It looks like you're using an Ad Blocker.
Please white-list or disable AboveTopSecret.com in your ad-blocking tool.
Thank you.
Some features of ATS will be disabled while you continue to use an ad-blocker.
DDoS Attacks?
page: 2share:
a reply to: DontTreadOnMe
That's right about when I started having problems. I was on the Library of Congress site which is .gov and started having issues. Tried to go to a county website for a file and it was down. Then tried to go to isitdown and it was down.
That's when I noticed it was trending. I was happy to see ATS was up so I could see if anyone else had any ideas.
That's right about when I started having problems. I was on the Library of Congress site which is .gov and started having issues. Tried to go to a county website for a file and it was down. Then tried to go to isitdown and it was down.
That's when I noticed it was trending. I was happy to see ATS was up so I could see if anyone else had any ideas.
a reply to: Identified
I really thought it was my ISP at first. IT ws odd as most of the down sites were political....so then I thought it was probably more widespread.
I still don't understand what happened...it wasn't a DDoS?????
I really thought it was my ISP at first. IT ws odd as most of the down sites were political....so then I thought it was probably more widespread.
I still don't understand what happened...it wasn't a DDoS?????
a reply to: DontTreadOnMe
That's why I was suspect because it was gov sites I noticed first as well.
Seems Cloudflare is saying it was all them because they had some sort of DNS problem and things weren't routing correctly. They say it wasn't an attack.
If you look at their site status they are still rerouting as of now.
That's why I was suspect because it was gov sites I noticed first as well.
Seems Cloudflare is saying it was all them because they had some sort of DNS problem and things weren't routing correctly. They say it wasn't an attack.
If you look at their site status they are still rerouting as of now.
a reply to: DontTreadOnMe
Cloudflare provides ddos protection and dns routing for many websites, if cloudflare goes down those sites go down.
Cloudflare provides ddos protection and dns routing for many websites, if cloudflare goes down those sites go down.
a reply to: Identified
Others can chime in on this. The internet has thousands of routers. Where I get my email account from, Sunset Systems in Ypsilanti, is along US12 where the part of the backbone of the internet runs. In their building is a router. At one point, before they moved in the mid 90s, they wanted me to house the router in my house because I was a half mile from the backbone.
The routers are all over the place and their job is to make the information goes to the correct server. If I understand this correctly, this is where your ping hops come from.
Directly from the 1990s, here are some maps at the Centauri Communications site.
The entire concept and the way they do it is pretty cool and at the same time archaic - simply because that's the way it was designed.
centaurico.com
Others can chime in on this. The internet has thousands of routers. Where I get my email account from, Sunset Systems in Ypsilanti, is along US12 where the part of the backbone of the internet runs. In their building is a router. At one point, before they moved in the mid 90s, they wanted me to house the router in my house because I was a half mile from the backbone.
The routers are all over the place and their job is to make the information goes to the correct server. If I understand this correctly, this is where your ping hops come from.
Directly from the 1990s, here are some maps at the Centauri Communications site.
The entire concept and the way they do it is pretty cool and at the same time archaic - simply because that's the way it was designed.
centaurico.com
edit on 17-7-2020 by billxam because: poor sentence
construction
originally posted by: DontTreadOnMe
a reply to: Identified
I really thought it was my ISP at first. IT ws odd as most of the down sites were political....so then I thought it was probably more widespread.
I still don't understand what happened...it wasn't a DDoS?????
If cloudfare is/was the problem, then it's happened before,
blog.cloudflare.com...
extract from Clouflare's post mortem,
The cause of the outage was a system-wide failure of our edge routers. CloudFlare currently runs 23 data centers worldwide. These data centers are connected to the rest of the Internet using routers. These routers announce the path that, from any point on the Internet, packets should use to reach our network. When a router goes down, the routes to the network that sits behind the router are withdrawn from the rest of the Internet.
We regularly will shut down one or a small handful of routers when we are upgrading a facility. Because we use Anycast, traffic naturally fails to the next closest data center. However, this morning we encountered a bug that caused all of our routers to fail network wide.
Flowspec
We are largely a Juniper shop at CloudFlare and all the edge routers that were affected were from Juniper. One of the reasons we like Juniper is their support of a protocol called Flowspec. Flowspec allows you to propagate router rules to a large number of routers efficiently. At CloudFlare, we constantly make updates to the rules on our routers. We do this to fight attacks as well as to shift traffic so it can be served as fast as possible.
