Bitcointalk downtime, or just me? Edit: DDoS attack confirmed as per Theymos

awesome31312

hero member

Activity: 826

Merit: 504

Quote from: Gleb Gamow on September 19, 2016, 11:38:28 PM

https://en.wikipedia.org/wiki/Denial-of-service_attack#DDoS_extortion

Quote

In 2015, DDoS botnets such as DD4BC grew in prominence, taking aim at financial institutions. Cyber-extortionists typically begin with a low-level attack and a warning that a larger attack will be carried out if a ransom is not paid in Bitcoin. Security experts recommend targeted websites to not pay the ransom. The attackers tend to get into an extended extortion scheme once they recognize that the target is ready to pay.

Solon, Olivia (9 September 2015). "Cyber-Extortionists Targeting the Financial Sector Are Demanding Bitcoin Ransoms". Bloomberg. Retrieved 15 September 2015.

Wow, thank you so much for sharing, this could explain why so many websites are going through DDoS attacks right now!

Gleb Gamow

vip

Activity: 1428

Merit: 1145

https://en.wikipedia.org/wiki/Denial-of-service_attack#DDoS_extortion

Quote

In 2015, DDoS botnets such as DD4BC grew in prominence, taking aim at financial institutions. Cyber-extortionists typically begin with a low-level attack and a warning that a larger attack will be carried out if a ransom is not paid in Bitcoin. Security experts recommend targeted websites to not pay the ransom. The attackers tend to get into an extended extortion scheme once they recognize that the target is ready to pay.

Solon, Olivia (9 September 2015). "Cyber-Extortionists Targeting the Financial Sector Are Demanding Bitcoin Ransoms". Bloomberg. Retrieved 15 September 2015.

Omikifuse

legendary

Activity: 1834

Merit: 1009

Quote from: Atomicat on September 19, 2016, 03:20:24 AM

Quote from: awesome31312 on September 19, 2016, 02:12:18 AM

I think we are no longer being attacked. Why do the news still speculate there may be periodic downtime?

Maybe theymos forget to remove it from the News section.

IIRC, I saw that message a few times too.

EDIT: I saw the message again and got a chance to copy it. ;p
"Due to DDoS attacks, there may be periodic downtime."

You never know when the forum will be attacked again, so I guess it is stickied while there is no other news to show

Atomicat

legendary

Activity: 952

Merit: 1002

Quote from: awesome31312 on September 19, 2016, 02:12:18 AM

I think we are no longer being attacked. Why do the news still speculate there may be periodic downtime?

Maybe theymos forget to remove it from the News section.

IIRC, I saw that message a few times too.

EDIT: I saw the message again and got a chance to copy it. ;p
"Due to DDoS attacks, there may be periodic downtime."

awesome31312

hero member

Activity: 826

Merit: 504

I think we are no longer being attacked. Why do the news still speculate there may be periodic downtime?

Quickseller

copper member

Activity: 2996

Merit: 2374

Quote from: Ast3rix on September 08, 2016, 12:08:11 AM

Can't afford a cloudfare ddos protection [...]?

I think it might be time to reconsider using cloudflare or similar service.

In the past, one of the main reasons why it was said cloudflare will not be used is that theymos would need to give up effective control over the HTTPS keys to google in order to use cloudflare.

However with the claim that bitcointalk.org (and bitoin.org) might be the subject of state-sponsored hacking attempts (and that such state-sponsored hackers might be able to compromise and/or impersonate the HTTPS keys).

The argument behind theymos maintaining exclusive control over the HTTPS keys is that he would be able to (and be expected to) push back against legal processes demanding access to information that would be accessible with the HTTPS keys. However, IMO google would likely be better equipped to counter state-sponsored hacking attempts, and would have greater resources to do so. Giving google effective access to the HTTPS keys would not make users defenseless against illegitimate requests for information accessible with HTTPS keys because, at the very least there will be some level of judicial oversight over legal processes requesting information, and even when this is insufficient, theymos would likely still be able to fight these kinds of requests to some extent.

awesome31312

hero member

Activity: 826

Merit: 504

Quote from: btvGainer on September 08, 2016, 05:57:37 PM

Quote from: InvoKing on September 08, 2016, 05:11:01 PM

The ddos is still active or what? I couldn't browse the forums in the last 30 minutes without having a connection problem, don't know if this issue happens only now or it is persistant..
Theymos please fix it Sad

I had similar experience two days back also and now today again wasn't able to visit forum as it was unavailable.
Yes it should be fixed now.Is Theymos aware of this problem?

Yes, please read the thread before commenting. The notice has been posted in "News" below your Total time logged in, he has also stated here that he is working on figuring out a way to mitigate the attack, and we can expect more periodic downtime

btvGainer

legendary

Activity: 854

Merit: 1000

Quote from: InvoKing on September 08, 2016, 05:11:01 PM

The ddos is still active or what? I couldn't browse the forums in the last 30 minutes without having a connection problem, don't know if this issue happens only now or it is persistant..
Theymos please fix it Sad

I had similar experience two days back also and now today again wasn't able to visit forum as it was unavailable.
Yes it should be fixed now.Is Theymos aware of this problem?

