Forum Updates and DDoS attack

X · Jul 22, 2024

I have blocked China and Russia except for some regions with more rigorous checks.

There is an increased level of security from USA as the biggest impact currently is from USA.

This bastard for example logged into the website 7.7 million times in the last 4 days

https://whatismyipaddress.com/ip/2604:a880:400:d0::b81:d001

That is before he was blocked yesterday

Viet said:
Should cloudfare be able to block those bots, attackers? No?

It does, I shared the data before the Cloudflare came into rescue but the impact is huge. Someone planned this attack for a long time before doing it. There were 20,000 unique IP addresses from Russia, when I blocked Russia, the attacked started happening from Hong Kong, then Indonesia then India and now from USA.

Now cloudflare is blocking 99.99% of these bots but the hosting server is down after utilising too many resources. We can either wait or move to VPS so that we have increased resources. I am currently on a higher end of cloud hosting packages

Viet · Jul 22, 2024

Mr X said:
I have blocked China and Russia except for some regions with more rigorous checks.

There is an increased level of security from USA as the biggest impact currently is from USA.

This bastard for example logged into the website 7.7 million times in the last 4 days

https://whatismyipaddress.com/ip/2604:a880:400:d0::b81:d001

That is before he was blocked yesterday

It does, it shared the data before the Cloudflare came into effect but the impact is huge. Someone planned this attack for a long time before doing it. There were 20,000 unique IP addresses from Russia, when I blocked Russia, the attacked started happening from Hong Kong, then Indonesia then India and now from USA.

Now cloudflare is blocking 99.99% of these bots but the hosting server is down after utilising too many resources. We can either wait or move to VPS so that we have increased resources. I am currently on a higher end of cloud hosting packages

Cloudflare blocks 99.99 percent but the service is down? Then moving the service to multiple virtual platforms is the only solution I guess. Physical servers always have limitations. How do Microsoft, Google or Amazon or x,y protect their sites against DoS?

Alter_Ego · Jul 22, 2024

Who has the time and interest to do this ddos attack on a relativley obscure forum?

X · Jul 22, 2024

Viet said:
Cloudflare blocks 99.99 percent but the service is down? Then moving the service to multiple virtual platforms is the only solution I guess. Physical servers always have limitations. How do Microsoft, Google or Amazon or x,y protect their sites against DoS?

We need to move on to Virtual Private Servers. We are left with no choice. But it requires significant funding and I have asked the management to come forward.

The site will be working for now - until the attackers find out new ways but we will be able to cope with the future attacks if we have more than our current resources

X · Jul 22, 2024

Alter_Ego said:
Who has the time and interest to do this ddos attack on a relativley obscure forum?

It doesn't matter but what the data shows is that the attack is ongoing. This screenshot is slightly old before some strategies were changed but it gives you a fair reflection of the reality of what's happening.

Be dazzled · Jul 22, 2024

No clue what on earth is wrong with the forum these days. It doesn't let me in using phone or laptop. It's frustrating

X · Jul 22, 2024

Viet said:
Should cloudfare be able to block those bots, attackers? No?

It is blocking but due to this website being on cloud hosting. We don't have access to VPS and hence can't even restart the computer. So when the attack happens, the host gives up easily to protect other customers by temporarily making us unavailable.

VPS will resolve this issue when we have full control to the machine.

pakistanitarzan · Jul 22, 2024

May Allah protect me. Any chance these attacks are sponcored by wardi wale? (Hint hint)

silicon0000 · Jul 22, 2024

Mr X said:
I have blocked China and Russia except for some regions with more rigorous checks.

There is an increased level of security from USA as the biggest impact currently is from USA.

This bastard for example logged into the website 7.7 million times in the last 4 days

https://whatismyipaddress.com/ip/2604:a880:400:d0::b81:d001

That is before he was blocked yesterday

It does, I shared the data before the Cloudflare came into rescue but the impact is huge. Someone planned this attack for a long time before doing it. There were 20,000 unique IP addresses from Russia, when I blocked Russia, the attacked started happening from Hong Kong, then Indonesia then India and now from USA.

Now cloudflare is blocking 99.99% of these bots but the hosting server is down after utilising too many resources. We can either wait or move to VPS so that we have increased resources. I am currently on a higher end of cloud hosting packages

Can this be resolved by blocking all guest user for sometime, like web address leads to login/Register screen and only registered user after login can enter in this forum. Something like that.

X · Jul 22, 2024

silicon0000 said:
Can this be resolved by blocking all guest user for sometime, like web address leads to login/Register screen and only registered user after login can enter in this forum. Something like that.

It was like that for most of the week. However, the bots were still able to access the landing page.

What people don't know is that if the website is down, sometimes other parts of the website are still accessible if they are logged in. For example, when we turn off the board for guests, they only access the landing page asking them to log in. But there could be 20 million bots on that page. It means real users can't access it either. But if they were logged in, there is a higher chance that they can still access some other pages not affected by the bots.

PS: Please make sure to copy your content before pressing the post button as you will be repeatedly asked for verification

OG Pakhtun. · Jul 22, 2024

Mr.X, No! Agent X testing firewall.

Hope · Jul 22, 2024

I frequent other forums that are a lot more popular . They have never been taken down in this manner.

OG Pakhtun. · Jul 22, 2024

I had a tough time accessing to the forum today on the data. It was agonizing.

X · Jul 22, 2024

Hope said:
I frequent other forums that are a lot more popular . They have never been taken down in this manner.

depends on the nature of attacks.

We were attacked DDoS about 3-4 months ago for the first time. We were down by 30 minutes max

It is not just the DDoS but my hosting resources were exceeded so they are punishing me for that with minimum tolerance level whenever it peaks

Archie · Jul 22, 2024

So ,
Should we be blaming Microsoft and Crowdstrike for the forum going Haywire in last 1 week
Or is it the usual state actors trying to silence PTIans

Forum Updates and DDoS attack

X

Elite Member

Viet

Elite Member

Alter_Ego

Full Member

X

Elite Member

X

Elite Member

Be dazzled

THINK TANK: CONSULTANT

X

Elite Member

pakistanitarzan

Full Member

silicon0000

Full Member

X

Elite Member

OG Pakhtun.

Member

Hope

SpeedLimited

OG Pakhtun.

Member

X

Elite Member

Archie

Senior Member

Users who are viewing this thread

Pakistan Defence Latest

Country Watch Latest

Latest Posts

Share this page