Slashdot Mirror
Several Sites Including Twitter, GitHub, Spotify, PayPal, NYTimes Suffering Outage -- Dyn DNS Under DDoS Attack [Update] (techcrunch.com)
Several popular websites and services are down right now for many users. The affected sites include Twitter, SoundCloud, Spotify, and PayPal among others. The cause appears to be a sweeping outage of DNS provider Dyn -- which in turn is under DDoS attack, according to an official blog post. From a TechCrunch report:Other sites experiencing issues include Box, Boston Globe, New York Times, Github, Airbnb, Reddit, Freshbooks, Heroku and Vox Media properties. Users accessing these sites might have more or less success depending on where they're located, as some European and Asian users seem not to be encountering these issues. Last month, Bruce Schneier warned that someone was learning how to take down the internet. Update: 10/21 14:41 GMT by M : Dyn says that it has resolved the issue and sites should function normally. Update: 10/21 17:04 GMT by M : Department of Homeland Security says it is aware of the first DDoS attack on Dyn today and "investigating all potential causes." Dyn says it is still under DDoS attack. News outlet The Next Web says it is also facing issues. Any website that uses Dyn's service -- directly or indirectly -- is facing the issue. Motherboard has more details. Update: 10/21 17:57 GMT by M : It seems even PlayStation Network is also hit. EA Sports Games said it is aware of the issues in live-play. Dyn says it is facing a second round of DDoS attacks.
Update: 10/21 18:45 GMT by M : U.S. government probing whether east coast internet attack was a 'criminal act' - official.
Editor's note: the story is being updated as we learn more. The front page was updated to move this story up. Are you also facing issues? Share your experience in the comments section below.
Update: 10/21 18:45 GMT by M : U.S. government probing whether east coast internet attack was a 'criminal act' - official.
Editor's note: the story is being updated as we learn more. The front page was updated to move this story up. Are you also facing issues? Share your experience in the comments section below.
It's hard to tweet that Twitter is down when Twitter is down.
Hopefully they never come back up! It would be great to live in a world with the above gone.
Right! Because we sure wouldn't want small businesses to be able to do business using a payment mechanism they choose to use, or people to conveniently communicate from their phones using a service they choose to use, or listen to music from a source they choose to use. Definitely, all such things should be destroyed. What the hell is wrong with you?
Don't disappoint your bird dog. Go to the range.
The thing about DNS is that to get the best speed, you want the nodes distributed as far and wide as possible. And you don't want it on the same servers as your main service. So it's either a different department or a different company - guess which one is cheaper.
Unresponsive DNS queries would make pages slower if they relied on them. It's just that your neighbors aren't using their favorite web sites, leaving you with some extra bandwidth.
You really need to be less of an absolutist
See, my perspective is that you absolutely should have the choice to use PayPal or Square or what have you, if you choose to. You ... absolutely think they should be shut down? In what way am I over-reacting to someone who thinks that Twitter should go away? Why not simply offer a better choice, or at least ignore the thing they don't like? The world view that calls for the destruction of businesses that whiners resent or wish were different is a fundamental problem with our current culture. So yes, it's worth reacting, and pointing out the baseline trollishness of such perspectives. Because the little baby tyrants that live inside people who think like that are poisonous to everyone. "I don't like that thing! I hope it dies!"
No, I'm not confused. But I see that you're trying very hard to avoid the big picture.
Don't disappoint your bird dog. Go to the range.
Working at a medium traffic startup, DynECT always insisted that their service was worth a lot[1] more money than AWS's Route 53 or Google's Cloud DNS because unlike AWS or Google they had never had a service outage and boasted 100% uptime since their company was founded.
Looks like we made the right choice going with Route 53 instead of these guys.
1. Seriously, they wanted 5,000 USD/mo when AWS charges 8 USD/mo for the same service.
Tried to reload my card via the app and couldn't. had to pay for my drink with a credit card. The shame
Paying money every month for a couple of sine waves coming out of a cheap tinny Chinese speaker.
Paying money to paypal for the privilege of paying. Paypal fees are f**ing ridiculous
Here's an idea: don't use those services.
