| Submit your comments on this article |
| Tech note... |
| 2008-03-03 |
| I've switched the servers, using the backup for Rantburg's base IP adddress and Apache for everything else. It's a little bit heavier duty than Lighttpd. As soon as we went back on line the SYN attack started up again, so I may end up turning it off. If I can, I'll put up nothing but a redirect page there, that'll bring live people to Rantburg. |
| Posted by:Fred |
| #38 Outstanding work, as usual. |
| Posted by: tu3031 2008-03-03 22:32 |
| #37 So, Steve, should we toss ours then? |
| Posted by: Eric Jablow 2008-03-03 22:20 |
| #36 that's OK, so are some commenters |
| Posted by: Frank G 2008-03-03 21:54 |
| #35 Cookies might be unstable for a while. |
| Posted by: Steve White 2008-03-03 21:51 |
| #34 'Twas my Rantburg cookies that disappeared, for both the 'burg and the O Club, Eric, and for both computers. I clean out most other cookies from the caches, but I never touch my Rantburg cookies... at least I don't think I do. ;-) |
| Posted by: trailing wife 2008-03-03 21:01 |
| #33 Doesn't matter who is doing the attacks - its a hired botnet. Probably a lot from Korea, China, France, and some compromised machines in the US. Better to find the one paying them to do it. Get me an 8 digit grid and we'll see what we can make happen. Oh I wish... I dont have that sort of access any more. Not that I ever did. But a few well placed and timed phone calls... |
| Posted by: OldSpook 2008-03-03 20:42 |
| #32 TW, Cookies are only valid from the domain ssending them to you. Only rantburg.com will recognize the cookies storing your name and email address, because rantburg.com sent them to your computer after you first posted. Otherwise, nsfw.whitehouse.com might try to read your amazon.com cookies, and that would never do. |
| Posted by: Eric Jablow 2008-03-03 20:15 |
| #31 For those of you who are interested a description of botnets. It uses a term I haven't heard in 40 years - 'scrumping', which led to this site that discusses the use and meaning of the word. No one got the meaning correct (nor did online dictionaries) in the sense we used it as kids. We would go scrumping every day in the summer holidays. So I tried to sign up and post a comment and discovered it cost $5. Something to think about, Fred. |
| Posted by: Phil_B 2008-03-03 18:41 |
| #30 OK. Enough of this chitchat. When are we going to get to the really important things, like the Rantburg Times-Picayune-Defender-Scimitar? Missing that has been what's been putting me into serious withdrawal this weekend. Of course, I read it only for the articles. |
| Posted by: Rambler in California 2008-03-03 18:29 |
| #29 TW, wondering the same thing. Where are the attacks coming from? IPs? |
| Posted by: Icerigger 2008-03-03 17:53 |
| #28 Someone rented a botnet to attack the site because they don't like our opinions. Hey, look at it this way, it's terrorist supporter money that won't be spent on explosive belts. |
| Posted by: gromky 2008-03-03 17:26 |
| #27 Tho the Lichtensteiners might be sad. |
| Posted by: Seafarious 2008-03-03 17:06 |
| #26 John, just type Skunky Glins into the name box, and you won't have to be Creling Darling etc. anymore. My cookies disappeared, too, no doubt a side effect of Fred fiddling madly under the hood. |
| Posted by: trailing wife 2008-03-03 16:24 |
| #25 And I so liked my Skunky Glins nom de jour. Keep up the good work Fred. We were missing you. |
| Posted by: Creling Darling of the Lichtensteiners8341 2008-03-03 16:20 |
| #24 Works better if you first tie the spammer to the anchor, Ed. |
| Posted by: Steve White 2008-03-03 16:18 |
| #23 Anyone in Rantburg'g Navy on duty over there willing to drop an anchor on Dubai's fiber optic cables? |
| Posted by: ed 2008-03-03 16:17 |
| #22 They're coming from all over -- the machines are bots. The question is, who's controlling them? When the activity drops off I see a Dubai address connect and a little later it starts up again. It doesn't do me much good to ban the bots. Our server has to identify them before it can drop the connection. The idea is to simply overload us, which they did over the weekend. |
| Posted by: Fred 2008-03-03 16:02 |
| #21 Great pic, Gorb. Something we need 'round here these days. |
