Bitcointalk downtime, or just me? Edit: DDoS attack confirmed as per Theymos

awesome31312

hero member

Activity: 826

Merit: 504

Quote from: Gleb Gamow on September 19, 2016, 11:38:28 PM

https://en.wikipedia.org/wiki/Denial-of-service_attack#DDoS_extortion

Quote

In 2015, DDoS botnets such as DD4BC grew in prominence, taking aim at financial institutions. Cyber-extortionists typically begin with a low-level attack and a warning that a larger attack will be carried out if a ransom is not paid in Bitcoin. Security experts recommend targeted websites to not pay the ransom. The attackers tend to get into an extended extortion scheme once they recognize that the target is ready to pay.

Solon, Olivia (9 September 2015). "Cyber-Extortionists Targeting the Financial Sector Are Demanding Bitcoin Ransoms". Bloomberg. Retrieved 15 September 2015.

Wow, thank you so much for sharing, this could explain why so many websites are going through DDoS attacks right now!

Gleb Gamow

vip

Activity: 1428

Merit: 1145

https://en.wikipedia.org/wiki/Denial-of-service_attack#DDoS_extortion

Quote

In 2015, DDoS botnets such as DD4BC grew in prominence, taking aim at financial institutions. Cyber-extortionists typically begin with a low-level attack and a warning that a larger attack will be carried out if a ransom is not paid in Bitcoin. Security experts recommend targeted websites to not pay the ransom. The attackers tend to get into an extended extortion scheme once they recognize that the target is ready to pay.

Solon, Olivia (9 September 2015). "Cyber-Extortionists Targeting the Financial Sector Are Demanding Bitcoin Ransoms". Bloomberg. Retrieved 15 September 2015.

Omikifuse

legendary

Activity: 1834

Merit: 1009

Quote from: Atomicat on September 19, 2016, 03:20:24 AM

Quote from: awesome31312 on September 19, 2016, 02:12:18 AM

I think we are no longer being attacked. Why do the news still speculate there may be periodic downtime?

Maybe theymos forget to remove it from the News section.

IIRC, I saw that message a few times too.

EDIT: I saw the message again and got a chance to copy it. ;p
"Due to DDoS attacks, there may be periodic downtime."

You never know when the forum will be attacked again, so I guess it is stickied while there is no other news to show

Atomicat

legendary

Activity: 952

Merit: 1002

Quote from: awesome31312 on September 19, 2016, 02:12:18 AM

I think we are no longer being attacked. Why do the news still speculate there may be periodic downtime?

Maybe theymos forget to remove it from the News section.

IIRC, I saw that message a few times too.

EDIT: I saw the message again and got a chance to copy it. ;p
"Due to DDoS attacks, there may be periodic downtime."

awesome31312

hero member

Activity: 826

Merit: 504

I think we are no longer being attacked. Why do the news still speculate there may be periodic downtime?

Quickseller

copper member

Activity: 2996

Merit: 2374

Quote from: Ast3rix on September 08, 2016, 12:08:11 AM

Can't afford a cloudfare ddos protection [...]?

I think it might be time to reconsider using cloudflare or similar service.

In the past, one of the main reasons why it was said cloudflare will not be used is that theymos would need to give up effective control over the HTTPS keys to google in order to use cloudflare.

However with the claim that bitcointalk.org (and bitoin.org) might be the subject of state-sponsored hacking attempts (and that such state-sponsored hackers might be able to compromise and/or impersonate the HTTPS keys).

The argument behind theymos maintaining exclusive control over the HTTPS keys is that he would be able to (and be expected to) push back against legal processes demanding access to information that would be accessible with the HTTPS keys. However, IMO google would likely be better equipped to counter state-sponsored hacking attempts, and would have greater resources to do so. Giving google effective access to the HTTPS keys would not make users defenseless against illegitimate requests for information accessible with HTTPS keys because, at the very least there will be some level of judicial oversight over legal processes requesting information, and even when this is insufficient, theymos would likely still be able to fight these kinds of requests to some extent.

awesome31312

hero member

Activity: 826

Merit: 504

Quote from: btvGainer on September 08, 2016, 05:57:37 PM

Quote from: InvoKing on September 08, 2016, 05:11:01 PM

The ddos is still active or what? I couldn't browse the forums in the last 30 minutes without having a connection problem, don't know if this issue happens only now or it is persistant..
Theymos please fix it Sad

I had similar experience two days back also and now today again wasn't able to visit forum as it was unavailable.
Yes it should be fixed now.Is Theymos aware of this problem?

