Slashdot Mirror
Go Daddy: Network Issues, Not Hacks Or DDoS, Caused Downtime
miller60 writes "GoDaddy says yesterday's downtime was caused by internal network problems that corrupted data in router tables. 'The service outage was not caused by external influences,' said Scott Wagner, Go Daddy's Interim CEO. 'It was not a 'hack' and it was not a denial of service attack (DDoS). ... At no time was any customer data at risk or were any of our systems compromised.' The outage lasted for at least six hours, and affected web sites and email for customers of the huge domain registrar."
... so the NSA could install their backdoors.
An enigma, wrapped in a riddle, shrouded in bacon and cheese
Wow, anonymous was so good they were undetectable... And they almost got away with it too. To bad anonymous caught them.
This just makes them look even less competent as a service provider, if the problem was purely internal then.
Then I've got a fully alive not dead elephant to sell you.
Talk about having a bad day at the office... can you imagine being a Sys Admin at GoDaddy?
We have a few odd DNS entries still hosted at GoDaddy. We'll be yanking those last ones away. Any advice on how to set it up so I'm not depending on one registrar?
See my journal for slashdot ID's by year. Mine created in 2005. http://slashdot.org/journal/289875/slashdot-ids-by-year
I don't believe them. Why would a company employing many "networking experts" admit to being seriously disrupted by script kiddies?
Of course they would deny it.
if they'd pay some of that massive advertising budget to competent employees, quality software and proper maintenance. ... naw, bring on the chick ads.
So that's, what, two big hits for Go Daddy this year?
A feeling of having made the same mistake before: Deja Foobar
"Our PR department told us to say we have NO vulnerabilities. It was just an internal glitch. Nothing to see here. Continue buying our (insecure) products please!"
we're just incompetent.
I don't buy this for a nickel, and I doubt they are even capable of detecting that a problem was caused by "external influences".
Laughably feeble attempt to save face in front of countless customers who should have known better than to use GoDaddy services.
All those moments will be lost in time, like tears in rain... time... to... die...
I received emails last night from some SAAS companies claiming that there service outages were due to attacks by hackers. They did not mention GoDaddy specifically, but I know their DNS is hosted there.
Why would they be saying it was hackers?
Sounds like damage control to me.
There was no other indication of a DDOS than the "I did it" tweet by a lone troll. To knock out someone as big as Godaddy for as long as they did would've required an epic-scale DDOS and you'd think something like that would've been noticed by their upstream providers.
This is the second time this week an Anonymous troll lied about an attack (the other one was stealing iPad device ID from FBI)... Anonymous's sterling reputation is being tarnished!
This shirt by Think Geek fits.
=================
Unix is very user friendly, it's just picky about who its friends are.
I bet it has something to do with those distracting young ladies selling their wares to executives right next to the geeks trying to do their work.
"Don't worry, it wasn't DDoS. We're just incompetent." - GoDaddy
They don't want the terrorists to win.
One person sends tweets claiming to have DDOS'd all of GoDaddy and the whole media swallows this and reports it as major news. No investigation, no other source.
If you were hacked? It shows your defenses are weak.
If you weren't hacked? It shows you have some seriously poor management/backup equipment.
Either way, less people are going to want to use you after this.
What do I know, I'm just an idiot, right?
Disclaimer: I work for a company that got "bought out" by KKR, just like GoDaddy.
Since KKR bought them out, GoDaddy has jacked up their prices (to make up for the billions I'm sure KKR "leveraged" out of GD for their execs and shareholders), took a pro-SOPA and PIPA stance (which garnered them a bit of a boycott), and is now having infrastructure problems. I haven't heard, but I'd bet there were layoffs and some brain-drain shortly after the KKR mafia took over.
Go figure.
If you own stock in a company that is being eyed by KKR (think: Bain Capital) dump it quick. If you're a customer, make plans to jump ship.
So they are saying they weren't incompetent and got hacked they were just incompetent.
If one "anonymous" person could take down 5 million websites then we might as well give up on the Internets ...
