15100+ entries in 0.007s
BingoBoingo: There doesn't seem
to be any non-Gossip protocol solution
to DDoS. As far as I can cleave
the problems right now Latcho/Antel's inept handling of DDoS is one problem. Denying cheap cover
to DDoS'r is other problem.
BingoBoingo: asciilifeform:
There are 2 problems here. 1. ISP falls over 2. Uncloaked bouncer means sophisticated attacker can masquerade as lazy sparrow farting attacker
BingoBoingo: asciilifeform: it's still nullrouted atm, will poke
them.
BingoBoingo: Most of Pizarro is back. Now we have
to figure out how
to bring 2 Rockchips and dulap back without
them autoconnecting
to Freenode cloakless
BingoBoingo: I still have
to ask what other carriers are available.
BingoBoingo: asciilifeform: I intend
to pointedly ask what other carriers might be more responsive.
mp_en_viaje: aite well... i guess ima bdsm partay nao. best of luck
to
the beached galley crew!
mp_en_viaje: asciilifeform,
there's a state monopoly on data
transfer. can't have meaningfully diff dcs.
mp_en_viaje: um... doesn't seem
to load. is
this affected by pizarro ?
mp_en_viaje: yours does not reload
the page on clicking a link ; hers does
mp_en_viaje: asciilifeform, possibly. why would it behave differently
tho
mp_en_viaje: asciilifeform, so far
thing doesn't seem all
that kosher. i dunno wtf sense
this makes, but a sit down with
them will hafta happen cuz obviously pizarro's dead in
the water like
this
mp_en_viaje: in other minutia, since i'm using diana_coman 's logviewer i notice
that ancient behaviour of, if you click on a link on
the page page is reloaded came back. asciilifeform 's viewer does not do
this for some reason.
BingoBoingo: I'm going
to draft an inquiry for
the business side contact asking what can be done
to keep routine internet weather from incurring a reaction far more destructive
than
the weather. Will post for review before issuing. In
the latest news from
the
tech
team
http://paste.deedbot.org/?id=QSzj ericbot: Logged on 2019-10-04 17:32:32 diana_coman: asciilifeform: uhm, how does
that reasoning go?
they fire less at my box because one box or what? anyways, is
there at least any concrete communication from piz's data centre re what
they are doing otherwise exactly?
ossabot: Logged on 2019-10-04 14:41:51 asciilifeform:
http://logs.ericbenevides.com/log/trilema/2019-10-04#1940177 << i oughta expand re
this. ddos is cheap but not free, if
the 1e6 or whatnot winblowz boxen were evenly split
to piss into 20 diff addrs, would not amount
to much effect. so
traditionally rotates, e.g. 3min
to 1,
then
to next, and so on, in circle.
mp_en_viaje: trilema.com/2009/progresam-maria-ta/][obscure idiots from
timisoara] "had 10`000 visits in
the first
three hours" on meta-piece discussing muh whores (which he doesn't realise YET, such an informed moron he is), and
the dc called him because of SERVERS (plural).
mp_en_viaje: actually, i guess it's lulzyrelevant.
the "Eh, dar dacă pun un articol cu o țâță, cu o bucă, cu o
tipă îmbrăcată sumar sau, cum a fost ultimul, cu 2
tipe plimbate în lesă prin oraș…pac, 10.000 de vizite în primele 3 ore, de m-au sunat oamenii de la firma de hosting că ce se întâmplă, că le pun serverele în cap!" passage roughly
translates
to a) obscure idiotic blog organised by
the remnants of [
http:// ericbot: Logged on 2019-10-04 17:15:13 asciilifeform: BingoBoingo: i guess
this is an illuminative experiment re
the q of what it is we actually get for
that ( pretty hefty, quite enuff
to keep
three bus-fuls of orcs in empanadas erry month ) pipe fee.
turns out not 200Mb/s , but 'what we feel like aint
too hard' ??
mp_en_viaje: but nevertheless,
the logs, i have. which is kinda
the distinguishing factor between man and child in
this sense. if real ddos,
there's packet captures. if derpitude,
there's words.
