Stories
Slash Boxes
Comments

SoylentNews is people

posted by martyb on Friday March 02 2018, @12:46PM   Printer-friendly
from the quick-reaction dept.

GitHub has been hit with the largest-ever DDoS attack, and it was only down for a few minutes:

On Wednesday, February 28, 2018 GitHub.com was unavailable from 17:21 to 17:26 UTC and intermittently unavailable from 17:26 to 17:30 UTC due to a distributed denial-of-service (DDoS) attack.

[...] Cloudflare described an amplification vector using memcached over UDP in their blog post this week, "Memcrashed - Major amplification attacks from UDP port 11211". The attack works by abusing memcached instances that are inadvertently accessible on the public internet with UDP support enabled. Spoofing of IP addresses allows memcached's responses to be targeted against another address, like ones used to serve GitHub.com, and send more data toward the target than needs to be sent by the unspoofed source. The vulnerability via misconfiguration described in the post is somewhat unique amongst that class of attacks because the amplification factor is up to 51,000, meaning that for each byte sent by the attacker, up to 51KB is sent toward the target.

[...] Between 17:21 and 17:30 UTC on February 28th we identified and mitigated a significant volumetric DDoS attack. The attack originated from over a thousand different autonomous systems (ASNs) across tens of thousands of unique endpoints. It was an amplification attack using the memcached-based approach described above that peaked at 1.35Tbps via 126.9 million packets per second.

Also at Wired and The Register.


Original Submission

 
This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
  • (Score: 4, Insightful) by epitaxial on Friday March 02 2018, @02:03PM (6 children)

    by epitaxial (3165) on Friday March 02 2018, @02:03PM (#646354)

    The people who run Slashdot don't have a clue what they are doing. They still can't figure out that unicode bug that only affects them. Show me another website right now with that same problem. According to an admin they are fixing a problem on the "backend" and it will take a few days.

    Starting Score:    1  point
    Moderation   +2  
       Insightful=2, Total=2
    Extra 'Insightful' Modifier   0  
    Karma-Bonus Modifier   +1  

    Total Score:   4  
  • (Score: -1, Troll) by Anonymous Coward on Friday March 02 2018, @02:49PM

    by Anonymous Coward on Friday March 02 2018, @02:49PM (#646386)

    The worst part is all the Slashdolts need do is look at GitHub to see how The Bigly Fucktard and his nigger buddies at ShitstainNews did to fix the Unicode problem.

  • (Score: 2) by VLM on Friday March 02 2018, @03:08PM (3 children)

    by VLM (445) Subscriber Badge on Friday March 02 2018, @03:08PM (#646400)

    The people who run Slashdot

    There's still people left? After a zillion mergers and sales and downsizing I thought the whole site was one small shell script. ALL the old timers are long gone, correct?

    I know from professional experience how "fun" it is to maintain something where the last original team member quit three years ago.

    • (Score: 5, Interesting) by zocalo on Friday March 02 2018, @03:49PM

      by zocalo (302) on Friday March 02 2018, @03:49PM (#646433)
      Not sure how much truth there is to the tale, but ISTR the current owners dumped all the previous editors bar one (the oft-maligned Timothy) who was only kept on to train up the current batch at which point they would then let go as well. Yeah, that's a really good way of motivating someone to do a good job. They now clearly have have no one who has much experience with the code left, and from the multiple protracted outages without so much of a Twitter post to explain what's going on, it seems they don't have much experience with running servers either. It wasn't that many years ago that Slashdot being down was given the same level of attention in the tech media as Twitter or Facebook going down today is, yet today no one even seems to care. How the mighty have fallen...
      --
      UNIX? They're not even circumcised! Savages!
    • (Score: 1) by DECbot on Friday March 02 2018, @09:31PM (1 child)

      by DECbot (832) on Friday March 02 2018, @09:31PM (#646646) Journal

      ... I thought the whole site was one small shell script.

      I imagine it is done more in Linux fashion, where there is one small shell script linking to hundreds of small scripts, utilities, and perl-one-liners dynamically calling thousands of more small scripts, utilities, and perl-one-liners stored in a MySQL database that has not been updated since 2006 when the database crashed after achieving 2²⁴ − 1 comments.

      --
      cats~$ sudo chown -R us /home/base
      • (Score: 2) by VLM on Sunday March 04 2018, @04:24PM

        by VLM (445) Subscriber Badge on Sunday March 04 2018, @04:24PM (#647642)

        when the database crashed after achieving 2²⁴ − 1 comments.

        I remember that although I remember it as being some autoincrementing primary key exceeded 32 bit integer. A somewhat common problem. Fixing it can be hard.

  • (Score: 1) by angelosphere on Friday March 02 2018, @10:33PM

    by angelosphere (5088) on Friday March 02 2018, @10:33PM (#646667)

    /. is written in Perl ... why do you wonder that they have troubles to fix simple bugs is beyond me.
    Well soylent news is Perl, too ... but they fixed stuff at a time where perl was still a trenending language :D