This morning, we saw a DDoS attack being launched against one of our customers. The attack specifically targeted the customer's DNS servers. We have an internal tool that profiles attacks and outputs signatures that our automated systems as well as our ops team can use to stop attacks. Often, we use these signatures in order to create router rules to either rate limit or drop known-bad requests.
In this case, our attack profiler output the fact that the attack packets were between 99,971 and 99,985 bytes long. That's odd to begin with because the largest packets sent across the Internet are typically in the 1,500-byte range and average around 500 – 600 bytes. We have the maximum packet size set to 4,470 on our network, which is on the large size, but well under what the attack profiler was telling us was the size of these attack packets.'
That's from, 3 March 2013, 01:47 pm. That was a DDoS attack.
Sorry, for the double post I can't edit my last post but details about today's outage
blog.cloudflare.com...
blog.cloudflare.com...
Not sure if it’s the same thing... but...
On Tuesday, MS issued a CVE patch for DNS servers.
The same “remote code” thing seems possible (iirtc) and is because of a level of sharing between DNS servers (no longer a server admin, I am not a definitive source! Just ask the longtime resident science guy who schooled me twice in an hour and put me straight today!)
Seems that they “feel” they are describing the same remote code execution that can lead to what appears to be a DDoS attack as people can’t reach the next page on the same sight. (Or get a proxy warning at the main page due to how web pages load).
Not a “state sponsored attack” against certain sites but a probe over not being current on patches (still might be state sponsored, but not necessary).
Will love to hear the details in a few weeks as they process the event.
And
On Tuesday, MS issued a CVE patch for DNS servers.
The same “remote code” thing seems possible (iirtc) and is because of a level of sharing between DNS servers (no longer a server admin, I am not a definitive source! Just ask the longtime resident science guy who schooled me twice in an hour and put me straight today!)
Seems that they “feel” they are describing the same remote code execution that can lead to what appears to be a DDoS attack as people can’t reach the next page on the same sight. (Or get a proxy warning at the main page due to how web pages load).
Not a “state sponsored attack” against certain sites but a probe over not being current on patches (still might be state sponsored, but not necessary).
Will love to hear the details in a few weeks as they process the event.
And
new topics
-
George Stephanopoulos and ABC agree to pay $15 million to settle Trump defamation suit
Mainstream News: 4 hours ago -
More Bad News for Labour and Rachel Reeves Stole Christmas from Working Families
Regional Politics: 10 hours ago -
Light from Space Might Be Travelling Instantaneously
Space Exploration: 11 hours ago
top topics
-
The Mystery Drones and Government Lies
Political Conspiracies: 14 hours ago, 14 flags -
George Stephanopoulos and ABC agree to pay $15 million to settle Trump defamation suit
Mainstream News: 4 hours ago, 13 flags -
Light from Space Might Be Travelling Instantaneously
Space Exploration: 11 hours ago, 9 flags -
2025 Bingo Card
The Gray Area: 12 hours ago, 7 flags -
The MSM has the United Healthcare assassin all wrong.
General Conspiracies: 12 hours ago, 7 flags -
More Bad News for Labour and Rachel Reeves Stole Christmas from Working Families
Regional Politics: 10 hours ago, 7 flags
active topics
-
Drones everywhere in New Jersey
Aliens and UFOs • 137 • : KrustyKrab -
George Stephanopoulos and ABC agree to pay $15 million to settle Trump defamation suit
Mainstream News • 9 • : WeMustCare -
The Mystery Drones and Government Lies
Political Conspiracies • 68 • : 38181 -
Pelosi injured in Luxembourg
Other Current Events • 35 • : WeMustCare -
The MSM has the United Healthcare assassin all wrong.
General Conspiracies • 10 • : StoutBroux -
One out of every 20 Canadians Dies by Euthanasia
Medical Issues & Conspiracies • 22 • : BernnieJGato -
Light from Space Might Be Travelling Instantaneously
Space Exploration • 22 • : Freeborn -
They Know
Aliens and UFOs • 85 • : ARM19688 -
Nov 2024 - Former President Barack Hussein Obama Has Lost His Aura.
US Political Madness • 14 • : xuenchen -
2025 Bingo Card
The Gray Area • 15 • : onestonemonkey