Help Request DDOS / Downtime Situation

Status
Not open for further replies.

Cottontail

Sailing, sailing, ...
Est. Contributor
Messages
5,657
Role
  1. Adult Baby
  2. Diaper Lover
  3. Sissy
Elaborating on my previous post:

Right now, I can only get to ADISC via https://www.adisc.org/forum. Leaving off the "https" (using http), the "www", or the "forum" still fails to connect. I expect this is the result of various caches between me and the server, but I'm impressed by how long they're taking to catch up!
 

ScaredyCat

Est. Contributor
Messages
117
Role
  1. Adult Baby
  2. Diaper Lover
  3. Little
I had no connection problems on both - my pc browser and my phone and tapatalk.. If not this thread I wouldn't notice.. Could they target a certain account?
Should we change passwords? oO
 

Moo

ADISC Admin
Staff
Messages
5,755
Role
  1. Private
I had no connection problems on both - my pc browser and my phone and tapatalk.. If not this thread I wouldn't notice.. Could they target a certain account?
Should we change passwords? oO

No, they can't target accounts, and no need to change passwords.
 

Tyger

Est. Contributor
Messages
2,270
Role
  1. Adult Baby
  2. Diaper Lover
  3. Babyfur
  4. Diaperfur
Thank you Moo, I'm glad you were able to figure this all out, sounds like a mess. Is there any way of knowing a hacker group name to put a (metaphorical) face to all of this? It upsets me that they would target us, Its straight up bullying, what on earth does Adisc do to bother other people in the world?

Now, I just have to say this, because it bothers me a lot that Adisc would be the target of a DDOS attack.

To the guy(s) that are behind this attack, congrats on manifesting what complete assholes you are. You literally attacked a website that has countless times helped prevent people from committing suicide. A website that is dedicated to helping people understand and accept themselves, and integrate into life as we know it. Adisc isn't a profit based group, it isn't an oppressive group, it's not a cult, we are just a bunch of people trying to find happiness in life and searching for help in doing it. Congrats on making the world a worse place, I hope you are truly happy with yourselves, because I can't understand how you could be.
 

MickeyM

Est. Contributor
Messages
853
Role
  1. Adult Baby
  2. Diaper Lover
  3. Babyfur
  4. Little
DDos is usually the result of a hacker, not being able to hack a site. It's just a form of bullying. It happens to many websites these days, with the advent of high speed internet, such as 100mbit pipes in.. Romania, south korea etc (only 5mbit in the US lol) botnets can command large outbound rates that can overwhelm sites. Provider bandwidth for websites/servers etc has not kept up with the pace of residential access speed unfortunately.
 

NabePup

Est. Contributor
Messages
853
Role
  1. Adult Baby
  2. Diaper Lover
  3. Babyfur
  4. Diaperfur
  5. Little
I never had trouble accessing the site fortunately, but that's probably because I wasn't too active when it happened.

Have you ever considered getting an NAS and using that to host ADISC? I don't run my own website so I'm sure there are some benefits to renting out a server I don't know about such as it requires less initial investment and a lot of the maintenance is handled for you, and the bandwidth is probably pretty decent.

For $300 to $1000 you can get a pretty decent NAS and hard drives that you can own and have complete control over. It definitely does require some time and money to be invested at first and it'd be using your personal Internet connection, but there'd be tons of benefits as well.

Either way we appreciate your hard work and are glad ADISC is back. Thanks Moo!

Edit: ugh, I hate spelling mistakes and looking stupid!
 
Last edited:

Moo

ADISC Admin
Staff
Messages
5,755
Role
  1. Private
Is there any way of knowing a hacker group name to put a (metaphorical) face to all of this?
It doesn't really matter who it is. DDOS is increasingly common on the net, to the point that every site of substantial size has to be protected against it now.
If this person had not attacked us, arguably someone else would have sooner or later.

Have you ever considered getting an NAS and using that to host ADISC? I don't run my own website so I'm sure there are some benefits to renting out a server I don't know about such as it requires less initial investment and a lot of the maintenance is handled for you, and the bandwidth is probably pretty decent.

For $300 to $1000 you can get a pretty decent NAS and hard drives that you can own and have complete control over. It definitely does require some time and money to be invested at first and it'd be using your personal Internet connection, but there'd be tons of benefits as well.

Either way we appreciate your hard work and are glad ADISC is back. Thanks Moore!

Not previously. Having looked up what a NAS is, I get the impression it is intended to be a simple file server, not a web/db/mail/etc server like we need.
 

NabePup

Est. Contributor
Messages
853
Role
  1. Adult Baby
  2. Diaper Lover
  3. Babyfur
  4. Diaperfur
  5. Little
Most advertised NAS's are aimed towards the typical consumer who'd use it for mainly having remote file access like you said and backing up files/systems. However they've come a long way and they do sell NASs that are totally capable of acting like a mini server. Will it reach the efficiency of a huge tower that data centers have, probably not unless you want to dish out some serious money, however as long as you're not trying to run an international 1000+ employee company on it, it should be more than capable. I'm on my mobile and way to work otherwise I'd reference some sources and offer more information, but the company Synology makes a wide range of NAS's that could probably meet your (and our) needs.
 

Moo

ADISC Admin
Staff
Messages
5,755
Role
  1. Private
Most advertised NAS's are aimed towards the typical consumer who'd use it for mainly having remote file access like you said and backing up files/systems. However they've come a long way and they do sell NASs that are totally capable of acting like a mini server. Will it reach the efficiency of a huge tower that data centers have, probably not unless you want to dish out some serious money, however as long as you're not trying to run an international 1000+ employee company on it, it should be more than capable. I'm on my mobile and way to work otherwise I'd reference some sources and offer more information, but the company Synology makes a wide range of NAS's that could probably meet your (and our) needs.

