Results 1 to 12 of 12

Thread: ddos attack?

  1. #1

    ddos attack?

    My VDS hosting provider's server has been down all day and much of yesterday. They claim they are being DDoS attacked by "Over 100 commercial servers."

    But when I ping the server the response time average is exactly the same as I've gotten on days when everything was working fine. Is it normal for a server that's being ddos attacked on this scale to respond to ping requests so quickly?

    The strange thing is that my host has his own personal website and game servers on this machine, and they're down as well. So I know he probably wants the server to be up as much as I do. I can't see why he'd lie to me about what's really going on.

  2. #2
    Is the whole server down, or just apache?
    - Providing premium web hosting solutions since 2003
    |Managed Dedicated Servers | Shared Hosting | Web Design | Server Management |

  3. #3
    Sounds like just apache...
    If it's only 100 servers, you could go in manually and block most or maybe all of them...
    Blocking half would probably do a good job at getting apache back up.

  4. #4
    Well I host a game server with them and that's down, my host also hosts his own game servers on the same machine and those are down as well.

  5. #5
    Do you have access to your server's MRTG graph? If yes, you can see how's the traffic. If your server was DDOSed, you will see some sparks on the graph.
    ******** - ASP, ASP.NET. Windows 2008 Hosting - Windows Reseller Plans

    1 Exabyte = two to the sixtieth power byte, 1,152,921,504,606,846,976 bytes

  6. #6
    An easier way to tell via MRTG is the open connections graph.

    Traffic fluctuates too much to help determine if it's a DOS, but open connections to the server at any one period are very obvious to the eye. - Low cost multi domain hosting solutions. [Legal adult content friendly]
    Reliable web site hosting is our motto. We have Alertra stats to back that up.
    Proven provider of high quality shared and reseller accounts since 2002.

  7. #7
    Join Date
    Jul 2003
    it could be that the attck is targetting apache port 80 but if you say his game server is also down then its much be a traffic attack but if its traffic atack you should get a time out in the ping or a very high ping rate.
    it could be that he is just lieing but you will never be sure

  8. #8
    I just found out that they were targeting apache as well as the ports that the game servers ran on, and apparently the game servers are fairly vulnerable to these kinds of attacks.

    So I've pretty much determined that my host was telling the truth, though I suspect that the "Over 100 commercial servers" remark may have been an exageration.

    I am dissapointed in the way my host solved the problem though, the attacker was an extortionist and my host gave in to his demands. I have a feeling this isn't the last time I'm going to find the server being attacked.

    Thanks for the advice.

  9. #9
    Join Date
    Oct 2003
    Let me guess...

    This kiddie asked for a free hosting account of some sort. He gets turned now and decides to load up his TINY botnet(thats what it is) and launch attacks.

    100 or so bots wouldn't even flinch most servers out there.

    I have literally watched over 90mbit of traffic come into one of my servers before and it still stayed up.

    Tell him to stop hosting off his DSL.
    Last edited by vengeful; 03-03-2004 at 03:44 PM.

  10. #10
    I don't think I should discuss the details, but essentially that's what was happening. The attacker was targeting a single server, and I believe colocated with and I can ping it for 6ms from my college's connection, so it's on something much more than a dsl line.

  11. #11
    Join Date
    Oct 2003
    If that is so his provider should of simply filtered it out.

    It would take a max of 25 minutes(less if it didn't even affect his providers connection)

  12. #12
    That's what I was thinking. I think I'll ask him about it.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts