[ANN] The First Litecoin PPS Pool (litecoinpool.org)

[pooler]

DDoS attack in progress. Not sure what the attacker is trying to achieve.

[1685255014]

1685255014

[1685255014]

1685255014

[1685255014]

1685255014

[ElectricMucus]

DDoS attack in progress. Not sure what the attacker is trying to achieve.

Well you are running the deepbit of litecoin.

[dishwara]

Still Ddos attack going on?
I cant connect to site for the past 2 days

[pooler]

Still Ddos attack going on?
I cant connect to site for the past 2 days

Yes, the attack is still ongoing.

[ElectricMucus]

If this is just synflooding there are some simple iptables rules which might help you. It will increase overall latency but at least you can get back to work.

[pooler]

If this is just synflooding there are some simple iptables rules which might help you. It will increase overall latency but at least you can get back to work.

Unfortunately it's not that simple. The pipe to the server is filled by DDoS traffic.
People on IRC have been suggesting various solutions, but none of them is viable.

[xurious]

If this is just synflooding there are some simple iptables rules which might help you. It will increase overall latency but at least you can get back to work.

Do you have some examples for this? I'd love to see them.

[ElectricMucus]

Unfortunately pooler is right, what I was thinking of only helps against a single attacker not a whole botnet. You would simply discard all syn-packets if the amount per source exeeds a certain threshold.

I'd contact the ISP what they suggest since they have access to routers further down the line and it would be in their interest to resolve it.

[kmsalex]

Let me pretense this with saying I know little about the complexities of running a server.

But maybe as a temporary measure could you set up the server only to accept incoming requests from an ip if its on a list of trusted ips, esentaly making the pool privet. You then manualy adding and ip if someone was to make a request to use the pool?


All of this is just what I think of when i think about a dos attack, if its completly rediculese just explane to me why 

[Rjb82]

Any update? or is this pool dead now?

[pooler]

Any update? or is this pool dead now?

Not at all. Pool has been hashing as much as allowed by the recent DDoS attacks.

[tatsuchan]

Any update? or is this pool dead now?

Not at all. Pool has been hashing as much as allowed by the recent DDoS attacks.

You guys lost a lot of business because of this DDoS attack.  I couldn't get to the website or use it reliably for last two weeks.  My total hashing power is over 1mh.  Not great, but not minor at this point in the game.  I'm sure you lost a good bit, and I REALLY hope you guys have some sort of resource to take legal action.  At the very least, you can make your attacker(s) public if you know what happened.  

Also, has your pool upped it's share target yet?  I used to get errors/stales with reaper at litecoinpool that I didn't with Ozcoin.  I like the PPS better, and would like to switch, but I don't want to go to work/bed and find out that my miner sat for 12 hours+ doing nothing again.

Thanks guys, I do appreciate your pool, and think it is the best designed one out there so far.  It is why I'm concerned about it.

[pooler]

You guys lost a lot of business because of this DDoS attack.  I couldn't get to the website or use it reliably for last two weeks.

Attack started on July 18, and stopped on July 23. The pool has been hashing without major interruptions since then.

My total hashing power is over 1mh.  Not great, but not minor at this point in the game.  I'm sure you lost a good bit, and I REALLY hope you guys have some sort of resource to take legal action.  At the very least, you can make your attacker(s) public if you know what happened.  

Unfortunately I have no proof to convict the attacker.

Also, has your pool upped it's share target yet?

This pool has been serving variable-difficulty targets for over a month, and I've received very positive feedback from miners about that.
If I just increased the share difficulty (which means lowering the target), the speed estimates of slower miners would become very inaccurate.
That's why some time ago I decided to start serving work with a target that is appropriate to the speed of the miner asking for it. This doesn't affect your rewards in any way, since shares are weighted, and counted according to their difficulty. On the other hand, it allows to keep accurate worker statistics while drastically reducing bandwidth. Best of both worlds.

I used to get errors/stales with reaper at litecoinpool that I didn't with Ozcoin.

Ozcoin only changed their share target a week ago, so your problem may be unrelated to this.

I like the PPS better, and would like to switch, but I don't want to go to work/bed and find out that my miner sat for 12 hours+ doing nothing again.

You should not have to worry about that. Just setup failover options and relax.

[VelvetLeaf]

Litecoinpool.org now still hold 30% hash rate, which is still pretty high.
Because attacker love ddosing litecoinpool.org as primary target, my suggestion is to raise the fee a bit to 6.5% and use the 1.5% fee to get a better server, if possible or as emergency funds if something bad happened (mining pool get hacked).

With 6.5% fee, maybe some people will move to other mining server or create their own.

You can reduce the fee back to normal again after things back to normal - more mining pool created, or some people leave to other server.

[pooler]

Litecoinpool.org now still hold 30% hash rate, which is still pretty high.
Because attacker love ddosing litecoinpool.org as primary target, my suggestion is to raise the fee a bit to 6.5% and use the 1.5% fee to get a better server, if possible or as emergency funds if something bad happened (mining pool get hacked).

With 6.5% fee, maybe some people will move to other mining server or create their own.

You can reduce the fee back to normal again after things back to normal - more mining pool created, or some people leave to other server.

There are a lot of CPU miners at litecoinpool.org (which makes sense, since most of the other pools have moved to a fixed lower target), so I don't feel like increasing the fee further.

But! There are already two other public PPS pools out there, and both have lower fees than this one. They are notroll.in (4.8% fee) and Xurious's (3% fee). Both seem to work well and are run by serious and competent people, so I invite all GPU miners to give them a try.

[pooler]

The pool is under heavy DDoS attack again.

All miners who still haven't set up automatic failover to other pools or to solo mining are encouraged to do so as soon as possible.

[tgsrge]

the pool has been stable for a few days now, but some people who went solo/migrated to other pools dont seem to have noticed that yet.
this isnt the first pool to be ddosed, and probably wont be the last so people shouldnt let the ddos discourage them from using this pool, IMO.

just setup automatic failover, and get done with it.

[bitlane]

Pool has been running awesome for the last couple days and I have a feeling that we may have seen the last of the DDoS attacks for a while.

Thanks again pooler for continuing to return the pool back to life, especially considering what you have had to deal with recently.

With CGMiner now wide spread and failover being available to nearly every current miner, DDoS attacks are becoming less and less effective in disturbing the network as a whole.

[pooler]

Pool is currently down due to yet another DDoS attack.

[tatsuchan]

Pool is currently down due to yet another DDoS attack.

I noticed this morning.  Woke up to dead miners.  Someone really hates litecoinpool!