Yes.. That Again..

[Rogean]

Quote:

Originally Posted by Raavak [You must be logged in to view images. Log in or Register.]

If we could find for certain who the person/people behind it are we could solve this one and for all. The previous clues were good, but I don't think definitive.

Not really, because anyone can do it.

Would rather block the attack and worry about the culprit later.

[rusty81]

Quote:

Originally Posted by Pringles [You must be logged in to view images. Log in or Register.]

Exactly. I hope they step on a Lego.

Harsh man... just harsh.

[OriginalQin]

Quote:

Originally Posted by Makosix [You must be logged in to view images. Log in or Register.]

I made a point of donating today to help out with server costs. I hope others will do the same. This DDoS attack and the resulting effort to work it out with your server team must be a bit taxing.

Best of luck guys.

-Hoodie

[Kergan]

Quote:

Originally Posted by Rogean [You must be logged in to view images. Log in or Register.]

Not really, because anyone can do it.

Would rather block the attack and worry about the culprit later.

I threw a honey pot out on my customer facing connection at work, it's amazing how you're literally under CONSTANT attack. Not of the DDoS variety necessarily, but someone always probing. Or watching the real time logs on one of my ASAs you can see constant access attempts trying to brute force in.

Like you said, it is wasted effort to try to go after who is doing it because even in the unlikely event you find and stop them there is another person ready to do it. The best way to stop someone is to make it a waste of their time.

[Burial]

Willing to bet it isn't even their firepower anyways, nobody cares if they can take off a server for 5 minutes.

[salimoneus]

I just don't understand why this is causing the entire system to go down. I mean, the actual game server should only accept requests from IP addresses that have been authenticated already, no? So someone spamming a login server or whatever, should have little effect on the active "good" player connections with an established login who are communicating with the game server not the login server. Are the two not separated in such a way? I'm sure there are many limitations placed on the system due to the client, perhaps that is big hangup in finding a good solution to this? Please edumucate muh as I am not network savvy.

[karanastorm]

Quote:

Originally Posted by salimoneus [You must be logged in to view images. Log in or Register.]

I just don't understand why this is causing the entire system to go down. I mean, the actual game server should only accept requests from IP addresses that have been authenticated already, no? So someone spamming a login server or whatever, should have little effect on the active "good" player connections with an established login who are communicating with the game server not the login server. Are the two not separated in such a way? I'm sure there are many limitations placed on the system due to the client, perhaps that is big hangup in finding a good solution to this? Please edumucate muh as I am not network savvy.

Right, talks like knows about networking then discloses not very network savvy. See this all the time.

[salimoneus]

Quote:

Originally Posted by karanastorm [You must be logged in to view images. Log in or Register.]

Right, talks like knows about networking then discloses not very network savvy. See this all the time.

Correct, I'm not a network engineer or system administrator, who typically deals with these types of problems. Just because someone uses the terms "server" or "packets" doesn't make them a network engineer or server admin either. I'm sure there are many here who know lots more about it than I do, which is why I was asking for a more detailed explanation so I could learn something.

But thanks for your zero cents.

[Rogean]

Just an update -

Made some changes today. We'll see if they help, and if not we have one more change we're holding in reserve that should definitely stop it (The data center wants me to exhaust all other avenues before implementing it).

To answer questions -
We're way past the point of understanding the attack. We know exactly what type of attack it is and the possible solutions. Just working on getting things implemented.

[karanastorm]

Quote:

Originally Posted by salimoneus [You must be logged in to view images. Log in or Register.]

I just don't understand why this is causing the entire system to go down. I mean, the actual game server should only accept requests from IP addresses that have been authenticated already, no? So someone spamming a login server or whatever, should have little effect on the active "good" player connections with an established login who are communicating with the game server not the login server. Are the two not separated in such a way? I'm sure there are many limitations placed on the system due to the client, perhaps that is big hangup in finding a good solution to this? Please edumucate muh as I am not network savvy.

Quote:

Originally Posted by salimoneus [You must be logged in to view images. Log in or Register.]

Correct, I'm not a network engineer or system administrator, who typically deals with these types of problems. Just because someone uses the terms "server" or "packets" doesn't make them a network engineer or server admin either. I'm sure there are many here who know lots more about it than I do, which is why I was asking for a more detailed explanation so I could learn something.

But thanks for your zero cents.

Well maybe you shouldn't have worded everything as if you knew the answer to it and then asked for confirmation with a ? at the end. It ends up looking like you know an answer how to fix a possible problem then ask for verification. That is all I am saying. Many people do this but then say they do not know anything about it.