Yes, please read the thread before commenting. The notice has been posted in "News" below your Total time logged in, he has also stated here that he is working on figuring out a way to mitigate the attack, and we can expect more periodic downtime

btvGainer

legendary

Activity: 854

Merit: 1000

Quote from: InvoKing on September 08, 2016, 05:11:01 PM

The ddos is still active or what? I couldn't browse the forums in the last 30 minutes without having a connection problem, don't know if this issue happens only now or it is persistant..
Theymos please fix it Sad

I had similar experience two days back also and now today again wasn't able to visit forum as it was unavailable.
Yes it should be fixed now.Is Theymos aware of this problem?

Swagtoshi

full member

Activity: 261

Merit: 102

Quote from: awesome31312 on September 08, 2016, 05:47:38 PM

Quote from: InvoKing on September 08, 2016, 05:11:01 PM

The ddos is still active or what? I couldn't browse the forums in the last 30 minutes without having a connection problem, don't know if this issue happens only now or it is persistant..
Theymos please fix it Sad

I hate to be that post but, yeah, I agree, please fix it. I really really am addicted to this forum, say what you want, but just like people have their Netflix, television, etc, I have Bitcointalk, and without it I really don't have a hobby anymore Sad

I hope you fix it soon. I know you're trying your best.

Isn't it possible to change servers?

If you change servers, the person who is ddosing will simply redirect their computers toward the new server. Plus, it takes a while to point nameservers.

awesome31312

hero member

Activity: 826

Merit: 504

Quote from: InvoKing on September 08, 2016, 05:11:01 PM

The ddos is still active or what? I couldn't browse the forums in the last 30 minutes without having a connection problem, don't know if this issue happens only now or it is persistant..
Theymos please fix it Sad

I hate to be that post but, yeah, I agree, please fix it. I really really am addicted to this forum, say what you want, but just like people have their Netflix, television, etc, I have Bitcointalk, and without it I really don't have a hobby anymore Sad

I hope you fix it soon. I know you're trying your best.

Isn't it possible to change servers?

achow101

staff

Activity: 3458

Merit: 6793

Just writing some code

Quote from: Salmen on September 08, 2016, 03:24:21 PM

Quote from: theymos on September 07, 2016, 09:52:37 PM

I guess they're going to do it every day at around this time until I figure out how to stop them... I've made some progress on that front, but it's not done yet.

If anyone is an actual expert in Linux networking (ie. the term "GRE tunnel" is familiar to you), I could use your help in figuring some of this stuff out.

Instead of Cloudflare use an DDoS protected Reverse Proxy IP. The Cloudflare Free Plan is not helping at all, to stop an big attack.

Edit: It seems you switched to Cloudflare and forgot to add SPF Records which fail to deliver mails to most known email provider. However, I do not receive notifications of Bitcointalk.

What are you talking about? Bitcointalk doesn't use Cloudflare.

Quote from: InvoKing on September 08, 2016, 05:11:01 PM

The ddos is still active or what? I couldn't browse the forums in the last 30 minutes without having a connection problem, don't know if this issue happens only now or it is persistant..
Theymos please fix it Sad

You can't stop a DDoS attack, you can only attempt to mitigate the effects of the attack. Theymos is still trying to figure out a way to mitigate the effects, but clearly networking isn't his expertise.

InvoKing

legendary

Activity: 2142

Merit: 1065

✋(▀Ĺ̯ ▀-͠ )

The ddos is still active or what? I couldn't browse the forums in the last 30 minutes without having a connection problem, don't know if this issue happens only now or it is persistant..
Theymos please fix it Sad

Salmen

legendary

Activity: 1059

Merit: 1020

Quote from: theymos on September 07, 2016, 09:52:37 PM

I guess they're going to do it every day at around this time until I figure out how to stop them... I've made some progress on that front, but it's not done yet.

If anyone is an actual expert in Linux networking (ie. the term "GRE tunnel" is familiar to you), I could use your help in figuring some of this stuff out.

Instead of Cloudflare use an DDoS protected Reverse Proxy IP. The Cloudflare Free Plan is not helping at all, to stop an big attack.

Edit: It seems you switched to Cloudflare and forgot to add SPF Records which fail to deliver mails to most known email provider. However, I do not receive notifications of Bitcointalk.

2112

legendary

Activity: 2128

Merit: 1073

Quote from: theymos on September 07, 2016, 09:52:37 PM

If anyone is an actual expert in Linux networking (ie. the term "GRE tunnel" is familiar to you), I could use your help in figuring some of this stuff out.

I'll be glad to help. My testing computer & router farm is temporarily in storage due to moves, but my brain is available.

