Announcement

Collapse
No announcement yet.

Downtime?!

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • #16
    We've spoken to both the FBI in the US and the High tech crime unit in the UK without any result.

    The only solution is to block the IP's as they come through. Though browsing has returned to normal for me at the moment.
    Scott MacVicar

    My Blog | Twitter

    Comment


    • #17
      just thought i'd let you all see what the sort of spikes we're talking about.

      Blue traffic is from the internet to our server
      Green traffic is from our server to the internet.
      text labels are back to front since this is taken from the router
      Attached Files
      Scott MacVicar

      My Blog | Twitter

      Comment


      • #18
        Are you still under attack?

        Murf

        Comment


        • #19
          Not at this particular second.

          Comment


          • #20
            Originally posted by Scott MacVicar
            just thought i'd let you all see what the sort of spikes we're talking about.

            Blue traffic is from the internet to our server
            Green traffic is from our server to the internet.
            text labels are back to front since this is taken from the router
            All that shows is a 30 min average of 8 meg a sec

            How can VO be flooded at 8 meg?

            Apologies of I missed something.
            http://forums.cpfc.org/

            Comment


            • #21
              1. That's to just our box.
              2. Those are actually 2 hour averages. So 1-hour attack + 1-hour normal isn't going to show a full 10mbps spike.
              3. During the attacks, I've seen 40-50mbps "sustained spikes" [above normal] on the VO graphs (5 minute averages).
              4. Even just 8mbps of connection packets will quickly fill up Apache's open connections.

              Comment


              • #22
                Hmmmm so what do these hackers want from you guys. You don't have to go into detail just the cliff notes version

                Comment


                • #23
                  Originally posted by Mike Sullivan
                  4. Even just 8mbps of connection packets will quickly fill up Apache's open connections.
                  I see - I had misunderstood I thought that the attack was simply maxing out the pipes rather than doing Apache in.

                  Good luck.
                  http://forums.cpfc.org/

                  Comment


                  • #24
                    Originally posted by Dave#
                    I see - I had misunderstood I thought that the attack was simply maxing out the pipes rather than doing Apache in.

                    Good luck.
                    Both actually, where the pipe is our connection (10mbps) to the network, not VO's connection to a backbone. Generally speaking, during those times, other VO sites were fine, so it wasn't degrading their performance.

                    Comment


                    • #25
                      Can't you get a fatter pipe than 10mbps?

                      It's still annoyingly slow here.
                      Raz - KMC Forums

                      Comment


                      • #26
                        Its not the pipe thats maxed out most of the time its just apache having far too many requests.

                        I'm not having any load problems here atm.
                        Scott MacVicar

                        My Blog | Twitter

                        Comment


                        • #27
                          Is .org being attacked today too?

                          I get full of htaccess dialog boxes instead of the site...

                          Comment


                          • #28
                            Originally posted by Areku
                            Is .org being attacked today too?

                            I get full of htaccess dialog boxes instead of the site...
                            They were upgrading to Gamma
                            TheologyWeb. We debate theology. srsly.

                            Comment


                            • #29
                              Originally posted by Scott MacVicar
                              Its not the pipe thats maxed out most of the time its just apache having far too many requests.

                              I'm not having any load problems here atm.
                              You guys might want to check (if you haven't) mod_dosevasive and/or mod_throttle.
                              vB Drupal Community Plumbing | vB Survey | vBusy | vB Spell | vBouncer

                              Comment

                              widgetinstance 262 (Related Topics) skipped due to lack of content & hide_module_if_empty option.
                              Working...
                              X