Results 1 to 13 of 13

Thread: DDOS Threats

  1. #1
    Join Date
    Sep 2006
    Location
    NY
    Posts
    464

    DDOS Threats

    A user joined our live chat and said if we didn't cancel a domain on our server, he will send us a DDOS attack, and he did so and also did this morning.

    Is there anything I can do to prevent this or possibly punish him?
    HostMonkey | Your kingdom starts here. (tweet us @HostMonkeynet)
    Affordable and Reliable Shared Hosting, VPS Servers, and Dedicated Servers
    OpenVZ, SolusVM CP, 99.9% Uptime Guarantee, 24x7x365 Support
    Server Reseller Program: significant discounts, to increase your profits!

  2. #2
    Join Date
    May 2009
    Posts
    165
    Hello,

    Take some time to learn about these attacks and prevention:
    http://www.linuxsecurity.com/content/view/121960/49/
    Not sure how much damage you can do with what you got, but you can file a complaint, http://www.ic3.gov/default.aspx

  3. #3
    Join Date
    Jun 2009
    Location
    Vancouver
    Posts
    969
    DDOS threats have always been apart of this industry and the best thing you can do is educate your self.

  4. #4
    Quote Originally Posted by amaZe View Post
    .. said if we didn't cancel a domain on our server, he will send us a DDOS attack, and he did so and also did this morning.
    That just became extortion which is a criminal offense.
    edgedirector.com
    managed dns global failover and load balance (gslb)
    exactstate.com
    uptime report for webhostingtalk.com

  5. #5
    Join Date
    Jan 2008
    Location
    St. John's, NL
    Posts
    2,114
    Yup, contact your local police office and tell them you are being extorted and threatened with a malicious action if you do not comply. Give them the customer's contact data (address) and see what happens from there. Report them to all relevant authorities.
    Cpanel/WHM PHP Perl Ruby Full Time Support
    LCWSoft - Canada web hosting (based in Newfoundland) since 2007
    Servers based in the US and Canada (Uptime Report)

  6. #6
    Join Date
    Sep 2006
    Location
    NY
    Posts
    464
    Quote Originally Posted by larwilliams View Post
    Yup, contact your local police office and tell them you are being extorted and threatened with a malicious action if you do not comply. Give them the customer's contact data (address) and see what happens from there. Report them to all relevant authorities.
    He joined live chat.

    All I have is his country, state, and i.p. address.

    What do you recommend?
    HostMonkey | Your kingdom starts here. (tweet us @HostMonkeynet)
    Affordable and Reliable Shared Hosting, VPS Servers, and Dedicated Servers
    OpenVZ, SolusVM CP, 99.9% Uptime Guarantee, 24x7x365 Support
    Server Reseller Program: significant discounts, to increase your profits!

  7. #7
    Whilst reporting to the authorities is all well and good, all the information you have is probably inaccurate. As somebody just said, the best thing you can do is educate yourself and work out how to best mitigate the DDoS you are experiencing - it can happen and no authority can stop it without a long strung-out investigation that will probably lead to no conclusion anyway.

    Try to work out how he's attacking the server and then work against it. Lots of bandwidth? Null route / load balance. Lots of httpd connections? Firewall the IPs / install mod_defensive for Apache. There's a number of solutions and there isn't one single type of DoS/DDoS.

    Though it is still always best to report the IP with the details you have, as the person can sometimes be silly and forget to tunnel through various addresses to get to your live chat.
    Exoware.net
    Professional EU/UK Web Hosting Solutions
    Linux Web Hosting, Reseller Hosting, VPS Hosting and Dedicated Server Hosting
    Excellent, personal support round the clock.

  8. #8
    Join Date
    Jan 2008
    Location
    St. John's, NL
    Posts
    2,114
    Quote Originally Posted by amaZe View Post
    He joined live chat.

    All I have is his country, state, and i.p. address.

    What do you recommend?
    Do a lookup on the IP and see if it assigned to a local ISP in his area. He seems like a kiddie who is probably too dumb to at least use a proxy. If so, the IP can be used by the authorities and ISP to find your culprit. ISPs can lookup who an IP was assigned to at a particular time and have been proven to cough up that information when criminal activity is involved.
    Cpanel/WHM PHP Perl Ruby Full Time Support
    LCWSoft - Canada web hosting (based in Newfoundland) since 2007
    Servers based in the US and Canada (Uptime Report)

  9. #9
    Join Date
    Jun 2009
    Location
    Port Angeles, WA
    Posts
    20
    I would examine all the logs, sometimes it is quite easy to pin point the real souce of a DDOS attack, sometimes not.

    We had one, and the attacker attacked from his own IP space.
    http://www.webhostingtalk.com/showthread.php?t=874204

  10. #10
    Get the csf firewall install and block those Ips by using,
    #csf -d ipaddress
    Support Facility | 24/7 web hosting technical support services
    Technical support | Server management | Data migration

    Technical Articles

  11. #11
    Join Date
    Jul 2009
    Posts
    178
    You can install firewall and block him.

  12. #12
    Join Date
    Dec 2002
    Posts
    53
    Is the customer a resident of the United States? If you have a copy of his threats, his IP, name, and credit card/payment information; you have enough for a criminal complaint.

  13. #13
    Join Date
    Mar 2009
    Location
    Chicago, IL
    Posts
    219
    It should be noted that if the customer is outside of the US, it's pretty much worthless trying to proceed with any sort of legal action.

Similar Threads

  1. Threats against hosting
    By Rillen in forum Running a Web Hosting Business
    Replies: 11
    Last Post: 01-15-2009, 06:56 AM
  2. Fed up of DDoS threats?
    By InsideHosts.com in forum Web Hosting
    Replies: 15
    Last Post: 10-28-2004, 03:16 PM
  3. Threats Against the US
    By Mat Sumpter in forum Web Hosting Lounge
    Replies: 3
    Last Post: 09-14-2001, 09:45 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •