Blizzard is one of the most lucrative companies in the world, a billion company and with ALL the money they made with us they could provide a stability for their players. But no… a billiard companies can’t stop DDOS attack… its a joke.
They could prevent botnet from contacting US servers because botnet is mostly located in third world countries which shouldn’t be contacting US WoW servers anyway. But attackers are ddosing internet service providers of US WoW servers, so it’s out of blizzard’s control
No use in replying man. People don’t want to google to even understand what they’re talking about. You’re talking physics to a 1st grader. If you want to explain you have to dumb it down further. A is blizz, B, C, D, E, F are all ISP servers between bliz and you and they’re nuking B. Not A. So A can’t do anything about it. Like if the town tore up your road and you were getting yelled at for your driveway not being accessible. It’s not the driveway that’s messed up.
4 Likes
Hi. Telecom/network engineer here. It seems like you don’t have a good understanding/grasp of why DDOS mitigation is difficult. There are multiple factors that makes an attempt at this challenging, including:
- Depending on how well crafted the DDOS traffic is (newer iterations of botnet chains, aside from older stuff like Zeus, etc) makes it very difficult to discern from normal/regular traffic. Older methods (going as far back as syn/icmp nuking, teardropping, etc) are generally mitigated easily because the traffic is fairly basic and can be told apart. Newer iterations get around this by making traffic varied, and non-uniform.
- The geo-locational spread of sources for the DDOS traffic can also make it difficult. Most botnets don’t rely on having all of their eggs in just one basket (e.g. All of them coming from a single continent or country) and are all over the place. This, while hilariously rooted in obfuscation, also makes the origin of the attack as ‘clear as mud’.
- How well the C&C (command and control) backend is hidden (and, how advanced it is) makes it incredibly difficult to point. This is one of the most annoying facets of DDOS attacks. Normally older botnets used garbage/simple methods such as relying on a singular IRC node to guide the botnet. There are iterations of botnets that exist that have a multi-faceted distributed p2p mesh that provides C&C. Even if you identify the C&C stream itself, it is a paramount amount of work to try and track down the initial source that kicked it all off in the first place.
I could keep going, but I won’t bore you. There are methods available to apply some degree of mitigation. Being a ‘billion dollar’ (is this even right? I wonder) company doesn’t suddenly make them a technological deity that can find the right needle in a stack of needles.
5 Likes
@Sunjetsu
What are you talking about? Again, you show a complete lack of understanding/knowledge on the topic.
What they did is implement a profusely crude DDOS mitigation method that had additional impact after to Linux/Mac and Windows users. TTL defaults vary between vendors (not just TCP stack implementations which all differ, such as vegas, reno, etc). DPI/Packeteering approach -can- be okay, but the way they (presuming this is either Blizzard or a third party vendor they went to for assistance) handled it was hamfisted and broad stroke. Suggesting they “fixed” this is the same as saying that banning all young people from the mall to prevent shoplifting is a “fix”, based on statistics. A lot of innocents get caught in the crossfire because of poor decision making.
In addition, what in the actual hell are you talking about with the ‘UK system interconnection with everything else’? What is this referring to? That makes literally ZERO sense. Are you suggesting that the majority of attacks were funneled through this and therefore in your imaginary scenario this would have fixed things? The attack (like described above) was from multiple sources, 100%. Based on reports alone in the forums and what people were saying, they observed various ISP/geo-ip blocks being temporarily blocked while they tried to figure out the issue, from Mexico to Canada. You think the UK interconnect would have done something?
Ooof. It’s like talking to someone that can’t comprehend the basics of mathematics trying to tell you that they can prove zero actually exists…
And it shows as even after I finished typing this up, you deleted your own post…
You work to understand that. So dont come here trying to sound smart because your not. Lets talk about my profession now? I want to sound smart too you know?.. lolll Arsenic heated to 300 ° C begins to sublimate without melting. Sublimation is fast and total at 613 ° C. The vapors condense on colder walls or surfaces, gradually forming rhombohedrons. Measured a vapor density of about 10.37 at the unstressed vapor pressure of a molar volume, as much at 564 ° C as at 860 ° C.