The further discussion probably has to switch to private messages for security reasons.

awesome31312

hero member

Activity: 826

Merit: 504

I missed you Bitcointalk!!! <3 <3 <3

It was the longest day of my life, I had absolutely nothing to do with my life, I was so heartbroken Sad

I was actually missing the trolls in the Politics and Society subsection!

Are we good now?

Xanidas

hero member

Activity: 686

Merit: 500

Quote from: bL4nkcode on September 07, 2016, 10:32:47 PM

How long will they keep attacking this forum. What's the main reason why they keep doing this. Is theymos is a big treat to them or whatsoever Cry

since theymos said there is no demand about these attack, i am thinking they are just a group of kids trying to do this DDoS thing or they are owner of another crypto related forum trying to get some members when main btc forum is down

Ast3rix

member

Activity: 61

Merit: 10

Can't afford a cloudfare ddos protection or something similar?

theymos

administrator

Activity: 5222

Merit: 13032

Quote from: Snorek on September 07, 2016, 11:33:58 PM

Theymos, were there any demands linked to these attacks?

Nope.

Quickseller

copper member

Activity: 2996

Merit: 2374

Maybe there is no DDoS attack, and the forum is being taken down for hours at a time for days in order to cause the signature spammers to lose interest in spamming the forum, and to look for income opportunities elsewhere.

#ConspiracyTheory
#ThisWouldActuallyBeGenius

Snorek

legendary

Activity: 1400

Merit: 1001

Theymos, were there any demands linked to these attacks? I know that in the past, when forum were DDoSed attackers wanted to extort 10 BTC.
This time is different? Or do they want money as well? Someone is bored/has grudge against bitcointalk or something?

swogerino

legendary

Activity: 3318

Merit: 1247

Bitcoin Casino Est. 2013

Quote from: theymos on September 07, 2016, 09:52:37 PM

I guess they're going to do it every day at around this time until I figure out how to stop them... I've made some progress on that front, but it's not done yet.

If anyone is an actual expert in Linux networking (ie. the term "GRE tunnel" is familiar to you), I could use your help in figuring some of this stuff out.

It was absolutely down for the last 2.5 hours. No connection at all.
Just now was able to log in and surprised how long it was just timed out for.

bL4nkcode

copper member

Activity: 2142

Merit: 1305

Limited in number. Limitless in potential.

How long will they keep attacking this forum. What's the main reason why they keep doing this. Is theymos is a big treat to them or whatsoever Cry

theymos

administrator

Activity: 5222

Merit: 13032

I guess they're going to do it every day at around this time until I figure out how to stop them... I've made some progress on that front, but it's not done yet.

If anyone is an actual expert in Linux networking (ie. the term "GRE tunnel" is familiar to you), I could use your help in figuring some of this stuff out.

JeffBrad12

hero member

Activity: 2954

Merit: 533

Leading Crypto Sports Betting & Casino Platform

Quote from: achow101 on September 06, 2016, 11:10:26 PM

Quote from: JeffBrad12 on September 06, 2016, 11:07:39 PM

But my question whether bitcoin talk is not secured with cloudflare?

You never asked about cloudflare. People here cannot read your mind, so you actually do need to ask what you want to know.

And no, Bitcointalk does not use cloudflare. This is because CloudFlare can become a Man-In-The-Middle and risk user privacy and security.

Quote from: JeffBrad12 on September 06, 2016, 11:07:39 PM

and every 30 minutes bctalk is already recovering and just 5 minutes later bctalk is down again

That's just the nature of a DDoS attack. Sometimes they take things down, sometimes the countermeasures work, and sometimes it just slows the site down a lot.

Your explanation is make mi mind is bright, thanks for that.

Decoded

legendary

Activity: 1232

Merit: 1030

give me your cryptos

It seems like the DDoSing has stopped. The forum isn't slow or crashing every five minutes.

Honestly, you don't need CloudFlare. Just set the server to require captcha input after x% server load or lag.

achow101

staff

Activity: 3458

Merit: 6793

Just writing some code

Quote from: JeffBrad12 on September 06, 2016, 11:07:39 PM

But my question whether bitcoin talk is not secured with cloudflare?

You never asked about cloudflare. People here cannot read your mind, so you actually do need to ask what you want to know.

And no, Bitcointalk does not use cloudflare. This is because CloudFlare can become a Man-In-The-Middle and risk user privacy and security.

Quote from: JeffBrad12 on September 06, 2016, 11:07:39 PM

and every 30 minutes bctalk is already recovering and just 5 minutes later bctalk is down again

That's just the nature of a DDoS attack. Sometimes they take things down, sometimes the countermeasures work, and sometimes it just slows the site down a lot.

JeffBrad12

hero member

Activity: 2954

Merit: 533

Leading Crypto Sports Betting & Casino Platform

Quote from: awesome31312 on September 06, 2016, 08:33:03 PM

Quote from: bL4nkcode on September 06, 2016, 08:29:23 PM

Are we attack this period? I can't access the site in several minutes even I have a stable internet connection, I tried in http://www.isitdownrightnow.com/ and it is down at that time and just for a while I'm able to access it again. Is everyone experienced it also?

Yes, please read my post above, we are being attacked.

"News: Due to DDoS attacks, there may be periodic downtime."

From the "News" listed underneath your total time logged in

But my question whether bitcoin talk is not secured with cloudflare? and every 30 minutes bctalk is already recovering and just 5 minutes later bctalk is down again

awesome31312

hero member

Activity: 826

Merit: 504

Quote from: bL4nkcode on September 06, 2016, 08:29:23 PM

Are we attack this period? I can't access the site in several minutes even I have a stable internet connection, I tried in http://www.isitdownrightnow.com/ and it is down at that time and just for a while I'm able to access it again. Is everyone experienced it also?

Yes, please read my post above, we are being attacked.

"News: Due to DDoS attacks, there may be periodic downtime."

From the "News" listed underneath your total time logged in

swogerino

legendary

Activity: 3318

Merit: 1247

Bitcoin Casino Est. 2013

Getting intermittent connection right now it was worst yesterday.

bL4nkcode

copper member

Activity: 2142

Merit: 1305

Limited in number. Limitless in potential.

Are we attack this period? I can't access the site in several minutes even I have a stable internet connection, I tried in http://www.isitdownrightnow.com/ and it is down at that time and just for a while I'm able to access it again. Is everyone experienced it also?

awesome31312

hero member

Activity: 826

Merit: 504

These HF kids with their botnets really need to get a life =/

"News: Due to DDoS attacks, there may be periodic downtime."

achow101

staff

Activity: 3458

Merit: 6793

Just writing some code

Quote from: Swagtoshi on September 06, 2016, 02:29:03 PM

Quote from: theymos on September 05, 2016, 06:31:20 PM

Quote from: awesome31312 on September 05, 2016, 06:29:05 PM

OMG! Is everything going to be okay? Can we expect more downtime? Please answer!

Probably there will be periodic downtime until they stop or until I figure out how to mitigate the attack.

You should make a thread with the details. Perhaps programmers would help you solve the problem. I know I would take a look and try to come up with solution.

Theymos is a programmer. The site has been under multiple DDoS attacks. There isn't much that can be done that hasn't already is done.

Swagtoshi

full member

Activity: 261

Merit: 102

Quote from: theymos on September 05, 2016, 06:31:20 PM

Quote from: awesome31312 on September 05, 2016, 06:29:05 PM

OMG! Is everything going to be okay? Can we expect more downtime? Please answer!

Probably there will be periodic downtime until they stop or until I figure out how to mitigate the attack.

You should make a thread with the details. Perhaps programmers would help you solve the problem. I know I would take a look and try to come up with solution.

theymos

administrator

Activity: 5222

Merit: 13032

A DDoS attack takes a site down, it doesn't provide the attacker with any access.

Shockaftermoon

full member

Activity: 224

Merit: 100

beatcoin team leader

Quote from: x4 on September 05, 2016, 06:54:25 PM

Yeah I noticed it too when I cant load the site even I had a stable connection, but thanks its litle bit fast. Just what happened few years ago. Our accounts are safe from hackers? Do we need to change our passwords because of this?

oh,that's a good question

dc1a0

member

Activity: 84

Merit: 10

Quote from: Sundark on September 05, 2016, 06:51:49 PM

Quote from: awesome31312 on September 05, 2016, 06:37:47 PM

Quote from: The Sceptical Chymist on September 05, 2016, 06:34:14 PM

Did we get hacked?

I don't know but on a hidden market which I can't name, I saw a Bitcointalk.org accounts listing, so I would change my password ASAP. It had plenty of sales too.

Forum was hacked in the past - so unless staff will confirm that today's forum outage is linked to database hack as well - I am gonna assume that they are selling database from from that previous hack.

Given the circumstances, it wouldn't hurt to change passwords anyway, just for good measure. That's my thoughts on it at least.

x4

hero member

Activity: 1106

Merit: 508

Yeah I noticed it too when I cant load the site even I had a stable connection, but thanks its litle bit fast. Just what happened few years ago. Our accounts are safe from hackers? Do we need to change our passwords because of this?

Sundark

hero member

Activity: 560

Merit: 502

Quote from: awesome31312 on September 05, 2016, 06:37:47 PM

Quote from: The Sceptical Chymist on September 05, 2016, 06:34:14 PM

Did we get hacked?

I don't know but on a hidden market which I can't name, I saw a Bitcointalk.org accounts listing, so I would change my password ASAP. It had plenty of sales too.

Forum was hacked in the past - so unless staff will confirm that today's forum outage is linked to database hack as well - I am gonna assume that they are selling database from from that previous hack.

mezmerizer9

hero member

Activity: 782

Merit: 1000

It is down for me as well. I was in the discussion with another trader. and thought my internet connection was down.

unamis76

legendary

Activity: 1512

Merit: 1012

Well, I guess this was quick. Thanks theymos.

The Sceptical Chymist

legendary

Activity: 3528

Merit: 7005

Top Crypto Casino

Quote from: awesome31312 on September 05, 2016, 06:37:47 PM

Quote from: The Sceptical Chymist on September 05, 2016, 06:34:14 PM

Did we get hacked?

I don't know but on a hidden market which I can't name, I saw a Bitcointalk.org accounts listing, so I would change my password ASAP. It had plenty of sales too.

OK, that sounds like a damn good idea. But is that the old database or what? Like, last time we got hacked and had to change our passwords?

Anyhow, thanks, gonna change it now. I removed that feedback BTW but you ought not deal in accounts.

awesome31312

hero member

Activity: 826

Merit: 504

Quote from: The Sceptical Chymist on September 05, 2016, 06:34:14 PM

Did we get hacked?

I don't know but on a hidden market which I can't name, I saw a Bitcointalk.org accounts listing, so I would change my password ASAP. It had plenty of sales too.

The Sceptical Chymist

legendary

Activity: 3528

Merit: 7005

Top Crypto Casino

Yep, was down. Went out to the store to buy some melatonin for our clients, came back and it's up.

Did we get hacked?

theymos

administrator

Activity: 5222

Merit: 13032

Quote from: awesome31312 on September 05, 2016, 06:29:05 PM

OMG! Is everything going to be okay? Can we expect more downtime? Please answer!

Probably there will be periodic downtime until they stop or until I figure out how to mitigate the attack.

awesome31312

hero member

Activity: 826

Merit: 504

Quote from: theymos on September 05, 2016, 05:37:32 PM

Yes, there was a DDoS attack.

OMG! Is everything going to be okay? Can we expect more downtime? Please answer!

snipie

legendary

Activity: 3178

Merit: 1140

#SWGT CERTIK Audited

Quote from: onlinedragon on September 05, 2016, 05:32:13 PM

When you not sure if a website is offline for all people you can easily check it with a website like this: http://isitdownorjust.me/bitcointalk-org/. Other websites can do something similar for you but you can google that by yourself.

dunno if theses sites will give an accurate results since we could load bitcointalk but we can't access it

Quote from: theymos on September 05, 2016, 05:37:32 PM

Yes, there was a DDoS attack.

thanks for the answer (couldn't say it before because it got hanged cuz of the attack)

richardsNY

legendary

Activity: 1232

Merit: 1091

It was also down here. After a while the forum was back up, but the index page was only showing an error. It would be nice if the bitcointalk twitter account would be used to give people some information.

theymos

administrator

Activity: 5222

Merit: 13032

Yes, there was a DDoS attack.

MadHatZ

member

Activity: 74

Merit: 10

Quote from: onlinedragon on September 05, 2016, 05:32:13 PM

When you not sure if a website is offline for all people you can easily check it with a website like this: http://isitdownorjust.me/bitcointalk-org/. Other websites can do something similar for you but you can google that by yourself.

That site is not always correct. Sometimes the site is not down but you cannot access the website because it has some error.

steven0021

hero member

Activity: 629

Merit: 501

Experientia docet

Yeah. At first I was getting time out error but it changed to smf database error (website checkers don't see this as down) in the last few minutes. Probably just server overload or something.

onlinedragon

hero member

Activity: 1036

Merit: 501

When you not sure if a website is offline for all people you can easily check it with a website like this: http://isitdownorjust.me/bitcointalk-org/. Other websites can do something similar for you but you can google that by yourself.

awesome31312

hero member

Activity: 826

Merit: 504

Is it just me, or was there server downtime for a significant period of time? (>30 minutes)

About half an hour before making this post, I mean of course it's working right now. I got an error code which I forgot to save when it finally loaded. Anybody else?

Topic: Bitcointalk downtime, or just me? Edit: DDoS attack confirmed as per Theymos (Read 4374 times)