Slashdot Mirror

← Back to Stories (view on slashdot.org)

Github Under JS-Based "Greatfire" DDoS Attack, Allegedly From Chinese Government

Posted by Soulskill on from the year-of-the-ddos dept.

An anonymous reader writes: During the past two days, popular code hosting site GitHub has been under a DDoS attack, which has led to intermittent service interruptions. As blogger Anthr@X reports from traceroute lists, the attack originated from MITM-modified JavaScript files for the Chinese company Baidu's user tracking code, changing the unencrypted content as it passed through the great firewall of China to request the URLs github.com/greatfire/ and github.com/cn-nytimes/. The Chinese government's dislike of widespread VPN usage may have caused it to arrange the attack, where only people accessing Baidu's services from outside the firewall would contribute to the DDoS. This wouldn't have been the first time China arranged this kind of "protest."

5 of 116 comments (clear)

  1. Ancient Chinese wisdom by benjfowler · · Score: 5, Insightful

    For the purported great and ancient wisdom of 5000-year-old Chinese civilization, they have pretty lousy leaders.

    The West has leaders with minds like children too, but at least we can laugh at them, and eventually get rid of them. Must suck to be Chinese with these idiots in charge...

    1. Re:Ancient Chinese wisdom by dave420 · · Score: 4, Funny

      Can't you figure out how to use chopsticks? Poor baby.

  2. Re:Github is scary for critical code by wisnoskij · · Score: 4, Insightful

    Well considering that apparently f***en CHINA is DDOSing them and they are only experiencing intermittent downtime that is pretty impressive to me. More of reason to switch than a warning against it.

    Still, no backups, no alternative plan, your coworker is an idiot.

    --
    Troll is not a replacement for I disagree.
  3. Re:Github is scary for critical code by dave420 · · Score: 5, Insightful

    You put your local github repo on some server, and then have it push its updates to Github. Should anything happen to that server, you can use Github to get a copy. The chances of Github and your local server losing your data is clearly much lower than either on its own, hence it making sense. Or just hate on Github because you are scared and don't understand stuff. Whatever's easier.

  4. Re: Centralized on GitHub! LOL! by Grishnakh · · Score: 5, Insightful

    You really don't understand what decentralized version control is, do you?

    The whole point isn't to avoid any centralization at all, it's that you're not utterly reliant on it. It's somewhat similar to the argument between a big server and thin clients (where nearly all computation is on the server) and "thick clients" (PCs) and less-capable servers (for sharing files, etc.). With a big server, if that server goes down or the connection to it goes down, you're screwed, and can't do anything. With today's more common thick-client paradigm, if your office file server goes down, you can't easily share files with your coworkers and other things are inaccessible, but you can still get some work done using whatever local copies you have.

    This is what DVCS is all about. With Git, you have a full copy of the repo just by virtue of having "checked out" a copy. You can still get some work done without access to the central server, whether it's down or your WiFi connection is down or your VPN is down. You can't do everything obviously, nor will you ever be able to, but that's not the point. And, in a worst-case scenario, if the central server just disappears one day without accessible backups, everyone with a copy checked out has the full repository, so it's possible to rebuild easily.