All those people who think they are smart because they work with computers. ((Mg,Fe2+)2(Mg,Fe2+)5Si8O22(OH)2)
I can see that conversation for you is an easy time-waster, so lets try and point out the obvious:
- I stated very clearly, twice, that “you show a complete lack of understanding/knowledge on the topic” Notice the bold portion which is meant to signify that your whining/complaining about this particular subset of human knowledge/information in the fashion you have is rooted in ignorance
- I’ve presented to you VERY CLEARLY outlined details as to why this is the case. This is not about sounding smart. It is about dismantling the further propagation of misinformation that fuels unrealistic expectations like your first one in this topic (again, going back to your whining/complaining).
Mentioning random facts and information unrelated to the topic at hand not only makes you appear as a buffoon, but shows your insecurity.
It’s a grand shame as this was a genuine opportunity for you to learn and instead you squander it on entirely vapid and meaningless banter for the sake of soothing your bruised ego.
Good luck out there. I hope for our species you don’t reproduce.
Even if " i show a complete lack of understanding/knowledge on the topic I don’t have to heard you trolling me about it… im gonna respond all the way. Talk like someone with dignity and i will respond as such. So tell me how they fixed it 2 days after if this is unfixable?
This is my final response as too much time has already been wasted on this.
- My initial response did have respect. Stating that you didn’t know what you were talking about when you whined/complained (with a complete lack of respect to Blizzard) was obviating that there was room to learn. You’d rather remain endlessly ignorant?
- You fail at absolutely basic English comprehension skills, but quote subject matter from your vocation to denote ‘sounding smart’? What?
From the original post:
It seems like you don’t have a good understanding/grasp of why DDOS mitigation is difficult.
From the first sentence I advise DDOS mitigation is difficult. Not impossible. I never made that claim in the first place. To re-iterate this, I later wrote:
There are methods available to apply some degree of mitigation.
Again, never made the claim that it couldn’t be done. Just that it was difficult. You whining/complaining in a manner that sets the expectation for a “Billion” dollar company (which I still think doesn’t make sense, are they actually within the Billion dollar bracket for profits? Is there any proof of this? I’m genuinely curious now and want to see if this is the case) to have an easy time stopping a DDOS attack is unrealistic. This is true of any company, large or small, if you knew anything about the topic you wouldn’t even be making a post like this.
And from your post:
don’t have to heard you trolling me about it
Again… What? I gave clear and precise explanations with actual examples outlining why this was the case. There was no trolling about it. You make an inflammatory post that is whining/complaining like a child, while also having the understanding of a child, and when someone tries to correct you and make you learn you say they’re “trolling”? Is your ego so easily bruised that you cannot put it aside for the sake of additional context?
Based on all of our interactions, this is the most insane:
So tell me how they fixed it 2 days after if this is unfixable?
wat.
I mean. Very seriously now. What? Re-read this a couple of times, my friend. Go back to my earlier post that actually addresses this, and tell me what you’re talking about here. It does not make any sense.
This ENTIRE block here touches upon the topic:
What they did is implement a profusely crude DDOS mitigation method that had additional impact after to Linux/Mac and Windows users. TTL defaults vary between vendors (not just TCP stack implementations which all differ, such as vegas, reno, etc). DPI/Packeteering approach -can- be okay, but the way they (presuming this is either Blizzard or a third party vendor they went to for assistance) handled it was hamfisted and broad stroke. Suggesting they “fixed” this is the same as saying that banning all young people from the mall to prevent shoplifting is a “fix”, based on statistics. A lot of innocents get caught in the crossfire because of poor decision making.
Now I am officially done. It seems like the only one ‘trolling’ (and poorly at that), is you.
Again, good luck out there. Don’t reproduce. Please.
You are the only one here who trying to sound smart with 100 words by topic for a random post. I have the right to criticize blizzard all day long. Welcome into troll city knowledge computer seminar. Your host - Duncanldaho.
Well - all the attacks they do prevent to keep the game running you never know about. But don’t let imperfection stop you from crying.
haha! “tell me how they fixed it…” this person is a total idiot.