2021 DDoS Issue

[mister_ree]

Juat sayin'
Wittout a fine tuned traffic shaping solution and the know how to use it, doesn't matter how much money you burn on equipment.

Main reason DDoS mitigation takes so long to wrk is because it tends to help the attack in the start. Those in the know take advantage of cloudflare of akamai having multiple servers to reflct packets off of.
their multiple ingress edge nodes VS the one cheap ass server the target is running.

 

[iloveisrael123]

I wish I was skilled enough to make one of those gay ass anonymous videos taking credit for this

 

[Alex Krycek]

Juat sayin'
Wittout a fine tuned traffic shaping solution and the know how to use it, doesn't matter how much money you burn on equipment.

Main reason DDoS mitigation takes so long to wrk is because it tends to help the attack in the start. Those in the know take advantage of cloudflare of akamai having multiple servers to reflct packets off of.
their multiple ingress edge nodes VS the one cheap ass server the target is running.

Who the fuck are you?

 

[mister_ree]

Who the fuck are you?

P S Y O P S

 

[Reverend]

That's why I said I fucking strip em for OpenWRT.
But you crack niggers can't fucking code much less trace a network properly. Only plug wires.

CISCO iOS is a fucking shithole stack which when you don't pay for their stream of shit updates to give you sysadmins a fucking claim to a job, makes refurb less appealing without a support contract to blame have the option of blaming them.

We in the rice fields with 10GBe on Xeon routing virtualized router stack, motherfucker.

You are a fucking moron if you think Null is gonna have the time/resources to buy hardware stack and then format it and reinstall an OS ontop of that. That's a waste of time/energy when better equipment exists for hundreds of dollars more. Simplicity and Support is the name of game not custom build cobbled together bullshit.

Not all of us live in a 3rd world shit hole that needs to strip Gateway machines to make routers while praying the 200W PSU in their Packard Bell will keep the cell tower's running while making iDevices for your God Savior Westerners. You sound straight up "Ho's Mad" that some CCNP/CCIE is making 100x more than your rice field scrubbing clan is making.

Keep your dumpster fire technobabble for Baby's First Docker image and your home lab and let folks who build 5 9 based infrastructure advise Dear Feeder on viable solutions.

 

[⠠⠠⠅⠑⠋⠋⠁⠇⠎ ⠠⠠⠊⠎ ⠠⠠⠁ ⠠⠠⠋⠁⠛]

It's most likely just a 20$/month booter.

And it's definitely a game for most of these kids. That Mirai guy back in the day hit krebsonsecurity with 500gbit or something (the record DDoS bandwidth iirc) just for lulz

Eh, unless I've gotten ripped off in the past, it'll be a bit more money than that for the bandwidth involved, as well as the length of attacks (unless the tard is just sitting there clicking a button every time his previous run expires).

Honestly, at this point the most useful thing would be for people to try digging around (particularly in the MicroTik forums) for ways to mitigate the issue where RouterOS is getting tied up (presumably in the kernel) just dealing with the shear volume of traffic, or connection tracking, or firewall rules, or whatever it is, so that he can get enough time on the interface to actually fix things. I couldn't see anything on the forums there, hopefully Josh has asked because it seems to be a relatively helpful forum (though not to people who don't provide details).

What are the chances those that paid for the botnet ever get a knock on the door?

0%

Like, if you have good opsec and know how to set up an anonymous Twitter account and how to use a simple BTC wallet over Tor, it might not have been the worst idea to create a 'TAKE DOWN THE KIWIFARMS H8RS' account to collect donations to the Farms. Only if it isn't illegal to collect money under false pretences in your country, of course.

 

[Reverend]

Someone suggested these

MikroTik

MikroTik is a Latvian company which was founded in 1996 to develop routers and wireless ISP systems. MikroTik now provides hardware and software for Internet connectivity in most of the countries around the world.

mikrotik.com

7150 Series

Arista 7150 Series Software Defined Networking Switch is the leading ultra-low latency 1RU network platform for High Frequency Trading Markets and virtualized data centers

www.arista.com

Accepting competing suggestions. I'd like to keep it in a budget range.

Someone also said they have a $1000 credit with Dell but they don't really do networking. Is there a management tool, like a rackmount KVM or something, from Dell worth getting?

What do you plan on doing with either the Mikrotik or the Arista? You planning to have one switch/router do all your networking or break the network apart? The mikrotik only has 4 10GB ports and they are SFP (fiber only) not SFP+ (fiber or copper). Don't buy the mikrotik (and I suggested it I'm sorry).


You could buy a Dell network'd KVM switch:

Dell 8-port Local KVM Switch - 2 local users - TAA Compliant | Dell USA

The Dell™ Analog KVM switches, engineered by Avocent, are ideally suited for environments where remote access is not required but maximum security is essential.

www.dell.com

 

[HackerX]

I'd be interested in the PCAP, but I doubt Null is collecting it. God only knows how what the total size of the PCAPs over the last week, but we several dozen of not hundreds of TB I bet

 

[spoof]

now imagine if you took byuu's offer you could pay for this for about 10 years just off it

 

[Male Idiot]

Keep up the good fight, Null.

As soon as I'm back on full time, I'll send you some shekels from my magnificent full 400 USD per month pay.

 

[The Beer Padawan]

I'd be interested in the PCAP, but I doubt Null is collecting it. God only knows how what the total size of the PCAPs over the last week, but we several dozen of not hundreds of TB I bet

The cpu on the mikrotik is already dead enough during the ddos as it is, turning caps on will just probably kill it more.