Swagtoshi

full member

Activity: 261

Merit: 102

Quote from: awesome31312 on September 08, 2016, 05:47:38 PM

Quote from: InvoKing on September 08, 2016, 05:11:01 PM

The ddos is still active or what? I couldn't browse the forums in the last 30 minutes without having a connection problem, don't know if this issue happens only now or it is persistant..
Theymos please fix it Sad

I hate to be that post but, yeah, I agree, please fix it. I really really am addicted to this forum, say what you want, but just like people have their Netflix, television, etc, I have Bitcointalk, and without it I really don't have a hobby anymore Sad

I hope you fix it soon. I know you're trying your best.

Isn't it possible to change servers?

If you change servers, the person who is ddosing will simply redirect their computers toward the new server. Plus, it takes a while to point nameservers.

awesome31312

hero member

Activity: 826

Merit: 504

Quote from: InvoKing on September 08, 2016, 05:11:01 PM

The ddos is still active or what? I couldn't browse the forums in the last 30 minutes without having a connection problem, don't know if this issue happens only now or it is persistant..
Theymos please fix it Sad

I hate to be that post but, yeah, I agree, please fix it. I really really am addicted to this forum, say what you want, but just like people have their Netflix, television, etc, I have Bitcointalk, and without it I really don't have a hobby anymore Sad

I hope you fix it soon. I know you're trying your best.

Isn't it possible to change servers?

achow101

staff

Activity: 3458

Merit: 6793

Just writing some code

Quote from: Salmen on September 08, 2016, 03:24:21 PM

Quote from: theymos on September 07, 2016, 09:52:37 PM

I guess they're going to do it every day at around this time until I figure out how to stop them... I've made some progress on that front, but it's not done yet.

If anyone is an actual expert in Linux networking (ie. the term "GRE tunnel" is familiar to you), I could use your help in figuring some of this stuff out.

Instead of Cloudflare use an DDoS protected Reverse Proxy IP. The Cloudflare Free Plan is not helping at all, to stop an big attack.

Edit: It seems you switched to Cloudflare and forgot to add SPF Records which fail to deliver mails to most known email provider. However, I do not receive notifications of Bitcointalk.

What are you talking about? Bitcointalk doesn't use Cloudflare.

Quote from: InvoKing on September 08, 2016, 05:11:01 PM

The ddos is still active or what? I couldn't browse the forums in the last 30 minutes without having a connection problem, don't know if this issue happens only now or it is persistant..
Theymos please fix it Sad

You can't stop a DDoS attack, you can only attempt to mitigate the effects of the attack. Theymos is still trying to figure out a way to mitigate the effects, but clearly networking isn't his expertise.

InvoKing

legendary

Activity: 2142

Merit: 1065

✋(▀Ĺ̯ ▀-͠ )

The ddos is still active or what? I couldn't browse the forums in the last 30 minutes without having a connection problem, don't know if this issue happens only now or it is persistant..
Theymos please fix it Sad

Salmen

legendary

Activity: 1059

Merit: 1020

Quote from: theymos on September 07, 2016, 09:52:37 PM

I guess they're going to do it every day at around this time until I figure out how to stop them... I've made some progress on that front, but it's not done yet.

If anyone is an actual expert in Linux networking (ie. the term "GRE tunnel" is familiar to you), I could use your help in figuring some of this stuff out.

Instead of Cloudflare use an DDoS protected Reverse Proxy IP. The Cloudflare Free Plan is not helping at all, to stop an big attack.

Edit: It seems you switched to Cloudflare and forgot to add SPF Records which fail to deliver mails to most known email provider. However, I do not receive notifications of Bitcointalk.

2112

legendary

Activity: 2128

Merit: 1073

Quote from: theymos on September 07, 2016, 09:52:37 PM

If anyone is an actual expert in Linux networking (ie. the term "GRE tunnel" is familiar to you), I could use your help in figuring some of this stuff out.

I'll be glad to help. My testing computer & router farm is temporarily in storage due to moves, but my brain is available.

The further discussion probably has to switch to private messages for security reasons.

awesome31312

hero member

Activity: 826

Merit: 504

I missed you Bitcointalk!!! <3 <3 <3

It was the longest day of my life, I had absolutely nothing to do with my life, I was so heartbroken Sad

I was actually missing the trolls in the Politics and Society subsection!

Are we good now?

Xanidas

hero member

Activity: 686

Merit: 500

Quote from: bL4nkcode on September 07, 2016, 10:32:47 PM

How long will they keep attacking this forum. What's the main reason why they keep doing this. Is theymos is a big treat to them or whatsoever Cry

since theymos said there is no demand about these attack, i am thinking they are just a group of kids trying to do this DDoS thing or they are owner of another crypto related forum trying to get some members when main btc forum is down

Ast3rix

member

Activity: 61

Merit: 10

Can't afford a cloudfare ddos protection or something similar?

theymos

administrator

Activity: 5222

Merit: 13032

Quote from: Snorek on September 07, 2016, 11:33:58 PM

Theymos, were there any demands linked to these attacks?

Nope.

Quickseller

copper member

Activity: 2996

Merit: 2374

Maybe there is no DDoS attack, and the forum is being taken down for hours at a time for days in order to cause the signature spammers to lose interest in spamming the forum, and to look for income opportunities elsewhere.

#ConspiracyTheory
#ThisWouldActuallyBeGenius

Snorek

legendary

Activity: 1400

Merit: 1001

Theymos, were there any demands linked to these attacks? I know that in the past, when forum were DDoSed attackers wanted to extort 10 BTC.
This time is different? Or do they want money as well? Someone is bored/has grudge against bitcointalk or something?

Topic: Bitcointalk downtime, or just me? Edit: DDoS attack confirmed as per Theymos (Read 4374 times)