we need a bit more specificity for the death penalty.
Population is 7.x billion and growing, I don't think we need any more specificity at all.
mkosmo
Pattern Altitude
Or get your ISPs to install IPSs for you upstream of you and drop the traffic before it ever makes it to your circuits.