Continued DDoS Attack | Veterancraft Dedicated Server | Forum

A A A

Please consider registering
guest

sp_LogInOut Log In sp_Registration Register

Register | Lost password?
Advanced Search

— Forum Scope —




— Match —





— Forum Options —





Minimum search word length is 4 characters - maximum search word length is 84 characters

sp_Feed Topic RSS dirt
Continued DDoS Attack
Topic Rating: +1 (1 votes) 
March 13, 2014
6:18 pm
frelling
Senior Tech
Forum Posts: 3264
Member Since:
August 18, 2011
sp_UserOfflineSmall Offline

Sadly, the DDoS (Distributed Denial of Service) attacks continue. They have been fairly continuous since 15:15 EST. While our server can handle the additional load and ride out such attacks, our data center has to protect its resources. Although the attack is directed at our server, it is not the only server on our data center's network. The increased traffic from such attacks also affects other servers' performance and ability to communicate unobstructed. Thus, our Data Center has no option but to null-route (i.e. packets go into the bit bucket, never to be seen again) our address so that traffic does not make it into their internal network.

Given the length of this attack, it has escalated beyond a simple prank. Furthermore, since most attacking addresses come from, or are spoofed to come from, the Netherlands, this has become a US threat. That said, I've been working with the data center staff and have collected logs from their and our IDS (Intrusion Detection System). I have created attack profiles and summaries - it helps when you work in a related field. These profiles and reports have been forwarded to a couple of good acquaintances of mine at our FBI Cybercrime Division nearby. Its peaked their interest. Upon request, I furnished a list of recent "disgruntled customers". I made a few contacts at last year's Interpol Cybercrime Conference in The Hague. I'll see if I can pull a favor or rattle some cages directly or indirectly to have them look at it from the purported source of these attacks.

Unfortunately, there is no option but to weather the storm. Like I said, our server can handle the load, but I agree that our data center needs to look out for all their clients. The bad news is that as long as the attacks continue, the data center will continue blocking access to our server. The good news is that as long as the attacks continue, the more data we and the data center can collect to prepare and forward to the appropriate authorities. It wouldn't be the first time that someone got their ass thrown in the slammer for something that started out as a prank.

Human beings, who are almost unique in having the ability to learn from the experiences of others, are also remarkable for their disinclination to do so. - D. Adams
March 13, 2014
6:24 pm
sts512
Member
Members
Forum Posts: 109
Member Since:
February 4, 2013
sp_UserOfflineSmall Offline
2sp_Permalink sp_Print
+1

You have contacts in the FBI?

 

Remind me to never mess with frelling.Wink Thanks for working to resolve this!

#swoloyag
March 13, 2014
7:46 pm
SlocumFamily2
Member
Members


Knight
Forum Posts: 223
Member Since:
January 13, 2014
sp_UserOfflineSmall Offline

So I shouldn't talk about bit torrents around here?

 

Anyway...this sounds far more serious than ever suspected.  I figured it was some stupid kids going nuts cause someone pissed them off.  But this sounds out of control at time.

And worse yet.. someone hates Minecraft!  How dare they!?!?!Wink

March 13, 2014
8:51 pm
Caveman_Dave
Narnia
Member
Members
Forum Posts: 30
Member Since:
May 20, 2013
sp_UserOfflineSmall Offline

Once again, your signature proves accurate. Let us hope that this clears up when I have some free time so I can get back on :P

See you on the server!
March 14, 2014
1:19 am
SpyBorg
Essex U.K
Member

Ambassador

Members
Forum Posts: 88
Member Since:
November 10, 2013
sp_UserOfflineSmall Offline

Thanks for the heads up frelling, I wondered what was going on with web site.

March 14, 2014
9:49 am
Caveman_Dave
Narnia
Member
Members
Forum Posts: 30
Member Since:
May 20, 2013
sp_UserOfflineSmall Offline

The computer scientist part of me got to thinking last night, and I began to wonder what exactly the attacks consist of. Could you share this information without compromising the security of the server and the website? (Forgive me if that has a super obvious answer; I only seek knowledge.) If it is possible to share it without harm to the server, may we have access to that information? It may allow us to recognize these attacks sooner and inform the correct personnel as soon as possible.

Thanks if you can help!

See you on the server!
March 14, 2014
10:20 am
SlocumFamily2
Member
Members


Knight
Forum Posts: 223
Member Since:
January 13, 2014
sp_UserOfflineSmall Offline

It's me.

I flew to the Netherlands with a hammer and am randomly pounding on the big, black, server box that says "VeteranCraft" on it.

Sorry.

March 14, 2014
12:47 pm
frelling
Senior Tech
Forum Posts: 3264
Member Since:
August 18, 2011
sp_UserOfflineSmall Offline

Caveman_Dave said
The computer scientist part of me got to thinking last night, and I began to wonder what exactly the attacks consist of. Could you share this information without compromising the security of the server and the website? (Forgive me if that has a super obvious answer; I only seek knowledge.) If it is possible to share it without harm to the server, may we have access to that information? It may allow us to recognize these attacks sooner and inform the correct personnel as soon as possible.

Thanks if you can help!

Generically speaking the DoS attacks were comprised of the usual stuff, that any Google search for DOS, DDOS, or Denial of Service will tell you more about it - malformed packets, syn floods, illegal handshakes, etc. , etc. As far processes and data mining techniques we use to correlate information from various sources, that's proprietary information.

Human beings, who are almost unique in having the ability to learn from the experiences of others, are also remarkable for their disinclination to do so. - D. Adams
March 15, 2014
10:16 am
frelling
Senior Tech
Forum Posts: 3264
Member Since:
August 18, 2011
sp_UserOfflineSmall Offline

Well, it appears that they are not yet done having their fun. New vector and a whole new set of zombies. Oh well, more info to forward on. Sunny day today, but I guess its still stormy in the digital world Wink

Human beings, who are almost unique in having the ability to learn from the experiences of others, are also remarkable for their disinclination to do so. - D. Adams
March 16, 2014
9:32 pm
SlocumFamily2
Member
Members


Knight
Forum Posts: 223
Member Since:
January 13, 2014
sp_UserOfflineSmall Offline
10sp_Permalink sp_Print
0

Sunday Night:  Yell  I wanna slap the you-know-what out of whomever is doing this.

Sigh.

This is really getting old.  Cry

Forum Timezone: America/New_York

Most Users Ever Online: 442

Currently Online:
22 Guest(s)

Currently Browsing this Page:
1 Guest(s)

Top Posters:

Emulated: 3206

ryanpitts: 1300

Dalferes: 747

Pherian: 660

Okarim: 594

Member Stats:

Guest Posters: 10

Members: 13138

Moderators: 3

Admins: 2

Forum Stats:

Groups: 8

Forums: 45

Topics: 6229

Posts: 27411

Newest Members: BlakeLox, OliverCeD, BillieHielm, SuzanVug, OscarBub, KarenLew, NancyFub, ChrisOpemo, EmilioRot, howardwiliams2, ArchieSmoor, Robertprums, Apofautt, RobertIcona, JohnnyKnima, frequency-drive.ru OVT01, JamesZoozy, Richardbouct, frequency-drive.ru DPI16, frequency-drive.ru NAG16

Moderators: terrorisly: 424, mudwog: 127, LightWarriorK: 2154

Administrators: meatbawllz: 2475, frelling: 3264