Are the DDoS attacks ever going to be fixed/prevented?

We're already doing better with the new host, but I've contacted the new one about what happened on Fatcow and we'll see what can be done, if anything.

This is more difficult than I imagined.

The only instance I would say is in self defense. Say if we keep getting DDoS'd.

It's likely this is just one guy or a few of them doing this. Going after the entire off topic wouldn't help things here; it would likely just piss more people off.

Smore

This or cookies and cream.

ProBoards wouldn't allow it. Are we allowed to discuss raiding density?

I understand the need to vent your frustration, but you should keep your raiding plans away from these forums; especially the public areas like this that anyone can read.

I'm unable to access the site using my home IP, and have had to use a proxy to even view the site... am I banned or is this a glitch?

By the time you read this your ISP should have found our new IP. You good?

Quote from: Cheat on August 03, 2014, 12:57:52 AM

Quote from: Crouton on August 03, 2014, 12:55:20 AM

Quote from: Cheat on August 03, 2014, 12:51:32 AM

Quote from: Crouton on August 03, 2014, 12:41:42 AM

Quote from: Trojanlord on August 03, 2014, 12:17:50 AM

Quote from: Crouton on August 03, 2014, 12:04:40 AM

"For example Andrew "Weev" Auernheimer was sentenced to 41 months in prison for exposing a security hole on AT&T's servers that publicly revealed iPad users' email addresses. The court ruled that the "loss" to AT&T in his case was $73,000"

Lolwot? "Hey guys don't use this companies internet because at the moment all Ipad users emails are publicly shown" = 41 months in prison. Did I just read that right or did he "show" them their error by hacking/etc. them?

Actually, yes

Sounds like a less-crazy version of Live Free or Die Hard.

This law was the leading factor in Aaron Swartz's suicide, he was looking down the barrel of this law and couldn't handle it. Federal conviction rate is 90+%

Good news for if we can actually catch this guy/guys/whatever. I would pay cash money to sit in on his trial for attacking this forum.

Actually, I would probably have to show up anyway .

pls stream as Rose gets a three year prison sentence.

And then have the gif as an obligatory avatar for everyone.

Quote from: Cheat on August 03, 2014, 12:52:52 AM

Just want to point out that the doctors in the zombie movies never thought it was possible, either...

And armies in war films have little understanding of strategy, and main characters in action films have magic character shields that protect them from environmental damage etc.

Well, of course. The main character can't die; how else would they save the day?

Quote from: Trojanlord on August 03, 2014, 12:17:50 AM

Quote from: Crouton on August 03, 2014, 12:04:40 AM

"For example Andrew "Weev" Auernheimer was sentenced to 41 months in prison for exposing a security hole on AT&T's servers that publicly revealed iPad users' email addresses. The court ruled that the "loss" to AT&T in his case was $73,000"

Lolwot? "Hey guys don't use this companies internet because at the moment all Ipad users emails are publicly shown" = 41 months in prison. Did I just read that right or did he "show" them their error by hacking/etc. them?

Actually, yes

Sounds like a less-crazy version of Live Free or Die Hard.

I won't be posting the logs publicly, but if anyone would like to take a look at them they are welcome to them. PM me.

Quote from: IchEsseKinder on August 02, 2014, 07:52:22 PM

Quote from: Lady Noelle on August 02, 2014, 07:16:05 PM

Does their ISP not have records of the traffic coming from that individual? Even if they do not have programs in place to stop it and nobody is at work at the time, surely they would have records of it once they got back to work the next day or something. I thought that shit was illegal as well.

It's far more complicated than that. People download programs, like Tor, and utilize other functions such as multiple proxies and IP addresses. It's why finding people who commit DoS attacks makes it nearly impossible. It's kinda like a criminal moving around constantly to different safehouses and using lots of false identities to hide

Okay, but as Comms is our No1 suspect right now, if Cheat gets the list can't we just see if his IP matches any of them?

