Saidit is expanding from 1 server to 3 servers

submitted by magnora7 from (self.SaidIt)

sorted by:
top
newinsightfulfun
you are viewing a single comment's thread.

view the rest of the comments →

[–]raven9 7 insightful - 2 fun7 insightful - 1 fun8 insightful - 2 fun -  (4 children)

Wasn't the whole point of using the cloudflare CDN supposed to be to prevent attackers from hitting your server directly? Did Cloudflare leak your server's actual IP? Did you talk to Cloudflare about this attack?

Edit: Ok I read that other thread where you pretty much answered the question about how the IP leak happened.

[–]magnora7[S] 4 insightful - 2 fun4 insightful - 1 fun5 insightful - 2 fun -  (3 children)

Yeah they did a sneaky trick to get our real IP, apparently voat suffered from the exact same problem too, but now we know and are patching it

[–]gretathroatborg 1 insightful - 1 fun1 insightful - 0 fun2 insightful - 1 fun -  (2 children)

what was their 1 weird trick to get ur real ip?

[–]magnora7[S] 4 insightful - 1 fun4 insightful - 0 fun5 insightful - 1 fun -  (1 child)

When you post there is a 'title suggest' button.

They set up a server, made a post linking their server to saidit, used the title suggest, then looked on their servers and saw where the title request was coming from. This was fetched from the real IP, rather than the masked IP. Then they were able to directly DDOS us.

Pretty tricky

[–]gretathroatborg 1 insightful - 1 fun1 insightful - 0 fun2 insightful - 1 fun -  (0 children)

ya you definitely gotta delegate those network requests out to a proxy box