slush (OP)
Legendary
 Offline
Activity: 1386
Merit: 1097
|
 |
October 12, 2011, 10:40:38 PM |
|
I have a feeling this attack will continue for a while. Slush, is there no way to filter out all other non registered IP connections? Ie allow connections only from pool miners based on their last known IP address - most people don't refresh their IP often.
Unfortunately this is large scale attack, so filtering on IP layer isn't possible at all. |
|
|
|
allinvain
Legendary
Offline
Activity: 3080
Merit: 1083
|
|
October 12, 2011, 10:45:06 PM |
|
So I guess the only thing we can do is wait and hope that the attacker(s) get bored and move on. I wish there was some way to strike back at this assholes. I'm thinking a nice miner plugin that will trigger each miner to DDoS the known IPs of the attacker(s). lol, ok maybe that's not realistic but it's so damn frustrating when this happens.
|
|
|
|
HolodeckJizzmopper
Member
Offline
Activity: 106
Merit: 10
|
|
October 12, 2011, 11:00:25 PM |
|
At the risk of getting a bit off topic, running a proxy such as BitHopper or CherryPicking for your local miners is a great way to handle fallback for cases like these attacks.
My proxy has been happy at Eligius, Bitclockers and OzCo.in today in spite of the attacks.
|
|
|
|
|
allinvain
Legendary
Offline
Activity: 3080
Merit: 1083
|
|
October 12, 2011, 11:10:04 PM |
|
At the risk of getting a bit off topic, running a proxy such as BitHopper or CherryPicking for your local miners is a great way to handle fallback for cases like these attacks.
My proxy has been happy at Eligius, Bitclockers and OzCo.in today in spite of the attacks.
Yeah that's a very good idea, one which I will have to implement - I've become complacent I guess as slush's pool has been stable for a long long time now. |
|
|
|
slush (OP)
Legendary
Offline
Activity: 1386
Merit: 1097
|
|
October 12, 2011, 11:17:26 PM |
|
Please point your miners to api3.bitcoin.cz. I'll update DNS of api.bitcoin.cz and api2.bitcoin.cz when attack will be over.
|
|
|
|
Thndr
Member
Offline
Activity: 78
Merit: 10
|
|
October 12, 2011, 11:21:14 PM |
|
I assume all this action is gonna slow you down on getting the accounting done for NMC?
And hopefully the attacks subside soon :x.
|
|
|
|
DeathAndTaxes
Donator
Legendary
Offline
Activity: 1218
Merit: 1079
Gerald Davis
|
|
October 12, 2011, 11:22:31 PM |
|
I assume all this action is gonna slow you down on getting the accounting done for NMC?
Isn't that kinda like asking your neighbor is he is going to return your powertools while his house is on fire? |
|
|
|
|
slush (OP)
Legendary
Offline
Activity: 1386
Merit: 1097
|
|
October 12, 2011, 11:23:32 PM |
|
I assume all this action is gonna slow you down on getting the accounting done for NMC?
I don't know what's the motivation of attackers. As deepbit is hitted also, I don't think it is primary because of NMC. However I'm curious why attacker pick first and third largest pool... |
|
|
|
djelusion
Newbie
Offline
Activity: 24
Merit: 0
|
|
October 12, 2011, 11:29:39 PM |
|
fux how long has this been down for its literally 100+ degrees in california.. if this is going to be down ill just power off the pc i cant even see how many coins i earned or nothing.. f*ck f*ck f*ck
|
|
|
|
|
xzion
Member
Offline
Activity: 96
Merit: 10
|
|
October 12, 2011, 11:30:11 PM |
|
hi slush,
this probably isnt the best time but i was wondering if you could explain how the namecoin being mined now will be distributed once accounting is up and running?
cheers,
|
Tips: 1xzionJBueq1AkPSmexA7suWkztAkNwSs
|
|
|
|
sadpandatech
|
|
October 12, 2011, 11:32:03 PM |
|
I assume all this action is gonna slow you down on getting the accounting done for NMC?
