Slashdot Mirror

← Back to Stories (view on slashdot.org)

BitTorrent Servers Under DDoS Attacks

Posted by ryuzaki0 on from the under-fire dept.

jZnat writes "CNet News.com reports that popular BitTorrent tracker hosts such as Suprnova and LokiTorrent underwent DDoS attacks on Wednesday (I'll bet you noticed). The culprits are primarily unknown, but these sites were flooded beyond control from the attack. This appears to be striking an interest in revising the BT protocol and Suprnova's interest in making their own protocol."

9 of 352 comments (clear)

  1. suprnova.com and .net by dncsky1530 · · Score: 5, Interesting

    I would like to know whether suprnova.com and suprnova.net were hit by the DDoS attacks. They try and maky money of the popularity of suprnova.org and there are a number of people that actually get suckered into paying those sites.

  2. So it's time to... by WARM3CH · · Score: 4, Interesting

    So it's time to switch to a serverless network under an open-source project? You mean something like Kademlia in the eMule?

  3. Re:That's fine by TheSurfer · · Score: 3, Interesting

    Please speak for yourself. The fact that you're living in a country with strict file copying/distribution laws doesn't mean this is the same in the rest of the world. At least here in the most countries of Europe there's nothing wrong with distributing copies of music, video and software.

  4. Own protocol? by tod_miller · · Score: 5, Interesting

    Suprnova's interest in making their own protocol.

    I am all up for new protocols, but there is a reason why we do not have:

    http, httmyp, tthpp, hhtp, mshttp [I wouldnt doubt], SCOhttp, HPhttp

    Don't fragment the issues, work on a common protocol, if we can uncouple protocol and application (which has happened in all major networks I think) then good.

    Go for it supe..r..pr..nva...! but make it open.

    I kinda knew bit torrents would be attacked, can't they just publish the ip's that are attacking them, and get us to click on them a bit?

    teardrop attack?

    --
    #hostfile 0.0.0.0 primidi.com 0.0.0.0 www.primidi.com 0.0.0.0 radio.weblogs.com
  5. Loki's dead right now... by Vertigo01 · · Score: 3, Interesting

    As of right now (0047 : 03/12/2004 GMT-8) Loki Torrent seems to be dead... Slashdot effect? or another DDos ? (or is there a difference?)

  6. This could be more widespread than these two sites by Nightbrood · · Score: 3, Interesting

    While these two sites may be the biggest sites that we know of under DDoS attacks to me it seems to be more widespread. I am a moderator of a small Mazda enthusiast forum and we underwent a variety of DDoS attacks pretty much all night from varying addresses. I have no clue why someone would want to DDoS a small non-profit forum (we have our own server) but seems to me like Suprnova.org and the other BitTorrent sites are just collateral in a much larger game.

    Luckily for us, we have a very good admin and he was updating the firewall rules pretty much left and right. Site never went down but at least we weren't posted on the front page of Slashdot either... then things would have been a bit different.

  7. Fracturing is inevitable... by Kjella · · Score: 4, Interesting

    ...there's just too many variables that are directly opposing.

    Central vs decentral
    Peers vs supernodes vs superservers vs tracker
    Anonymity vs speed
    Integrity vs fuzzy search
    Search by content vs by index vs by hash vs...
    Routing vs direct links
    Indexing vs index poisoning
    Trust vs anonymity
    Leeching vs control

    It is impossible to create a network that can achieve all of them at once.

    Http is by comparison a trivial protocol. It involves only the connection between two hosts. Creating a virtual network of P2P clients is more like reimplementing the whole of layers 3 (IP), 4 (TCP), 5 (sessions) in the OSI model.

    Kjella

    --
    Live today, because you never know what tomorrow brings
  8. Re:Come on by femto · · Score: 4, Interesting
    You may jest, but read some of the reports coming out of the current Kazza case in Australia.

    For example:

    The Federal Court heard yesterday that the major record labels are also engaged in a program of actively disrupting the file-sharing network by bombarding it with billions of decoys and spoofs that pose as song files.

    On the bright side, the article also contains the following quote from the judge:

    The judge said it was important that any legal remedy did not trespass on freedom of communication. "You are entitled to protect copyright. You are not entitled to control the internet," he said.
  9. Re:explain me ? by cdrudge · · Score: 3, Interesting

    The corporate world isn't trying to control the dissemination of information. They are protecting their profits. It's not necessary for them to have symetric lines for most DSL customers as their downloading habits are very much skewed towards the download bandwidth. It's also cheaper for them to provide aDSL service then it is to provide sDSL. Upload bandwidth I beleive is more expensive, bit for bit, then the download. There is also distance limitations on the speeds available. sDSL may work well at relative slow speeds, but once you get to faster speeds, the upload speeds greatly reduce. Verizon offers download speeds between 768kbit@18,000 feet and and 7.1mbit@9,000 feet. There is no way that they can provide 7.1mbit upload speeds@9,000 feet.

    Dynamic IP addresses are used for several reasons. The first is that it discourages customers from running servers. It doesn't eliminate it, but it makes it more of an inconvienence.

    Those that truly need static addresses typically are willing to pay a premium for it. Business customers for instance. They can't afford to have e-mail not delivered or their website unavailable during that short period when an IP address may be updated. In this case, it is about the $$$. Most ISPs will renew a lease so in effect your dynamic address is typically static, but it's not guaranteed though.

    Dynamic addresses are also cheaper for the ISP. In many cases the addresses aren't actually owned by the ISP but instead "leased" to them. The ISP ends up paying for each one of them. If they give everyone static, they need to have 1 or more addresses per customer. If they hand them out on a as-needed basis, they can save money as not everyone needs one at all times. At most they would need the same number of addresses as what they would need with static. At the least, they would need 1 per active customer. As leases expire the addresses can be reused, reducing the total number of addresses needed over the long term.

    PPPoE is used because it can simplify the back end support and accounting process for the ISP as they can use essentially the same system for both dialup and DSL customers. If everyone is essentially treated as a PPP customer, regardless of the actual connection method, the same authenticaion servers can be used, the same tracking/billing servers, etc. ISPs didn't have to get another set of conectivity to migrate dialup users over to DSL.