OcUK DDoS attack - £10,000 reward

Status
Not open for further replies.
What I don't understand is that if it's a sustained attack, how come it's not still continuing and the shop/forums haven't been down all the time?
 
Scuzi said:
Can everyone please refrain from suggesting possible names of the attacker. Even if it is in jest it could be misconstrued as an allegation.

If you have any information please follow the instructions in the original post.
Click to expand...

Apologies. :o

Reminds me of the days of DoS attacks on chatroom bots when MSN Chat was global. :)

this is a slightly larger scale though
 
Cyber-Mav said:
well seeing as how its going to be difficult to catch whoever did this, would it not be better for you to save your 10 grand and spend it on more bandwidth for the site to handle these kind of attacks?

by offering the 10 large reward it obviously shows that this attack has peed you off and your after some sort of retaliation. whoever did the attack is probably laughing now and i wont be surprised if they are watching this thread right now and haveing a right giggle.

probably best to just ignore the attack that way the attackers will get bored and move on.
Click to expand...

it's been going on for what almost two weeks?

I don't think they're getting bored.
 
Cyber-Mav said:
well seeing as how its going to be difficult to catch whoever did this, would it not be better for you to save your 10 grand and spend it on more bandwidth for the site to handle these kind of attacks?

by offering the 10 large reward it obviously shows that this attack has peed you off and your after some sort of retaliation. whoever did the attack is probably laughing now and i wont be surprised if they are watching this thread right now and haveing a right giggle.

probably best to just ignore the attack that way the attackers will get bored and move on.
Click to expand...
With the greatest respect you have no idea of the facts involved. I do, hence the reward.
 
Not exactly a hacker here, but surely your website CP shows what IPs are pulling what from the servers? That's probably the best road to go down, not many of us will be tied into the hackers underground, i hope ;)

Without access to administrative tools (which is never going to happen) i doubt there's much many people can do apart from keep their ears to the ground :(
 
iamdjdz said:
What I don't understand is that if it's a sustained attack, how come it's not still continuing and the shop/forums haven't been down all the time?
Click to expand...

Its possible to manage these things in stages - a large amount of the initial attack would have been from machines geographically unlikely to be legit visitors to OCuk so you can start to filter this traffic out further from your core route reducing the strain, you then have to filter traffic coming from closer shores with a finer tooth combe... eventually you come to a point where the attacker isn't likely to have enough machines within the geographical walls you've setup to make a noticeable impact.

At each stage the attacker might shift their attack pattern(s) so you might see it go down, be ok for awhile and then go down again.

Theres also some time delay in doing this especially getting cooperation from carriers further down the line to try and block the attack further away from the main routes to your server.
 
Last edited:
Cyber-Mav said:
well seeing as how its going to be difficult to catch whoever did this, would it not be better for you to save your 10 grand and spend it on more bandwidth for the site to handle these kind of attacks?

by offering the 10 large reward it obviously shows that this attack has peed you off and your after some sort of retaliation. whoever did the attack is probably laughing now and i wont be surprised if they are watching this thread right now and haveing a right giggle.

probably best to just ignore the attack that way the attackers will get bored and move on.
Click to expand...


They will be watching this thread now imo, and they will brag to someone who fanceys 10k in the back pocket and then get caught.
 
Tom|Nbk said:
it's been going on for what almost two weeks?

I don't think they're getting bored.
Click to expand...

2 weeks??? i thought this only happened today, since i tried to access the site mid day and it was un-responsive.

than again i dont frequent these forums as much as i used to.

also tom i did a reply to your hdd thread but when i posted it the site timed out and i was too lazy to type out the message again since it was a long one.

hmm that just goes to show that the attacker of this site wasted my time too.
 
hmm there is always two ways to respond to a DDoS attack, could just keep quiet, but considering ocuk is losing money I don't think they would want to sit back and not saying anything. Spie said at the start of this thread the attack has been going on for 10 days, is a long time.
 
To be honest you need to set up a script or hardware firewall that will ban an ip for 5 mins or so after they keep hitting the server more than a set time. that way you atleast free up bandwidth.
 
Locky said:
To be honest you need to set up a script or hardware firewall that will ban an ip for 5 mins or so after they keep hitting the server more than a set time. that way you atleast free up bandwidth.
Click to expand...

The volume of traffic won't decrease though, so that won't do anything :p That sort of filtering would have to be done further out anyhow.
 
Locky said:
To be honest you need to set up a script or hardware firewall that will ban an ip for 5 mins or so after they keep hitting the server more than a set time. that way you atleast free up bandwidth.
Click to expand...

I'd imagine many of these kinda rules will be in affect or put into affect - but managing a serious DDOS attack takes time and effort.
 
Status
Not open for further replies.
Back
Top Bottom