Distributed network attacks are often performed as distributed denial-of-service (DDoS) attacks, which almost always use bot networks, i.e. "zombie PCs" of careless users taken over by malware. This makes a lot of things more difficult, as it is often no longer possible to make a geographical assignment that could have temporarily excluded certain IPs. Yesterday in the late evening hours it affected and affected the entire data center, which also contains our server, which is why the website and forum were very difficult to reach.
In this type of attack, you simply take advantage of the capacity constraints that exist for each network resource, including the part of the data center we use. For such a DDoS attack, countless requests are sent to the compromised web resource simply to overload its capacity to process requests and thus reduce the availability of services to other users through artificially limited bandwidth. Disturb.
The principle is rather simple, but nevertheless all the more effective. Certain network resources, such as For example, a Web server that can process only a certain number of concurrent requests. In addition to the server's capacity limit, however, the bandwidth of the entire server Internet connection is also limited. If the number of requests then exceeds the capacity limit of one of the infrastructure components, the entire accessibility suffers, as in our case. The processor load of our server and the number of requests were even within the usual range, but the internet connection of the data center was so overloaded that our accessibility suffered.
The target of the attackers is then a complete denial of service, which is why this was the data center we were currently using. Whether we will cache our site externally remains a question and an option, but for the moment we are clarifying these circumstances with our data center. So it doesn't always have to be Corona, which messes up the day. A few wild BOTanikers are enough to start the evening considerably sooner.
Kommentieren