So just to be clear, Mr Professional:
You think Blizzard is simply to lazy to fork over the cash to install the hardware for more bandwidth, and that this could be easily resolved if Blizzard ever felt like it?
Wait why would you blame him? He doesnât DDOS.
No. It requires a much more robust sever infrastructure than what Blizzard has. See Amazon.
Its not about being small these guys probably just clone thousands of computers and hit it with millions of ddos. You can do it here in the states but theyâre actually easily tracked.
This is partially true. Agreed there isnt a firewall that does it but there are peices of equipment that can mitigate DDOS attacks. Problem is the ISP needs it and it would have to be very robust
There was a thread created about 7 hours ago saying how the DDOS attacks started when Asmon went online and how heâs the reason for the attacks. It then went on to say Asmon should take a break from streaming so everyone else can play
Naaah, I thought about it, I canât see how itâs possible to do
Yes to the first part. âEasilyâ is subjective.
This is how all DDoS scrubbing services do what they do. As long as you have more bandwidth than the attacker, they canât snuff you out. You then have to scrub the data so youâre still passing legitimate traffic to your backend, but thatâs a separate discussion.
Itâs not a bandwidth problem. Itâs a packet/sec problem. The firewall/router still has to process the packet to verify if its legitimate or not.
When you have TB/sec of packets streaming in the hardware isnât capable to dealing with it.
IF they did purchase equipment to deal with it the system would cost millions and normally would see less then 1% usage. Thatâs just bad business.
2 Likes
thereâs the answer people need
It is not a fixable problem within the current internet. Whole countries, banks, corporations get shut down daily due to DDoS. You should expect this to get worse before it gets better.
We will eventually create a smarter set of protocols whenever we make internet 2.0. Or we start holding device/software manufactures accountable for insecure compromised systems, which are the primary tools for DDoS attacks.
As we said previously, this is all about money. DDOS attacks can be stopped but Blizzard doesnât want to spend the money to do it. You all make it sound like DDOS attacks are uncontrollable. They arenât. It just a matter of spending the money to stop them.
To be precise if ISP purchased this equipment, because they arenât ddosing WoW servers
Tired of this âcanât do anything about ddos, donâcha know how hard they are to stopâ parroting when you also know nothing.
Blizzard should be using distributed virtual servers, hosted through google or AWS and get rid of their physical data centers, it would probably cost less money as well.
They probably havnât done this already because it would require them trusting a third party with all of their data, which could easily be solved by having one physical data center where everything is raided from the virtual servers incase anything happens.
I work in database engineering and architecture, this isnât an âIT securityâ problem people keep going on about since DDOS canât be âsecured againstâ. Itâs literally an infrastructure problem from Blizz keeping physical stacks with one forward facing public IP, which is stupid.
Blizzard needs to get with the times and use virtual distributed servers, which can easily avoid being DDOSâd like this.
4 Likes
Yikes. Let me take a moment to explain it to you.
What blizzard is facing right now is a volumetric DDoS attack. By its very nature, this is a bandwidth exhaustion attack. Due to the way the internet networks, not all traffic comes in through the same pipe (assuming they have multiple connections, which they do and can be easily verified by checking any looking glass). Therefore, no one single router handles all the traffic. Not to mention there are chassis routers capable of handling 1Tb/sec and beyond.
Those routers can, and frequently do filter packets based off criteria supplied by the operator to filter out the legitimate traffic from the bad traffic. And because this is distributed over multiple ingress points to the network, itâs entirely feasible with todays technology.
Pretending like Blizzard canât protect themselves against this is ignorant at best.
2 Likes
Just make DDoSing a death penalty crime and itâll stop most of them
2 Likes
They absolutely are. Blizzards paltry 10Gbps ports at various IXPs are being saturated by the traffic. They chose the cheapest port speed instead of opting for higher multiple links or 100G links.
Itâs unfortunate, but it happens. Meanwhile Blizzard is trying to shift blame to the ISPs so they donât look like the bad guys.
2 Likes
Wonât somebody think about the children?
Canât ignore that Windows Defender notification. Click Yes to turn on.