Andy
13-07-2008, 01:21
Good morning,
In about 2 weeks, we will start a new subsidiaries
Ovh of which will operate on the Italian market. We are therefore
everything you need with the forum. The forum was established there is some
days.
Today at noon about forum.ovh.it is attacked by
a group of hackeur. And yet there is nothing on the forum since
nothing has yet been announced. It will say qu'Ovh is eagerly awaited in
Italy
Concerant the attack, there are 2 attacks in progress: one is a synflood
with a deny service and the other based on a bagle worm which is a
deny service on a URL that does not exist. The attack is led by
approximately 100-200 IP at the same time, which change every 60-120 seconds.
On average, an IP is 2-3 web requests. In all approximately 24000
IP attack the forum. Basically, nothing bad.
At our level, the forum was a little loaded debut then unavailable.
We have put in place the scripts blocking the attack. Some
hours later, we had to adapt a few scripts because there were
many IP. Then the finale, we spent the forum on an infra
gerée separated by the cisco with a card dedicated SLB (we have a spare).
A tank to kill a fly. In short, it rolls quiet now.
It turns 13000-15000 simu connections that are all autoexpirés
seconds. The card supports simu 1,000,000 connections. And it was testing
(just) the new card ACE we must just try ...
We did not think that the forum would be a target of attack. It was the
Ovh single site that was not protected. Now is the case. And
it will change again this week. Basically, it will have the same infrastructure
as accommodation or mutu sites Ovh.
A good wk.
Yours
Octave
In about 2 weeks, we will start a new subsidiaries
Ovh of which will operate on the Italian market. We are therefore
everything you need with the forum. The forum was established there is some
days.
Today at noon about forum.ovh.it is attacked by
a group of hackeur. And yet there is nothing on the forum since
nothing has yet been announced. It will say qu'Ovh is eagerly awaited in
Italy
Concerant the attack, there are 2 attacks in progress: one is a synflood
with a deny service and the other based on a bagle worm which is a
deny service on a URL that does not exist. The attack is led by
approximately 100-200 IP at the same time, which change every 60-120 seconds.
On average, an IP is 2-3 web requests. In all approximately 24000
IP attack the forum. Basically, nothing bad.
At our level, the forum was a little loaded debut then unavailable.
We have put in place the scripts blocking the attack. Some
hours later, we had to adapt a few scripts because there were
many IP. Then the finale, we spent the forum on an infra
gerée separated by the cisco with a card dedicated SLB (we have a spare).
A tank to kill a fly. In short, it rolls quiet now.
It turns 13000-15000 simu connections that are all autoexpirés
seconds. The card supports simu 1,000,000 connections. And it was testing
(just) the new card ACE we must just try ...
We did not think that the forum would be a target of attack. It was the
Ovh single site that was not protected. Now is the case. And
it will change again this week. Basically, it will have the same infrastructure
as accommodation or mutu sites Ovh.
A good wk.
Yours
Octave