Dns-operations mailing list

[Neico <admin AT neic0.de>]

That's quite something, I only had such an provider once, even tough they didn't kill the server. They just suspended it and left it for me to e-mail them to re-enable the server and check if I can get it fixed (how am I supposed to fix DDoS anyways, well whatever...). But I never had any issues with OVH so far, which I'm using since years now. (Hetzner is another good provider in this regard, it's just questionable if they are available to your region...)

The only thing you could say against OVH is that from time to time there's an network outage for a maximum of 15 minutes (the last one was 2 or 3 months ago, not sure what happened but oh well). The funny part here is that around 70% of the websites I browse are down at that very same time :P

- Neico

On 18.09.2012 22:42:29 GMT+0200, Alex Hanselka <alex AT opennicproject.org> wrote:

From my understanding, you pay a LOT for that service, otherwise most services will just cut you off.

On Sep 18, 2012, at 2:42 PM, Abraão Caldas <abraaocaldas AT gmail.com> wrote:

One well learned lesson, NEVER EVER pay for one year dedicated hosting. If you get some DoS at your back they will just pull the plug and you will lose your money.

2012/9/18 Alex Hanselka <alex AT opennicproject.org>

Generally speaking, you're going to be let go if you are a continued problem no matter who the datacenter or host is.  For instance, Linode will nullroute the IP if it causes a problem and if it' is a recurring problem you'll be asked to leave. That's pretty standard in the community from what I can gather too.

On Sep 18, 2012, at 12:59 PM, Jeff Taylor <shdwdrgn AT sourpuss.net> wrote:

Yeah that is really poor customer service!  I see stories online now and then about how a datacenter helped their client get through a DDoS attack.  They have to know that ANY website can be attacked, and if the datacenter isn't ready to handle the situation when it happens, they never should have tried to host servers in the first place.

On 09/18/2012 09:28 AM, Abraão Caldas wrote:

Well I disabled my server because the datacenter sent me the second warning about DoS: "He can´t host your server because you are begin DDoSed..." blah blah blah, when I find a decent DC i will host it again. :(

2012/9/18 Jeff Taylor <shdwdrgn AT sourpuss.net>
I agree that you can't prevent a DDoS attack, however the kind that we normally see are from folks trying to use an amplification attack on another target.  Our servers are not the target, just the vehicle for their attack.  By running my perl script, it prevents your server from becoming part of the attacks.  In an amplification attack, most of your bandwidth is used up by your own server trying to respond to the queries.  If you don't respond, the attacker is just wasting their own bandwidth, and they usually figure out that your IP is not helping them.

On 09/18/2012 07:47 AM, Abraão Caldas wrote:

There is no software solution for DDoS, it can help, but if they want the attack will fill your pipe and iptables can only help on last mile. 

2012/9/18 Brian Koontz <brian AT opennicproject.org>

On Tue, Sep 18, 2012 at 09:12:23AM -0400, Abraão Caldas wrote:
> Some bandwith, and you need to secure your server, because some people
> (that don´t have anything better to do) will DoS your server down, like
> mine server. The solution, take it down forever.

I disagree that this is the only solution.  Jeff has a DDOS script
that works well; I posted some iptable rules that utilize hashtable to
block offenders quite effectively.  With these measures in place, my
T2 server runs anywhere from 100kbit/s to 1Mbit/s on occassion.  You
can view all of my T2 traffic logs at gopher://pongonova.gopher.

  --Brian

--
OpenNIC (the sequel) co-founder and wikimaster
IRC: Freenode.net channel #opennic

----
To unsubscribe, email dns-operations-unsubscribe AT lists.opennicproject.org

Attachment: smime.p7s
Description: S/MIME Kryptografische Unterschrift