mp_en_viaje: they don't mention
this, of course, "haha, we're fucked in
the head, so loser,
totally stupid,
tried
to ddos
trilema but it did not werk, we will now give up everything and dedicate remainder of lives
to glorification of
this our superior"
mp_en_viaje: otherwise,
there's a script kiddy / week or
thereabouts, coming
to nigh on a
thousand by now.
mp_en_viaje: asciilifeform,
the fact
that
trilema doesn't really suffer from "rotating ddos" aka, some dork with a wp list &c, is
that
trilema is an adult service, rather
than a flavour of above mentioned, "virtual server, fiddy bux"
BingoBoingo: <asciilifeform> BingoBoingo: any word from
these ? even so much as a
timetable for getting
the service we're paying for ? <<
Their estimate
to call back was half and hour issued 16 minutes before
the question
mp_en_viaje: BingoBoingo, in all honesty, so far i can't in
the slightest distinguish
the spew from
the alleged dc from
the spew of "virtual server, fiddy bux" provider.
ossabot: Logged on 2019-10-04 14:37:17 asciilifeform: mp's www fwiw doesn't seem visibly affected. so prolly not included on
the magick list.
a111: Logged on 2019-10-04 20:13 mp_en_viaje: okay, so basically
the most favourable idea is uruguay's state monopoly nulled your ips block for you
ericbot: Logged on 2019-10-04 20:07:21 mp_en_viaje: BingoBoingo, who is
this upstream i don't get it ? are we not actually renting space from a dc ?
mp_en_viaje: okay, so basically
the most favourable idea is uruguay's state monopoly nulled your ips block for you
☟︎ BingoBoingo: Outside
the WTC "Free Zone"
their official registered Uruguay corp goes by PASWER INTERNATIONAL S.A.
mp_en_viaje: they don't seem
to have
the sense
to put it on
the page
mp_en_viaje: BingoBoingo, what's
the asn for
this dc anyways ?
BingoBoingo: Their description makes it sound like
the whole datacenter was disrupted by
the DDoS
BingoBoingo: mp_en_viaje:
They say
this happened with
their international carrier.
mp_en_viaje flicked
through
the news, no "uruguay offline as result of '''rotating dos''' " items caught my eye.
mp_en_viaje: or is
the
theory
that
THE WHOLE DC got cut off, supposedly ?
mp_en_viaje: BingoBoingo, who is
this upstream i don't get it ? are we not actually renting space from a dc ?
ossabot: Logged on 2019-10-04 14:33:09 asciilifeform: diana_coman: if latech is
to be believed, it's a rotating ddos
BingoBoingo: I just got off
the phone,
the are working on getting
the upstream
to remove
the block. Should call back in half an hour.
ossabot: Logged on 2019-10-04 14:31:54 asciilifeform: diana_coman:
that being said, i also suspect
that yer box is only standing because piz is
taking 90% of
the fire
mp_en_viaje: to which
the only possible response would be "hasta la vista,
tardsteins"
mp_en_viaje: so far
the only constructions seems
to be "gringos started asking questions about our shitty uptime, let's nullroute
their boxes for a day or so and see".
mp_en_viaje keeps diligently reading, and will continue, but so far can't say gleaned much from
the exercise.
ossabot: Logged on 2019-10-04 14:24:41 BingoBoingo: It seems
to depend on how big
the incoming crapflood is and how far upstream
they have
to go
to find a sufficiently wide pipe
to cut off
the crapflood.
mp_en_viaje: the problem here'd be
that
there's only four quarters in each day and with barely
thirty days in a month, your uptime comes
to...
two nines, o rmore precisely 119/120
bvt: asciilifeform: on
the non-logging bot.py i used for
testing my vpatch, i got pings from freenode only every ~140 seconds -- not 30-45 definitely
ossabot: Logged on 2019-10-04 13:58:34 BingoBoingo: asciilifeform: I
trying
to start by getting
the portions of
the range without known, uncloaked IRC bouncers opened up again. From
there we continue
trying
to open
things up.
ossabot: Logged on 2019-10-04 13:50:07 BingoBoingo: Well, now with cloaks attacker HAS
to reveal
that
they are
targeting
mp_en_viaje: i was under
the impression you're buying dedicated pipe.
ossabot: Logged on 2019-10-04 13:41:24 BingoBoingo:
The cloak is not perfect protection, but it does frustrate
the lazy sort of attack we appear
to have been struck by