I can compare the list of IPs (assuming I get them) to any that have logged in here, but that's all I can really do to see if it was him.

I'll request a list from the old host. Maybe they'll give it to me.

Quote from: Cheat on August 02, 2014, 06:39:31 PM

Quote from: Meta Cognition on August 02, 2014, 06:29:00 PM

*sigh*

Everything's okay now.

I basically got like three hours of sleep because I had to fix everything and get the database uploaded. This DDoS shit is a nightmare.

who did it?

I'll post what I know in the thread in Updates. Wait for it.

In case you didn't know, yesterday night the forum was hit by a major DDoS attack that crashed the server and took the host's website offline for an hour. They've basically told me they cannot tell who was behind the attack because it involved many different IP addresses and the combined requests were several gigabytes worth. They kicked the site off of their server and we now have a new one.

But since we have a new server, some stuff might still fuck up. Namely, remember that error that would pop up in the beginning (max_questions)? That is now once again possible, so I'm trying to work with this host in order to fix it before it happens.

We can also get hit by this attack again, if the jerk is so inclined. I will be looking into things I can do to guard against it, but it's very difficult to stop an attack of the magnitude we experienced.

More on this stuff as I know more.

EDIT: your avatar is now broken if you uploaded one. You need to re-upload it.

What we know:

Your site is under a major DDoS attack. We have null routed the domain to stop the traffic effecting our servers. We will have to ask you to find alternate hosting for your domain as our platform can no longer support you.

The traffic was coming from a multitude of sources, it's most likely that some form of botnet was responsible. At it's peak we were receiving ~10gb of inbound traffic to the domain. Unfortunately in extreme cases like this we do have to advise that a site cannot be hosted on our shared platform in order to ensure services remain reliable for other users.

UPDATE: Some strange shit is afoot. As most of you probably know, Crouton and I have been working on figuring out who was able to DDoS the site and knock us right out of our host. Well... It gets kind of sketchy.

I requested the UDP Traffic logs from Fatcow to see what the fuck was going on, and was transferred to several people before they basically said they didn't keep track of them. Read below (unedited):

   

Hello,

Thank you for contacting support.

I have escalated your issue to our Technical Specialist to provide UDP traffic logs for your host . You should be hearing from them within 12-24 hours.

If you have any questions in the meantime, please let us know and be sure to refer to the link http://www.fatcow.com/member/sconsole for the quickest service.

Sincerely,

Shravya U
Customer Support

Hello,

I will be handing this ticket over to one of our System Administrators to check if we can provide UDP traffic logs . We cannot assure that we can provide the logs. We will update the ticket regarding this soon. You should be hearing from them within 12-24 hours. If you have any questions in the meantime, please let us know and be sure to refer to the link http://www.fatcow.com/member/sconsole for the quickest service.

Sincerely,

Prithviraj K
Technical Specialist

Hello,

Im sorry to inform you that, unfortunately we are not logging UDP traffic for customer site.

For any further assistance in need, please update Support Console.

Sincerely,

Kalandar M
Technical Specialist

If that's not strange enough, I did a little searching for reviews on the hosting service and came across this:

We are a Internet Radio station that was running on a dedicated server at another hosting company. We moved to FATCOW to save money thinking we would get the same or better service. After only 2 days on their servers, they shut off our account and website without ANY warning. They claimed we caused a DDOS attack and thus they suspended our account. They would not allow us to talk with Tier 3 support or explain what happened.

They simply told us to go away. We moved our site to a better know hosting/registrar.

I am a Cisco Engineer with over 25 years in this business. I have never been treated in this manner.

STAY AWAY FROM FATCOW!!!

It's pretty much word for word what happened to us, save for the dedicated server. So... I'm not so sure what happened anymore. It's true that when we switched hosts, someone was trying to bring the site down (and mostly failing, since it only slowed everything down), but it definitely wasn't of the same caliber as the first attack.

Very fucking strange.

This topic has been moved to Gaming.

http://sep7agon.net/index.php?topic=254.0