Saidit is currently undergoing the largest DDOS attack we've ever had

submitted by magnora7[A] from self.SaidIt

sorted by:
top
newinsightfulfun
you are viewing a single comment's thread.

view the rest of the comments →

[–]magnora7[S] 32 insightful - 3 fun32 insightful - 2 fun33 insightful - 3 fun -  (2 children)

Our connection counts log per hour looks like this:

7pm: 241,253 connections (normal traffic)

8pm: 227,166 connections

9pm: 3,918,069 connections

10pm: 11,287,220 connections

Seems like someone has a botnet at their disposal or something, there's no way one computer can generate so many requests I don't think

edit: 11pm: 6,990,516 connections

12am: 1,196,567 connections

So maybe getting back to normal...

edit2: I think it's done, we had a total of 23 million connection attempts in excess of normal (compared to 1 million normal connections over this same period). So they 23x'd our traffic for the duration of the attack, basically. But it wasn't evenly spread across time, so at the peak it was probably around 200x our normal traffic rate. D3rr and I learned a new spot to improve so our defenses only got better. Have a good night everyone!

[–]quipu 2 insightful - 1 fun2 insightful - 0 fun3 insightful - 1 fun -  (1 child)

Check the IP ranges to see if they correlate to a known cloud provider or one of those P2P VPN services like Hola. If so you may be able to get someone banned for abuse.

[–]magnora7[S] 2 insightful - 1 fun2 insightful - 0 fun3 insightful - 1 fun -  (0 children)

Yeah it's like 20 VPN services, or a really good VPN or something. The amount of IPs they have at their disposal is unreal