 

[HackerX]

I want the router to catch on fire and burn the data center down.

Another option is to have a dedicated sniffer and storage out there on the same network as the external interface, but there are a lot of assumptions regarding the network config/architecture to even do that. That's also assuming the sniffer is beefed up, and even then it'd prolly also die instantly without a DDoS, lol.

Regardless, I'm still curious about any identifying behaviors or signatures.

 

[random good picture]

now imagine if you took byuu's offer you could pay for this for about 10 years just off it

the money was fake nigga its not even funny at this point

 

[HTTP Error 404]

Can anybody link me a mirror of Mio Honda explains why being LGBT is normal? (But it actually insults them the entire time). That was a good video and I sent it to a friend but it was taken down before he could watch it.

View attachment 2310092
Archived this gem right here.

There's an upload of it here.

Mio Honda is based as fuck.

Mio on Pornography

Also: The EasyPeasy Method. Guaranteed to end Troonism in 1 generation.

Mio on Abortion:

Mio on Furries

And I linked a few other ones here, if you're interested. The Pornography one is pretty good.

 

[mister_ree]

You are a fucking moron if you think Null is gonna have the time/resources to buy hardware stack and then format it and reinstall an OS ontop of that. That's a waste of time/energy when better equipment exists for hundreds of dollars more. Simplicity and Support is the name of game not custom build cobbled together bullshit.

Not all of us live in a 3rd world shit hole that needs to strip Gateway machines to make routers while praying the 200W PSU in their Packard Bell will keep the cell tower's running while making iDevices for your God Savior Westerners. You sound straight up "Ho's Mad" that some CCNP/CCIE is making 100x more than your rice field scrubbing clan is making.

Keep your dumpster fire technobabble for Baby's First Docker image and your home lab and let folks who build 5 9 based infrastructure advise Dear Feeder on viable solutions.

I get it. Lil coon made it out of the ghetto after he learned a few k8s command. Mom's so proud that she paid for CCNA. finally makes her not regret telling everyone "he's so good with computers"

But good on you for helping becky in accounting transfer her puppy pics to the company share point.

 

[Ghostface Killah]

Openrack OCP 19" - 1U Server Xeon 12 Cores 2.4Ghz 32GB DDR4 Dual 10GB SFP+ 2x PS | eBay

These are the OCP version of a dell R630. ZT System 1U 2x 2.5" Drive Bays. Processor:1x Xeon E5-2676 V3 ES 2.40 GHz 12C Haswell-E/EP 120W 30MB CPU ( ES Confidential CPU installed, Dual possible). This server were made to the ocp19 spec by ZT System.

www.ebay.com

Get that and run PfSense. You need godlike skills to use it though

 

[Irrelevant]

Those in the know take advantage of cloudflare of akamai having multiple servers to reflct packets off of.
their multiple ingress edge nodes VS the one cheap ass server the target is running.

You're like the stupid trannies who think they were being clever finding the real IP by brute forcing the entire block with curl when they could have just connected to one of the non-Cloudflare mirrors.

KF hasn't 100% relied on CloudFlare for years because Null has been nervous of them pulling the plug before.

Might as well recommend he sticks the site on AWS.

 

[mister_ree]

Openrack OCP 19" - 1U Server Xeon 12 Cores 2.4Ghz 32GB DDR4 Dual 10GB SFP+ 2x PS | eBay

These are the OCP version of a dell R630. ZT System 1U 2x 2.5" Drive Bays. Processor:1x Xeon E5-2676 V3 ES 2.40 GHz 12C Haswell-E/EP 120W 30MB CPU ( ES Confidential CPU installed, Dual possible). This server were made to the ocp19 spec by ZT System.

www.ebay.com

Get that and run PfSense. You need godlike skills to use it though

If there's RAM in that you can flip DDR4 ECC for 10x and throw most of the other crap away lol

 

[TVStactic]

Honestly you should keep the farms up for as cheap as possible just so that they burn through their cash financing those attacks - afaik DDoS services of this scale are expensive as fuck.
Maybe it's not even worth putting too much effort into mitigating the attack as long as your hosting provider doesn't kick you off and the Farms will be back whenever the attackers run out of money. In the end, they'll have spent a fortune and gained nothing at all from this.

the thing is that the server is due to a upgwade because nool has wishes to add video hosting and such. so it's a timely coincidence.

Just like most people on this site, most probably

if you are a fatkiwi just hop on the fitness section. it's a splinter part of /fit/... and that's it really, the autism is pretty much the same.

You would think if someone is just doing it for fun, they'd target people more likely to chimp out over it.

this the "i want to own you" type of fun, there is a difference.

It never ceases too amaze that every effort to take this place out has only made it stronger. It's gone from a place to talk of Chris-chan via a free template forum to a place with its own dedicated servers, crypto currency streams and lawyers like Robert Barnes on retainer.

Why did they make Null do this? He just wanted to gossip about internet stuff.

the problem started when they wanted null to be kil because he said nigger.
still see if the old equipment can still be used for filtering dear feeder, will probably help to add an extra layer to tank the flood which seems to be the way of classic attacks to down "low host" things.

 

[mister_ree]

You're like the stupid trannies who think they were being clever finding the real IP by brute forcing the entire block with curl when they could have just connected to one of the non-Cloudflare mirrors.

KF hasn't 100% relied on CloudFlare for years because Null has been nervous of them pulling the plug before.

Might as well recommend he sticks the site on AWS.

Ladyboy is enough where I come from, tyvm.