Mitigating the DDOS attacks. Possibilities inside.

Krazed · #1 07-27-2013, 10:13 AM

Found this today. Haven't thought too muh into it (still half asleep).

Could this possibly work for us? The only issues I see would be possible delays in response time to/from server and client.

Again, haven't thought too much into it. Just trying to help as I see how this works well from a website mitigation perspective.

http://arstechnica.com/security/2013...mhaus-offline/

http://en.m.wikipedia.org/wiki/Anycast

thryme · #2 07-27-2013, 10:50 AM

Sounds expensive to employ any company to help with this.

Swish · #3 07-27-2013, 10:52 AM

DDoS'er will run out of funds at some point... funny how people will burn money on DDoS'ing services. I wonder if he's tweeting live from mom's basement?

khanable · #4 07-27-2013, 11:43 AM

Why does everyone assume the person behind the ddos is paying for it?

Bad assumption

Pringles · #5 07-27-2013, 11:46 AM

Quote:

Originally Posted by khanable [You must be logged in to view images. Log in or Register.]

Why does everyone assume the person behind the ddos is paying for it?

Bad assumption

thryme · #6 07-27-2013, 12:42 PM

Quote:

Originally Posted by khanable [You must be logged in to view images. Log in or Register.]

Why does everyone assume the person behind the ddos is paying for it?

Bad assumption

I agree - I was just thinking hiring a company to combat it for us would seem to be costly.

Glorindale · #7 07-27-2013, 01:19 PM

Do we know that p1999 is even the target? A DDOS attack could cause congestion on a network segment that just happens to be shared with the true target which effectively denies service to EVERYONE who shares that segment. If it is truely targeted at p1999 servers many times these attacks are sourced from a single (or maybe a few regions) such as China. You could mitigate the effectiveness of the attack by blocking traffic to IP ranges used in these regions. In fact if the server is hosted somewhere I'm sure the staff of the facility would love to help push these DOS traffic out and would love to help.

Clark · #8 07-27-2013, 01:23 PM

We know it's DDOS and duping because 8 AONs showed up for sale

Glorindale · #9 07-27-2013, 01:26 PM

Quote:

Originally Posted by khanable [You must be logged in to view images. Log in or Register.]

Why does everyone assume the person behind the ddos is paying for it?

Bad assumption

I wouldn't assume that someone is paying for it. Nor would I assume these is some uber hacker who has compromised thousands of computers who would use them to DDOS a free EQ server responsible for the attack.

Glorindale · #10 07-27-2013, 01:30 PM

Quote:

Originally Posted by Clark [You must be logged in to view images. Log in or Register.]

We know it's DDOS and duping because 8 AONs showed up for sale

Ah...so we know that the server has to actually be rebooted to restore service? Ok...that makes sense then.

If the majority of the attacking computer are in North America it becomes much harder since that is where the majority of players are. However, if it is outside of North America I saw screw them and just start blocking IP rangers.