Then again it could have been one GoDaddy Admin who accidentally misconfigured the routing tables that caused all of this ... I'd probably want to be anonymous if I was that person as well ...
That's what it cost me to figure out that each hosted domain has a different credit card record for autorenewal. So updating one record won't stop the rest of your domains from expiring. Bastards. They're worse than Comcast.
Good for me, though, since that caused me to switch everything to a competitor and not be affected by this outage.
:wq
This is almost certainly a result of a network change plus some really bad luck. Big player BGP peering connections are under intense scrutiny right now because of a few mistakes made at company A were introducing blackhole routes into company B (c,d,e,f's) routers.
Networking is the most often overlooked, often shit on, everyday service that everyone ab(uses) and gets pissed when it doesn't work properly. Like toilets.
And somebody else just happened to know about it and take credit for it?
They were down for 6 hours but still claim 99.999% uptime. But unless they have been around for more than 57 years, I dont' see how that is possible. Wonder what funky math they use to back up that number.
https://encrypted.google.com/search?q=5+hours+%2F+(1-99.999%25)
So now that they admit it was a internal issue does that mean everyone that has their "Premium" DNS SLA agreement of 99.999% uptime can walk away from any contractual agreement and/or get some giant credit?
To this I say "so what"? When you have one primary job to do - respond to DNS requests for millions of domains that are registered through you - and you fail to do so, it's over. No matter what the root cause is, you caused *millions* of web sites to be unreachable for most people, for a period of time spanning hours. This is not "oops", this is catastrophic failure from a business perspective.
I can only hope that sufficient numbers of customers will be as offended, and seek more reliable solutions.
"Network issues" has no real meaning. DDoS and network hacks are both types of "network issues." This is like saying someone died from "natural causes": it means nothing; there is always an actual cause.
Some stupid intern tripped over the network connection and broke everything
Anonymous has a person that works inside of GoDaddy and they caused the problem from the inside!
Or GoDaddy is a bunch of baboons....
Would you really expect them to admit it if it happened?
I work at a firm that was setup on Godaddy before I arrived. Only for domain register and public dns. What is /. recommendation for who to switch too?
how did they obtain the source code and database for godaddy?
https://twitter.com/AnonymousOwn3r/status/245626172103344128
"Yesterday, GoDaddy.com and many of our customers experienced intermittent service outages starting shortly after 10 a.m. PDT. Service was fully restored by 4 p.m. PDT. "
http://www.godaddy.com/newscenter/release-view.aspx?news_item_id=410
Must be that new definition of the word "intermittent." The one roughly synonymous with "total."
Moderating "-1, Disagree" is simple censorship. Have the guts to post your opinion.
damn, now you've ruined those Godaddy commercials for me.
What if the cause was actually a hack, but they didn't notice it? Corrupted routing tables don't occur all by themselves and single routing tables taking a whole provider down doesn't happen that often either. I wouldn't rule out the possibility of *a* hack just jet.
I was promised a flying car. Where is my flying car?
I'm no expert and don't know the ins and outs of the whois command and various databases, but performing a whois for godaddy.com on my macbook includes some very interesting results -
GODADDY.COM.PISSEDOFFPEOPLEOFAMERICA.COM
GODADDY.COM.AND.ALEX.FUCKED.BY.WWW.DNDIALOG.COM
GODADDY.COM.THECOTTONWIFE.COM
GODADDY.COM.THEYOUNGCONS.COM
GODADDY.COM.THEVILLAGEAT63RDSTREET.COM
GODADDY.COM.THEFOREXTHIEF.COM
Moreover, all of these seem to redirect to their homepage. Seems hard to believe GoDaddy would set those up....
Wouldn't you rather the world think that you were hacked by some unbeatable magic hacking group, then your company went down due to your own ineptitude?
He who doth protesteth too much...
So anonymous took responsibility for it? Wow, I guess they were talking out their asses just like any other immature, pathetic little hacker kid. Way to downgrade their image straight down the toilet.
So you cant use SSL and fall back to plain text... great...
CVE-2012-4244
Yeah... Sure, whatever you say Godaddy...