I don't know what's the motivation of attackers. As deepbit is hitted also, I don't think it is primary because of NMC. However I'm curious why attacker pick first and third largest pool... It is more pools. Slush, Deepbit and BTC Guild...... edit; Slush, not sure how easy your ISP is to work with or wether they charge for custom filtering. But it is possible to filter out that traffic using other means than just IP. especillay if the attacker(s) packets are not structured the same as they would be for getworks and other legit traffic. |
If you're not excited by the idea of being an early adopter 'now', then you should come back in three or four years and either tell us "Told you it'd never work!" or join what should, by then, be a much more stable and easier-to-use system.
- GA
It is being worked on by smart people. -DamienBlack
|
|
|
|
cosurgi
|
|
October 12, 2011, 11:34:46 PM |
|
It is more pools. Slush, Deepbit and BTC Guild......
it's not. btcguild didn't have any problems so far. EDIT: sorry, I see in their thread problems also. |
|
|
|
|
sadpandatech
|
|
October 12, 2011, 11:35:41 PM |
|
It is more pools. Slush, Deepbit and BTC Guild......
it's not. btcguild didn't have any problems so far. YES it is/was also BTC guild Edit; as of right now even, I atleast, am not able to connect my miners to BTC Guild.... |
If you're not excited by the idea of being an early adopter 'now', then you should come back in three or four years and either tell us "Told you it'd never work!" or join what should, by then, be a much more stable and easier-to-use system.
- GA
It is being worked on by smart people. -DamienBlack
|
|
|
slush (OP)
Legendary
Offline
Activity: 1386
Merit: 1097
|
|
October 12, 2011, 11:36:43 PM |
|
ok, they moved to new IP again. So attacker is following forum, botnet isn't just following DNS records.
|
|
|
|
djelusion
Newbie
Offline
Activity: 24
Merit: 0
|
|
October 12, 2011, 11:38:44 PM |
|
well time to shut down the pc i dont even look at... grr i forgot all the damn commands too.. tells you how much i use my miner!!!.
|
|
|
|
|
Thndr
Member
Offline
Activity: 78
Merit: 10
|
|
October 12, 2011, 11:39:48 PM |
|
I assume all this action is gonna slow you down on getting the accounting done for NMC?
Isn't that kinda like asking your neighbor is he is going to return your powertools while his house is on fire? Not really, was just a valid question on how much time of his is being spent and if we have to wait another day. and I can connect to BTC Guild myself. |
|
|
|
|
sadpandatech
|
|
October 12, 2011, 11:42:59 PM |
|
and I can connect to BTC Guild myself.
Yea, I am getting one of the sub selectable ones for BTC-G to work now. Will not say which in hopes attacker is too dumb to figure it out.... |
If you're not excited by the idea of being an early adopter 'now', then you should come back in three or four years and either tell us "Told you it'd never work!" or join what should, by then, be a much more stable and easier-to-use system.
- GA
It is being worked on by smart people. -DamienBlack
|
|
|
|
sadpandatech
|
|
October 12, 2011, 11:45:37 PM |
|
ok, they moved to new IP again. So attacker is following forum, botnet isn't just following DNS records.
I'm sorry this assholes having you wasting all your time messing with this. Don't mind the whiners here. We got your back. P.S Did you see my post about other ISP side filtering options. And what one other poster suggested about filtering IP's, I believe he was refering to flipping your firewall to *Deny ALL* and then Allowing known legit IP's or blocks. But that might would take longer than the other solutions you are working on. |
If you're not excited by the idea of being an early adopter 'now', then you should come back in three or four years and either tell us "Told you it'd never work!" or join what should, by then, be a much more stable and easier-to-use system.
- GA
It is being worked on by smart people. -DamienBlack
|
|
|
slush (OP)
Legendary
Offline
Activity: 1386
Merit: 1097
|
|
October 12, 2011, 11:56:28 PM |
|
sadpandatech: this is large scale attack, where normal tools won't work at all. Even enterprise level firewalls are failing when DDoS come into the game (remember paypal?).
|
|
|
|
cbeast
Donator
Legendary
Offline
Activity: 1736
Merit: 1014
Let's talk governance, lipstick, and pigs.
|
|
October 12, 2011, 11:58:57 PM |
|
Please point your miners to api3.bitcoin.cz. I'll update DNS of api.bitcoin.cz and api2.bitcoin.cz when attack will be over.
This is down now. |
Any significantly advanced cryptocurrency is indistinguishable from Ponzi Tulips.
|
|
|
|
