Yikes, more than 6 times our last peak volume (right after the Aurora tragedy)... Diagnosing to see if attack that my security measures are holding at bay well enough, or if people really love us right now. Stay tuned.

lolwut? interwebz traffic? vehicle traffic? Drug traffic(ing)?

or if people really love us right now. Stay tuned.



3TKK6d3-h2U

Yikes, more than 6 times our last peak volume (right after the Aurora tragedy)...

Wat?

http://puu.sh/2lJmV

I'm going off of request volume not user volume. Also the active users volume was thrown off by a cookie issue, so 2721 is way off.

But never-the-less we are getting much more requests per minute (maybe some users are requesting a whole bunch per minute???) than ever before.

Great, just what we need, another druid princess

I'll stop my SYN flood cannon...

Yeah, my IDS/IPS has no problem stopping SYN floods. Would have to be better than that for an attack.

Yeah, my IDS/IPS has no problem stopping SYN floods. Would have to be better than that for an attack.

Ok, i am not up on Nerd talk! What is SYN floods?

Denver post is exclaiming the possibility of a white supremacist gang hit on DOC director...maybe the media is trolling for a story?

Great, just what we need, another druid princess

There's only room for one princess here!

Great, just what we need, another druid princess
She doesn't look Druish?

Damn, now I am stupid. WTF? [facepalm]

Who has -65k posts?

Maybe its those C bolt face stickers that boosting advertising... :hides:

Damn, now I am stupid. WTF? [facepalm]

Who has -65k posts?

I do(n't)

Ok, i am not up on Nerd talk! What is SYN floods?

A SYN packet is the first in a 3-way handshake for TCP-based network communication. Not a web-dev expert, but as I understand it, a SYN flood is basically flooding a server (in this case the COAR15 website) with incomplete handshakes, essentially tying up the server's resources and potentially denying legit access to the site.

Typical HTTP is sync, request, response. Other protocols have ack packets too, but not standardized HTTP.


of course you add in active keep alive, and traffic gets more complicated.

A SYN packet is the first in a 3-way handshake for TCP-based network communication. Not a web-dev expert, but as I understand it, a SYN flood is basically flooding a server (in this case the COAR15 website) with incomplete handshakes, essentially tying up the server's resources and potentially denying legit access to the site.

Thanks!


Typical HTTP is sync, request, response. Other protocols have ack packets too, but not standardized HTTP.


of course you add in active keep alive, and traffic gets more complicated.

Now I understand [hahhah-no]...... Anyway hope were popular!

No clue what the gibberish is all about, but I am glad J is on top of things [Weight]

Since I love talking about networking and have nothing better to do, a three way handshake is how a TCP connection is set up (TCP is used for most non streaming (voice, video, etc) internet communication). Client sends a SYN (synchronize packet) to a server, server responds with a SYN/ACK (ACK=acknowledgement) and client responds with an ACK.

A SYN flood is when a malicious client sends a SYN (synchronize) packet to a server, the server responds with a SYN/ACK but the client doesn’t respond with an ACK. Due to network latency and packet loss the server will wait for the ACK for a period of time which consumes system resources on the server. Not a big deal for a few packets but if you send millions of SYN packets in a short period it can crash or at least severely hamper the server. These attacks aren’t very useful today from a single or a few hosts but a distributed attack utilizing thousands or millions of PCs can still wreak havoc.

Here’s a basic trace of a connection to ar-15.co to show an example of a simple 3 way handshake.

24227