| Posted by: Steve White 2008-03-03 15:48 |
| #20 Where are the DOS attacks coming from, Fred? I know you mentioned the other day, but I'm going to read today's posts just as fast as I can, in case I get cut off again. Muggsy Gling, I like your new name, too. :-) |
| Posted by: trailing wife 2008-03-03 15:23 |
| #19 Should we can the nation-building formula, and commence serious nation-destruction? Surely no Rantburg regular denies that Muslim attacks will only escalate until we stop civil policing of the enemy, and commence wholesale quid pro quo. It is us v them, and they won't quit their aggression until there is no us. We are in a global lifeboat with a mortal enemy, and sharing conduces insecurity. |
| Posted by: McZoid 2008-03-03 15:14 |
| #18 (I like the new name, beats Omung Squank anyway and avoids annoying the real OS, which could be hazardous.) :) I'll go back to pacing the floor for a few more hours/days, so don't screw up your new job, Fred, while you're stomping on the bad guys. |
| Posted by: Muggsy Gling 2008-03-03 14:48 |
| #17 Human here having inhuman withdrawal symptoms. Happy now. |
| Posted by: Helmuth, Speaking for Chuper2749 2008-03-03 14:40 |
| #16 How about this, Fred? |
| Posted by: gorb 2008-03-03 14:34 |
| #15 Swedes can help you here against attacks :) Try Erlang-based web server YAWS (Erlang as programming language), and you will get at least 10x robustness. Google for "yaws vs apache" |
| Posted by: Nesvarbukas 2008-03-03 14:26 |
| #14 Don't apologize for the 'redirect' page; if it keeps the bots away, its all good. i think of it as a detour on the information highway. |
| Posted by: Don Vito Huperesing6351 2008-03-03 14:20 |
| #13 I am a human! Thanks, Fred, I was starting to get the shakes. Amazing how much I depend on this site. I'll hit the tip jar when my tax refund arrives. Regards, UB. |
| Posted by: Unique Battle 2008-03-03 14:19 |
| #12 Also Fred, there's a typo on your redirect page "I" instead of "If", and you should put your paypal email on the redirect page as well as your Amazon payments info, so we can keep giving you money. |
| Posted by: Seafarious 2008-03-03 14:17 |
| #11 Thanks Fred. Fight on. |
| Posted by: Seafarious 2008-03-03 14:14 |
| #10 Geeze Fred sorry you are going through all that. I'll get you on the tip jar this month. Hang in there! |
| Posted by: Icerigger 2008-03-03 14:04 |
| #9 Thanks, Fred, for all you do. I'll definitely hit the tip jar this month, now that the eagle has finally visited me again. LGF is having similar problems today. We need to know who's doing this, and put a stop to it. I vote for a three-cell ARCLIGHT strike at 10AM, local time, over the site coordinates. |
| Posted by: Old Patriot 2008-03-03 13:58 |
| #8 Keep up the good work Fred! |
| Posted by: DarthVader 2008-03-03 13:44 |
| #7 THANK YOU, FRED. You are such a good man. Sorry you're having so much trouble. Blackbeard may have a point sometime in the future, but I'm sure right now it's just a PITA.* *pain in the ass |
| Posted by: Barbara Skolaut 2008-03-03 13:40 |
| #6 I'm just glad I remembered to bookmark all the back door addresses. I was going through withdrawal! |
| Posted by: IG-88 2008-03-03 13:38 |
| #5 Little Green footballs dot com gets this kind of attack all the time, and Charles Johnson the owner of the site is great at tracing where the attacks are originiating from and deflecting the attacks. You might consider shooting him an email and I am sure he would be glad to provide his approach to dealingwith these nitwits. |
| Posted by: Punky Threang1071 2008-03-03 13:38 |
| #4 Hey, Fred, maybe someday you can write a book about spambots, hack attacks and countermeasures. Then you can tell them how grateful you are to them for giving you such an opportunity to cash in on their madness. |
| Posted by: Blackbeard Clavith2164 2008-03-03 13:29 |
| #3 Found it! Sheesh. The things you have to put up with. Take care. |
| Posted by: Gabby Cussworth 2008-03-03 13:29 |
| #2 Thanks for the redirect message. Sorry you are under attack. I miss the site being up and presenting the news. |
| Posted by: JohnQC 2008-03-03 13:28 |
| #1 There's still lotsa stuff that's broken. Please let me know as soon as you find it. |
| Posted by: Fred 2008-03-03 13:25 |