I really want to rent the hardware, rather than owning it. Owning is a bad idea - a computer is like a car in that its value depreciates quickly. Nobody wants last year's tech.
 

Moo

ADISC Admin
Staff
Messages
5,755
Role
  1. Private
IT nerds, here's my current plan. If you can suggest improvements, I'm all ears.

ADISC runs 3 services:
- Web (protected by cloudflare)
- IRC/TeamSpeak
- Mail (incoming via google apps, outgoing via SMTP relay)

We send ~6k emails per month, and the pricing for that (smtp relay service w/ DKIM) is $10-15/mo:
- http://www.smtp2go.com/pricing has $14
- https://sendgrid.com/pricing has $10
- http://mandrill.com/pricing/ has $10

For that $10-15 price range, we could instead get a well-rated ( http://www.pcmag.com/article2/0,2817,2455706,00.asp ) VPS, such as:
- http://www.1and1.com/vps-hosting-packages#server 1 core, 1GB ram, 50G HD, unlimited traffic, $12.99/mo
- https://www.hostwinds.com/budget.php 0.5core/1G RAM/25G disk $7.50/mo, or 1core/2G/50G $17.50
- https://www.dreamhost.com/hosting/vps/ 1G RAM / 1 IP, $15/mo
- http://buyvm.net/openvz-vps/ 4core, 1G RAM, 5TB bw, 1 IP, 100G SSD disk $13/mo
- http://www.win-vps.com/english/ 1.5-4G CPU, 4-6G RAM, 220-440 HD, linux $7-16/mo

I'm going to swap out our SMTP relay service for a VPS, because:
- With a VPS, I can use my own existing scripts to manage bounced emails, a task that otherwise I have to do manually and takes significant time.
- We have to have a secondary VPS server anyway. We need somewhere to run teamspeak/IRCD. Dedicated hosting is $70+ a month, and shared hosting generally doesn't allow the flexibility we need (custom code for IRCD, serveradmin/serverquery for TS). So, since we're going to have to get a secondary VPS anyway, we might as well run mail on it too.
- Having mail hosted on a separate server means I no longer have to use google apps for incoming mail, which is a plus.

So, right now, the plan is:
- Get a secondary VPS, then move teamspeak/IRC/mail to it. This ensures they're independent from the main website (eg: a DDOS against one can't take down the other).
- Once enough services are moved off our main server / I have free time, move ADISC from our current dedicated server to a completely new server, purchased from a highly rated (e.g: http://www.pcmag.com/article2/0,2817,2430030,00.asp ) hosting provider such as OVH ( https://www.ovh.com/us/dedicated-servers/hosting/ ) potentially with better performance and/or lower cost. This will likely be a week-long project I have to wait until December to do. Still, I can prepare the way by starting to move services off the main server now, which will make the move easier when it happens.

Cloudflare costs us $20/month. I'm estimating around $15-20/mo for a VPS that can handle TS/IRCD/SMTP. So, in exchange for ~$40/month, we:
- Protect web with Cloudflare
- Protect IRC/TS/mail by moving it to a separate server
- Protect both by isolating them from each other
 

Technologic

Est. Contributor
Messages
160
Role
  1. Adult Baby
  2. Diaper Lover
While it probably doesnt matter since you are doing away with the relay anyway but, http://elasticemail.com/pricing
That would end up being free for sending the emails as long as emails/month doesnt triple. I used their service briefly via the HTTP API and it worked fine for me. I eventually went with Mandrill for other reasons.
 

NabePup

Est. Contributor
Messages
853
Role
  1. Adult Baby
  2. Diaper Lover
  3. Babyfur
  4. Diaperfur
  5. Little
I really want to rent the hardware, rather than owning it. Owning is a bad idea - a computer is like a car in that its value depreciates quickly. Nobody wants last year's tech.

Valid point. After a month any tech that's invested in is already dated. I personally love owning stuff and I hate subscriptions. Sounds like you got a plan in motion. If I got anything to offer I'll be sure to mention it.
 

INTrePid

Est. Contributor
Messages
423
Role
  1. Diaper Lover
  2. Private
DDOS attacks are becoming twice as common every year. It is only a matter of time until pretty much every significant site has to deal with them.

We've been lucky not to suffer them thus far, but given the size of our site it was always just a matter of time.

To satisfy my nerd curiosity, I have to ask just how big is ADISC? What kind of bandwidth does the site use in an average, non-DDOS attack, month? And how big in terms of data size is the entire site? I know there are thousands of threads but images and video take up a lot more space than plain text.
 

Moo

ADISC Admin
Staff
Messages
5,755
Role
  1. Private
To satisfy my nerd curiosity, I have to ask just how big is ADISC? What kind of bandwidth does the site use in an average, non-DDOS attack, month? And how big in terms of data size is the entire site? I know there are thousands of threads but images and video take up a lot more space than plain text.

Disk size, bandwidth, etc are less important than "do people know of you". People know of us, at least in the AB/DL community.
 

KandiKit

Est. Contributor
Messages
895
Role
  1. Adult Baby
  2. Diaper Lover
  3. Little
  4. Incontinent
  5. Carer
  6. Other
Still cant access the site from my desktop, only from my phone....
 
Status
Not open for further replies.
Top