As the Sys-Admin for a relatively large e-commerce provider we have had our share of DDoS attacks. The first thing, is don't negotiate. Cut your losses and take the site down for a bit if you need to, regroup.
After that... switch your site to Cloudflare or a similar service.
After that... investigate if you want to continue using Rackspace for services. I suggest contacting me directly if you have questions, but suffice it to say we moved away from Rackspace because they and their data-center kept getting VERY large profile DDoS attacks which we were sometimes affected by even if we weren't directly targeted. We have had several months of service that they ended up paying for, for instance. Essentially Rackspace recently (at least their colo stuff) has not been providing 'superior' services.
I'm assuming they're adding the Verisign DDoS protection service, but this change should make EVERY single Godaddy client very, very, very nervous (from the current whois):
+1 or whatever to this... pretty great combo once you have your storage situation figured out. There are a couple little bugs with transcoding, but that's actually the fault of the Roku, not Plex.
Soooo... I have been following the cloudstack project for a bit and was planning on deploying it to use for a 'hybrid cloud' solution (although I wish the cloudbridge part worked with more than EC2 compatible systems). Does this, or should this, change anything? Or , I guess, getting off-topic... should I even be using cloudstack?
I'm happy I didn't take a sys-admin position for them... I know of them and they know of me through the time they hosted with aplus.net... really, that should tell you something.
They won't use a crappy game network like Gamespy so, you know, I'll actually be able to play it online. I literally never got multiplayer working behind a firewall and I was FAR from the only person with this issue. As well, this was the only game I have ever had a problem playing online...
Hyperic is incredible.. but for my uses I need the enterprise version. Paying an extremely high amount of money for only 25-30 servers is not in the cards... and thus I chose zabbix, which does enough right to be a good replacement.
I used nagios for years.. many many years. It has to be, as many have already pointed out.. the most difficult to configure OSS project ever made.
That said, it was fairly powerful once configured properly.
The thing is, though, that is has many shortcomings. I found a much better (although not necessarily as scalable) monitoring and data-gathering solution in Zabbix. They recently released a new version as well that adds many really nice capabilities like ipmi support.
The articles on this keep mentioning cPanel. Now, I've never used or looked at that specific web CP, but it seems likely to me all the attackers would have to do is find a vulnerability on of the scripts used for updating the configs, or adding a DB entry to update the configs, etc. Yes, I know this supposition is light on detail, but given what most control panels eventually have to have access to, seems the more likely than some mystery apache exploit... just tell the scripts they need to update the configs.. or use them to push an update to the machine, etc.
Or does this look a lot like the troop transport vehicle from Aliens? I guess if we ever get invaded we know what to run them over with.
The Better Question
on
Palmtop Nirvana?
·
· Score: 2, Insightful
The better question, is who really needs a handheld device anymore? Just the other day there was a slashdot article about how cell-phones are starting to push other consumer devices out of the market. Look at the Sony/Ericcson p910. Is it a cell-phone? Is it a PDA? Is it both? Devices like this are starting to blur the line, while adding new features (for good or ill) such as camera and touch-screen on what would typically just be a cell-phone. Since I got my phone I haven't had use for a PDA.... hell, it has most of the same games as well.
Yes, and to be precise, that's Sam Raimi's car... literally. Apparently (according to Bruce Campbell) he got *ahem* action in it as a teen, and has had the car rebuilt, etc. Also, Raimi apparently refers to it as the 'Classic'.
Free speech is a noble idea and one that needs to be protected at all costs. As Europe tries to push itself away from the idea of monarchy and its kings of old, it needs to understand this. Both the church and kings could and would come down with an iron fist upon those that spoke out against their rule. As Europe pushes to escape the former rule of king and 'goD' they must remember that by regulation of free speech and all the actions and ability that go with it, they eventually become no better than the kings of yor.
Yes, the PS2 has almost no texture memory (8 megs I believe), and you can't compress textures using the GPU. Wow, that's a great idea. Our processor can push insanely high numbers, but we're going to neuter our console with a crappy GPU and no texture memory. As for the gamecube, it has a great amount of texture memory, and allows compression of textures using the GPU. And it is correct, that only the XBox has more memory for textures.
Why bother going to Russia to buy one? There are several companies that disassemble them, ship the parts to the US, re-assemble them, and then sell the MiG's. Last I checked they started at like $200k, though.
Check out myHTPC. It has an amazing community of support surrounding it, with plugins, players, etc for it... and currently it's still free until myHTPC 2 comes out. http://www.myhtpc.net
Kinda off-topic, but this made me think with all the roller-coaster stuff lately linked on slashdot... does anyone know of people with backyard railroad setups using large-scale equipment, with steam powered mini locomotives and all that? I've seen a couple things like this on Home and Garden type shows, but no cool pics online, etc.
A company I work for used to host DNS for spews once upon a time. This type of thing, and other reasons, are why we kicked them out of our DNS servers. Spews has to be one of the worst spam blocking sites out there. I can't believe anyone actually uses their databases.
The nGage was the king of handheld gaming at some point? I just thought it was an overprice taco that you had to take out the battery to play games on it?
It's hard to say. Nintendo usually strives to give their consoles as much battery life as possible. Look at the GBA SP. Ten hours of play-time, with the light on. I think they should be able to get similar with newer technologies.
I wouldn't go as far as calling B5 very good. There were good episodes, but the show itself kinda sucked... a lot, in some cases. I never really saw what people liked so much about the show.. same humanoid looking aliens as Star Trek, etc. Personally, I think the Star Trek aped version of B5, Deep Space 9 was in some ways better.
Well, I'd have to say that the way the movie was cut was for the best... and leaving all the scenes out you talk about is for the best. People are already trying to complain about the movie being too slow, although I don't feel that's true at all. When it was done I couldn't believe three and a half hours had passed. What should make you happy, though, is it's already known that the extended DVD cut will include plenty of story about Eowyn and Faramir and the houses of healing, etc. As for the scouring of the Shire... I totally agree with that being removed. The ending of the movie would end on too much of a 'down' feeling in total.
Amen. There are very few movies in recent memory that I've felt deserved a 'best picture' award. The only real film I can think of that got it anytime in my memory, and is similar in scope to LoTR, is Lawrence of Arabia... one of the best movies ever made, some would say THE best.
Slashdot Mirror
As the Sys-Admin for a relatively large e-commerce provider we have had our share of DDoS attacks. The first thing, is don't negotiate. Cut your losses and take the site down for a bit if you need to, regroup.
After that... switch your site to Cloudflare or a similar service.
After that... investigate if you want to continue using Rackspace for services. I suggest contacting me directly if you have questions, but suffice it to say we moved away from Rackspace because they and their data-center kept getting VERY large profile DDoS attacks which we were sometimes affected by even if we weren't directly targeted. We have had several months of service that they ended up paying for, for instance. Essentially Rackspace recently (at least their colo stuff) has not been providing 'superior' services.
I'm assuming they're adding the Verisign DDoS protection service, but this change should make EVERY single Godaddy client very, very, very nervous (from the current whois):
Domain Name: GODADDY.COM
Registrar: GODADDY.COM, LLC
Whois Server: whois.godaddy.com
Referral URL: http://registrar.godaddy.com
Name Server: A1.VERISIGNDNS.COM
Name Server: A2.VERISIGNDNS.COM
Name Server: A3.VERISIGNDNS.COM
Status: clientDeleteProhibited
Status: clientRenewProhibited
Status: clientTransferProhibited
Status: clientUpdateProhibited
Updated Date: 10-sep-2012
Creation Date: 02-mar-1999
Expiration Date: 01-nov-2021
Yes, you read that right... they just implemented verisign name-servers. A multi-multi million (billion?) dollar company.
And in case anyone doesn't believe this:
> server a1.verisigndns.com
Default server: a1.verisigndns.com
Address: 209.112.113.33#53
Default server: a1.verisigndns.com
Address: 2001:500:7967::2:33#53
> www.godaddy.com
Server: a1.verisigndns.com
Address: 209.112.113.33#53
Name: www.godaddy.com
Address: 184.168.227.107
Actually, can someone just delete this entire comment tree and post for me? I'll flag it. Sorry!!
Sorry.... uhh... I didn't notice I wasn't logged in. This was me.
+1 or whatever to this... pretty great combo once you have your storage situation figured out. There are a couple little bugs with transcoding, but that's actually the fault of the Roku, not Plex.
Soooo... I have been following the cloudstack project for a bit and was planning on deploying it to use for a 'hybrid cloud' solution (although I wish the cloudbridge part worked with more than EC2 compatible systems). Does this, or should this, change anything? Or , I guess, getting off-topic... should I even be using cloudstack?
I'm happy I didn't take a sys-admin position for them... I know of them and they know of me through the time they hosted with aplus.net... really, that should tell you something.
They won't use a crappy game network like Gamespy so, you know, I'll actually be able to play it online. I literally never got multiplayer working behind a firewall and I was FAR from the only person with this issue. As well, this was the only game I have ever had a problem playing online...
Hyperic is incredible.. but for my uses I need the enterprise version. Paying an extremely high amount of money for only 25-30 servers is not in the cards... and thus I chose zabbix, which does enough right to be a good replacement.
I used nagios for years.. many many years. It has to be, as many have already pointed out.. the most difficult to configure OSS project ever made.
That said, it was fairly powerful once configured properly.
The thing is, though, that is has many shortcomings. I found a much better (although not necessarily as scalable) monitoring and data-gathering solution in Zabbix. They recently released a new version as well that adds many really nice capabilities like ipmi support.
The articles on this keep mentioning cPanel. Now, I've never used or looked at that specific web CP, but it seems likely to me all the attackers would have to do is find a vulnerability on of the scripts used for updating the configs, or adding a DB entry to update the configs, etc. Yes, I know this supposition is light on detail, but given what most control panels eventually have to have access to, seems the more likely than some mystery apache exploit... just tell the scripts they need to update the configs.. or use them to push an update to the machine, etc.
Or does this look a lot like the troop transport vehicle from Aliens? I guess if we ever get invaded we know what to run them over with.
The better question, is who really needs a handheld device anymore? Just the other day there was a slashdot article about how cell-phones are starting to push other consumer devices out of the market. Look at the Sony/Ericcson p910. Is it a cell-phone? Is it a PDA? Is it both? Devices like this are starting to blur the line, while adding new features (for good or ill) such as camera and touch-screen on what would typically just be a cell-phone. Since I got my phone I haven't had use for a PDA.... hell, it has most of the same games as well.
Yes, and to be precise, that's Sam Raimi's car... literally. Apparently (according to Bruce Campbell) he got *ahem* action in it as a teen, and has had the car rebuilt, etc. Also, Raimi apparently refers to it as the 'Classic'.
Free speech is a noble idea and one that needs to be protected at all costs. As Europe tries to push itself away from the idea of monarchy and its kings of old, it needs to understand this. Both the church and kings could and would come down with an iron fist upon those that spoke out against their rule. As Europe pushes to escape the former rule of king and 'goD' they must remember that by regulation of free speech and all the actions and ability that go with it, they eventually become no better than the kings of yor.
Yes, the PS2 has almost no texture memory (8 megs I believe), and you can't compress textures using the GPU. Wow, that's a great idea. Our processor can push insanely high numbers, but we're going to neuter our console with a crappy GPU and no texture memory. As for the gamecube, it has a great amount of texture memory, and allows compression of textures using the GPU. And it is correct, that only the XBox has more memory for textures.
Why bother going to Russia to buy one? There are several companies that disassemble them, ship the parts to the US, re-assemble them, and then sell the MiG's. Last I checked they started at like $200k, though.
Check out myHTPC. It has an amazing community of support surrounding it, with plugins, players, etc for it... and currently it's still free until myHTPC 2 comes out. http://www.myhtpc.net
Kinda off-topic, but this made me think with all the roller-coaster stuff lately linked on slashdot... does anyone know of people with backyard railroad setups using large-scale equipment, with steam powered mini locomotives and all that? I've seen a couple things like this on Home and Garden type shows, but no cool pics online, etc.
A company I work for used to host DNS for spews once upon a time. This type of thing, and other reasons, are why we kicked them out of our DNS servers. Spews has to be one of the worst spam blocking sites out there. I can't believe anyone actually uses their databases.
The nGage was the king of handheld gaming at some point? I just thought it was an overprice taco that you had to take out the battery to play games on it?
It's hard to say. Nintendo usually strives to give their consoles as much battery life as possible. Look at the GBA SP. Ten hours of play-time, with the light on. I think they should be able to get similar with newer technologies.
I wouldn't go as far as calling B5 very good. There were good episodes, but the show itself kinda sucked... a lot, in some cases. I never really saw what people liked so much about the show.. same humanoid looking aliens as Star Trek, etc. Personally, I think the Star Trek aped version of B5, Deep Space 9 was in some ways better.
Well, I'd have to say that the way the movie was cut was for the best... and leaving all the scenes out you talk about is for the best. People are already trying to complain about the movie being too slow, although I don't feel that's true at all. When it was done I couldn't believe three and a half hours had passed. What should make you happy, though, is it's already known that the extended DVD cut will include plenty of story about Eowyn and Faramir and the houses of healing, etc. As for the scouring of the Shire... I totally agree with that being removed. The ending of the movie would end on too much of a 'down' feeling in total.
Amen. There are very few movies in recent memory that I've felt deserved a 'best picture' award. The only real film I can think of that got it anytime in my memory, and is similar in scope to LoTR, is Lawrence of Arabia... one of the best movies ever made, some would say THE best.