Results 1 to 6 of 6

Thread: Eat up 4GB Bandwidth Quickly!

  1. #1
    Senior Member
    Join Date
    Mar 2004
    Location
    California
    Posts
    724

    Default Eat up 4GB Bandwidth Quickly!

    There's a "service" out there that "tests" your server for you and quickly consumes about 4 GB of bandwidth. It was featured in a tech blog this morning.

    I won't share the URL here because Dathorn's forums are public, but any of you can PM or email me and I'll let you know. The testing application allows anyone to enter any domain name and WHAM, they get hit with 4 GB of traffic.

    I tried it this morning and yeah, it lets you mount what is in essence a bandwidth attack on any site you want. I'm thinking I'll put the IP address in each customer's .htaccess file (using the IP Deny applet in Cpanel.)

  2. #2
    Administrator AndrewT's Avatar
    Join Date
    Mar 2004
    Location
    Tulsa, OK
    Posts
    3,641

    Default

    Nice. Doesn't sound like they thought this through if anyone can enter any domain. I'm sure their data center / upstream providers would love to see complaints concerning this.

  3. #3
    Senior Member
    Join Date
    Mar 2004
    Location
    California
    Posts
    724

    Default

    They should have some kind of verification scheme in place like Google uses (either a file or a meta tag). I probably should let them know the impact it had on my site.

  4. #4
    Member
    Join Date
    Mar 2004
    Posts
    67

    Default

    I think there is something wrong with this service. what it'll do to "test", that gets 4gb hit in minutes?? port scanning? if its port scanning it's got temporary block by LFD/CFD in 10th scan.
    please pm me, I want to check this out.

    I've almost forgot, these kind of services should be ip-blocked at our server's level by Andrew to prevent disaster.

  5. #5
    Senior Member
    Join Date
    Mar 2004
    Location
    California
    Posts
    724

    Default

    I sent you a PM with the URL and the IP address and log entry you'll see in the raw logs.

  6. #6
    Senior Member
    Join Date
    Mar 2004
    Location
    St. Louis, MO
    Posts
    530

    Default

    Ouch, in the wrong hands, that could be horrible for many sites. Hope this isn't a legit company.

    In hindsight, what if someone put that company's domain in it... ??? Sad to say, but that might get their attention as well.

    Do us a favor and bury that url/info. Well give it to Andrew to block on the servers, but yah, bury it.
    Hosting at Dathorn since March 2003!

    My Interwebs speed on Charter Cable!

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •