/ Register

Welcome to Centmin Mod Community
Register Now

Linode An update from Linode about the recent DDoS attacks

Discussion in 'VPS Provider Network Status' started by eva2000, Jan 1, 2016.

Tags:
Previous Thread Next Thread
Loading...
  1. Jan 1, 2016 #1
    eva2000

    eva2000 Administrator Staff Member

    54,859
    12,239
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,810
    Local Time:
    1:48 PM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    Dec 31, 22:45 UTC
    In progress - An update from Linode about the recent DDoS attacks

    Dec 31, 22:23 UTC
    Scheduled - I’d like to share some updates about the recent DDoS attacks.

    I am one of several network engineers at Linode who have been working around the clock on DDoS mitigation. While things are stable, I would like to take a moment to publicly address the large and frequent DDoS attacks that we have been receiving since Christmas Day.

    It has become evident in the past two days that a bad actor is purchasing large amounts of botnet capacity in an attempt to significantly damage Linode’s business. The following is a partial list of attacks we have received in no particular order:

    - Multiple volumetric attacks simultaneously directed toward all of our authoritative nameservers, causing DNS hosting outages
    - Multiple volumetric attacks simultaneously directed toward all of our public-facing websites, causing Linode Manager outages
    - Layer 7 (“400 bad request”) attacks toward our web and application servers, causing Linode Manager outages
    - Large volumetric attacks toward our colocation provider’s upstream interconnection points, overwhelming the router control planes and causing significant congestion/packet loss
    - Large volumetric attacks toward Linode network infrastructure, overwhelming the router control planes and causing significant congestion/packet loss

    All of these attacks have occurred multiple times. Over the course of the last week, we have seen over 30 attacks of significant duration and impact. As we have found ways to mitigate these attacks, the vectors used inevitably change.

    As of this afternoon, we have mostly hardened ourselves against the above attack vectors, but we expect more to come. We are working extremely closely with all of our technical partners, including our network equipment vendors and our colocation providers, to prevent future attacks.

    Once these attacks stop, we plan to share a complete technical explanation about what has been happening. Additionally, we will be announcing the details of an ongoing project to significantly improve our internet connectivity and resiliency.

    We would like to apologize for the lack of detail in some of our recent status-page updates. Please know that we are dedicating all resources from multiple departments to stopping these attacks. We acknowledge the amount of downtime we’ve been experiencing is completely unacceptable, and we appreciate the understanding and support we have received over the past several days. We will share more information as our investigation continues.

    Alex Forster
    Network Engineer at Linode

    Continue reading...
     
  2. Jan 1, 2016 #2
    rdan

    rdan Well-Known Member

    5,447
    1,408
    113
    May 25, 2014
    Ratings:
    +2,201
    Local Time:
    11:48 AM
    Mainline
    10.2
    DDOS Protection? :D
     
Previous Thread Next Thread
Loading...

.