Obviously you are personally running a much better music streaming service that you'd like to offer to Spotify's millions of customers. Can you provide a link to something that they will find persuasive? I'm sure your system is easier to use, less expensive, widely available, performs well, pays the artists who create the material they license to you, and in all other ways is superior to Spotify. Looking forward to your offering! Right? Yes?
And, obviously you have never been involved in any sort of commerce there in your mom's basement. Or, are you offering the infrastructure, security, staff, and other resources that will allow individuals and businesses the means by which to handle financial transactions on the fly, a million times a day, but at no cost to any party involved? Fantastic! Please provide a link to that other service of yours, too. That would be awesome. Right? Yes? No? I see.
Don't disappoint your bird dog. Go to the range.
Paying money to paypal for the privilege of paying. Paypal fees are f**ing ridiculous
Ha, you should check out the bank fees.
Wanna buy a shirt?
https://www.redbubble.com/people/stealthfinger/shop?asc=u
Torrent, cryptocurrency. Spotify uses DRM. DRM is evil. I am surprised to see someone on Slashdot supporting these muppets.
I'm supporting your CHOICE to use whatever services you like, and to move to something else if you prefer. Wishing for the destruction of such services by a malicious third party is BS. If you want them to go away because you philosophically disagree with, say, musicians choosing to whom they license their works ... then offer a service that musicians like better. Some don't license their works to Spotify. That's different than cheering when some script kiddies act to destroy access to it.
Don't disappoint your bird dog. Go to the range.
LOL says an anonymous douchebag in the world's most hated country... SMH.
The dynamics of this issue have changed considerably.
Five years or so ago, going offline was a Big Deal. Nowadays, people (both users and CxO's) don't seem to care as much; outages are transient, and accepted as a part of the cost of doing business. It's kinda sad for those of us who build high availability systems, but at the same time it's probably a lot more realistic for the budgets of most businesses.
Part of it, IMO, is that the Internet has been around long enough now (in a commercial sense) that the users are finally more prone to saying "my Internet is down" than "my Twitter is down".
Perception is everything.
-- sigs cause cancer.
You can't conceive of an individual or gradiated reaction
So what is your "gradiated" take on whether or not malicious script kiddies should burn down Twitter's DNS provider? Personally, I think that's a black and white issue. I responded to someone who was cheering on the script kiddies doing the damage. You, with your advanced and clearly superior intellect and sense of nuance, obviously think it's kind of OK that the script kiddies wreck things like that. Can you elaborate please? Be sure to use simple words to describe the part where launching a DDoS like that is a good thing, so that us simpletons can keep up with your anonymous, cowardly self as you teach us more about our irrelevance. Or will explaining the ethical merits of the DDoS attack on Dyn fail to provide you with a proper venue for your pretentious faux condescension? I'd hate for you to have to just simply get to the point - that might hurt your tender, advanced, nuanced feelings.
Don't disappoint your bird dog. Go to the range.
You're wasting your breath, ScentCone. Guys like him have declared war on the Internet because Twitter took away Milo Yiannopoulos' blue checkmark, and some female video game critic gave Bayonetta a 7.5/10.
This is the nihilism that online anonymity and toxic 4chan culture has engendered. They're terrorists who are simply too lazy to leave their moms' basements. That they see themselves as some sort of shit-posting freedom fighters would be very funny if it wasn't so tragic and pitiable.
You are welcome on my lawn.
Forget the sites the articles mention. I was having very serious troubles getting to the Guardian's site, pictures not loading, and worse, I couldn't even log onto my hosting provider.
Now, I'm on Verizon FIOS, and my system (Linux, a real o/s) couldn't even ping hostmonster.com, it couldn't find the name, until I manual added nameserver 8.8.8.8 (one of google's) to my resolv.conf. Then it started working.
That tells me that it was overloading nameservers in a *LOT* of places.
mark
Joe Biden told NBC a “message” would be sent to Russian President Vladimir Putin over the alleged hacking, with the channel saying the CIA was preparing a retaliatory cyber attack “designed to harass and ’embarrass’ the Kremlin leadership.”
Kremlin spokesman Dmitry Peskov immediately denounced Biden’s remarks, saying Moscow would take precautions to safeguard its interests in the face of the increasing “unpredictability and aggressiveness of the United States”.
It is. That's why the big websites are using dyn.com as opposed to dyndns.org.
Change is certain; progress is not obligatory.
On the topic of Russians, I'm going to assume that this is Putin trying to help his employee Trump win. If Trump can't tweet, he can't keep reminding voters of all the reasons they want to vote against him. And the only way to keep Trump from tweeting is to take out Twitter.
It's mainly affecting the east coast, sure, but also Ohio which Trump needs to win.
Seems like a much more straightforward than using trolling to help him win.
It's not like we accidentally gave botnet creators millions of more devices to use as processing power for DDoS. Right?
Yes, but the problem here is all these services are using a singular DNS service which is under attack.
A good decade and a half ago, when I was part of a hosting company, we had the DNS for our customers across 3 or 4 different providers. That way, if for whatever reason one provider went out of business, the domains would continue to operate.
The problem is this:
Github.com:
Name Server: NS1.P16.DYNECT.NET
Name Server: NS2.P16.DYNECT.NET
Name Server: NS3.P16.DYNECT.NET
Name Server: NS4.P16.DYNECT.NET
Twitter.com
Name Server: NS1.P34.DYNECT.NET
Name Server: NS2.P34.DYNECT.NET
Name Server: NS3.P34.DYNECT.NET
Name Server: NS4.P34.DYNECT.NET
Box.net
Name Server: ns3.p05.dynect.net
Name Server: ns1.p05.dynect.net
Name Server: ns2.p05.dynect.net
Name Server: ns4.p05.dynect.net
If for whatever reason DynDNS pulls the plug (which they have a history of for reasons of profit and incompetence), all these sites are down. It doesn't matter whether or not you're using Unicast or Anycast, if your provider 'dies' (or it's host providers like Amazon which also has a history of major outages) then your domain dies. And before you get all your glue records fixed, you're out at least 48-72 hours.
Custom electronics and digital signage for your business: www.evcircuits.com
Dyndns.org is unrelated to dyn.com
If they're unrelated, why does http://dyndns.org/ redirect to http://dyn.com/? DynDNS is just an obsolete brand name for the same service from the same company, which now refers to itself simply as Dyn.
"The state is that great fiction by which everyone tries to live at the expense of everyone else." - Bastiat
That does seem like something the US would do: try to take retaliatory international action, end up shooting itself in the foot. We've never been particularly good at international relations.
"First they came for the slanderers and i said nothing."
Not that I care much. I have 2 twitter accounts, one for my cat and one so I can keep up with the latest inane things that Jeremy Clarkson, Neil DeGrasse Tyson and John McAffee say and McAffee is kind of annoying so I'm thinking of unfollowing him
I'm sure the NYTimes will be up by the time I want to click on a link to them if they're not up already.
Reddit seems to be working as does Fark, YouTube and Netflix. I know those last three weren't mentioned but I frequent those sites.
Disqus is down if anyone but trolls care.
LOL, I just put in nytimes.com and got an attempted browser hijack. I got about 5 pop-ups trying to scare me. I managed to close them too fast to read exactly what they said.
Time to QoS our links to .RU, .CN origin routes.
This is the nihilism that online anonymity and toxic 4chan culture has engendered. They're terrorists who are simply too lazy to leave their moms' basements.
Calling them "Terrorists" is giving them way too much credit. Terrorists typically believe strongly in something. These people are just losers who have too much time and a far to comfortable life*. They're just losers and idiots with an internet connection. They're not even proper nihilists, they're not contemplating the futility of their own existence... in fact they think the end of the world is running out of pop tarts.
* Please note, I don't think our society needs to be harder/more authoritarian... in fact I believe it needs to be less authoritarian... but we need to be able to call proper idiots, idiots whilst collectively ignoring the shrill cries of "SJW" and "PeeCee gone Mad" or whatever thought terminating cliche they like to defend their stupidity with. Every now and then, even I have to agree there is an arse missing a boot though.
Calling someone a "hater" only means you can not rationally rebut their argument.