33 replies to this topic

[Joshua]

Bronies must be really hated if people are willing to destroy a website based on My Little Pony.
Who the heck can be bothered to do that?

[Nollog]

Bronies must be really hated if people are willing to destroy a website based on My Little Pony.
Who the heck can be bothered to do that?

Why take down PSN?
Why defend a console to the death?
Why anything?

[BIOS]

I guess it's just me, but I still find a DDOS to be the easy way out. It doesn't cause any real damage to small websites like the mlp forums, other then temporarily delay postings.

[Nollog]

It caused their hosting company to kick them off their servers.

[BIOS]

But in the end it always comes back, nothing is lost.

And if their server doesn't have proper DDOS protection yet, then it's best that they find a new one.

And while I know that it's technically impossible to be 100% protected from DDOS attacks. There are plenty of measures that can be taken to prevent them from happening. A popular method is iptables.

Edited by BIOS, 11 May 2012 - 12:07 PM.

[Joshua]

Why take down PSN?
Why defend a console to the death?
Why anything?

I guess the immense power of hate and pride is enough to make someone do the above.

Edited by Joshua, 11 May 2012 - 10:14 PM.

[Xiombarg]

And while I know that it's technically impossible to be 100% protected from DDOS attacks. There are plenty of measures that can be taken to prevent them from happening. A popular method is iptables.

In the end, a sheer amount of anonymous users can still take down a site with iptables. They've done it before with government run sites, so MLP should be just as easy for them with less possibilities of legal action.

[BIOS]

In the end, a sheer amount of anonymous users can still take down a site with iptables.  They've done it before with government run sites, so MLP should be just as easy for them with less possibilities of legal action.

In the end the point is that it's always smart to take precautions.

P.S. I doubt the botnet that attacked MLP forms is the size of the botnet that was needed to take down a government site.

Here I found some stuff for you guys to look over. Maybe it will help.

http://www.unixsurgeon.com/kb/how-to-prevent-from-ddos.html

http://deflate.medialayer.com/

http://seclists.org/basics/2012/Feb/131

Of course, Most options will hinge on how far you are willing to go. So I suggest taking some time to think about if it's worth it, and if the attackers are likely to strike again.

Edited by BIOS, 13 May 2012 - 10:47 PM.

[Xiombarg]

P.S. I doubt the botnet that attacked MLP forms is the size of the botnet that was needed to take down a government site.

Of course, that's a given. I'm just saying that if the MLP forums can still be taken down even with enough security measures... The Equestria Daily and Ponychan sites probably have better security than MLP forums as they are larger targets and I almost have never heard of them being down.

[BIOS]

Of course, that's a given.  I'm just saying that if the MLP forums can still be taken down even with enough security measures...

I know, I acknowledge the fact that with a large enough botnet you could theoretically take down whatever site you so choose. I just want to give some ideas of preventing DDOS attacks, so that if the botnet is small enough, we won't see this problem again -- hopefully.

[Nollog]

Of course, Most options will hinge on how far you are willing to go. So I suggest taking some time to think about if it's worth it, and if the attackers are likely to strike again.

I think they've been under attack all but constantly for the past month.
http://mlpforums.com...rs/#entry337644

[BIOS]

I think they've been under attack all but constantly for the past month.
http://mlpforums.com...rs/#entry337644

It seems that they're currently doing better on their new sever. Anyways, it may still be a good idea to think this over.

[Feld0]

But in the end it always comes back, nothing is lost.

And if their server doesn't have proper DDOS protection yet, then it's best that they find a new one.

And while I know that it's technically impossible to be 100% protected from DDOS attacks. There are plenty of measures that can be taken to prevent them from happening. A popular method is iptables.

One does not simply get a server with "proper" DDOS protection. To be frank, "properly" DDOS-protected servers are well beyond my budget, and there's a good reason most hosting companies don't offer any such protection - the necessary hardware to implement it properly is extremely expensive (the idea is that you want to mitigate the attack before it reaches the server it is targeted at).

In the end the point is that it's always smart to take precautions.

P.S. I doubt the botnet that attacked MLP forms is the size of the botnet that was needed to take down a government site.

Here I found some stuff for you guys to look over. Maybe it will help.

http://www.unixsurge...-from-ddos.html

http://deflate.medialayer.com/

http://seclists.org/...cs/2012/Feb/131

Of course, Most options will hinge on how far you are willing to go. So I suggest taking some time to think about if it's worth it, and if the attackers are likely to strike again.

I've set up Deflate, and CSF's anti-DDOS measures are already configured. The botnet that attacked MLP Forums was, at any rate, large enough to create a 1 Gbps UDP flood.

Of course, that's a given. I'm just saying that if the MLP forums can still be taken down even with enough security measures... The Equestria Daily and Ponychan sites probably have better security than MLP forums as they are larger targets and I almost have never heard of them being down.

Equestria Daily is hosted on Blogger, so asking someone to DDOS it is pretty much asking them to DDOS Google. As for Ponychan, they've fallen prey to DDOS attacks in the past.

The attacks do seem to have subsided, at any rate. Combined with the awesome new dedicated server I moved everything to, things should be running faster and smoother than ever before.

[Auzzie Wingman]

It's good to know my favourite site will still flow like a breeze.