you are viewing a single comment's thread.

view the rest of the comments →

[–]Nummnutzcracker 14 insightful - 2 fun14 insightful - 1 fun15 insightful - 2 fun -  (3 children)

My god that's mental... How did these pesky cunts got Saidit's IP address in the first place?? Glad that things are back to [partially it seems] normal.

[–]magnora7[S] 13 insightful - 3 fun13 insightful - 2 fun14 insightful - 3 fun -  (2 children)

How did these pesky cunts got Saidit's IP address in the first place?

We're not totally sure, but it seems to be likely linked to one of the services I mentioned in the original post. Somehow they are able to use one of those services to access the server in a way that bypasses cloudflare and they can then get access to our server's real IP address, and then DDOS the server directly. Basically the next week or two for d3rr and me is going to be figuring this out so it doesn't happen again. It seems most likely to be the chat though imo, so we might have to get a separate cheap server for the chat. But it might also be media server stuff (thumbnails). We have to check everything, so like d3rr said if anyone spots a way to get our real IP address in a way that bypasses cloudflare please tell us! Then we can fix it and make saidit even stronger.

[–]zyxzevn 8 insightful - 2 fun8 insightful - 1 fun9 insightful - 2 fun -  (1 child)

Chat is usually a big security problem.
Did you test with ProcessHacker (very easy) or even with GlassWire?

[–][deleted] 9 insightful - 3 fun9 insightful - 2 fun10 insightful - 3 fun -  (0 children)

Thanks. Those look like windows tools, but something like that would surely show our server making a remote connection, exposing its ip.