This forum topic will contain announcements from the team about any issues that are occuring for the OzBargain website and/or related services.
Site Issue Announcements
Last edited 15/04/2014 - 09:09
Comments
are you happy with the way cloudflare is kicking in? or would you look at using something like imperva?
@memez: Not happy, but they provide an API so we could deploy something to automate that (one of many todo's here). We already have code that integrates with other parts of CloudFlare so not likely going to change.
Some level 10 weirdos right there 😂
Ozbargain is the Worst of the worst website. It should be banned from internet world
That’s the best thing I’ve read all week.
Easy way to tell. Has there been a good DDOS toolkit deal posted recently?
Could be someone disgruntled that Thai Honey never came back in stock due to an OzB member…
@bozzonac: That sits on the same shelf as the framed photos of scotty, TA and I ;)
Ooh now getting database errors occasionally, error 2002
!$#%
I must have some script blocking thingamajig because that Cloudflare human verification hates me.
And now its blocked me on Chrome 121.
Probably should switch to Firefox full time anyway.Was experiencing issues yesterday evening with Cloudflare. I'm guessing another DDOS attack?
I wonder why?How long was that one? 2 hours or so hours?
Yep site was totally down.
Yeah almost 2 hours. I think web server ended up using up all the file descriptors and went haywire afterwards. Poor DDoS attacker who even had to work overtime on Sundays.
you might have to invest more into DDoS protection. Increase bandwidth.. but i know that aint cheap :P
Doesn’t help that things such as this can bypass Captcha protection.
invest more into DDoS protection
L7 DDoS protection is not really about increasing bandwidth. It's not UDP or syn flood that saturate your pipe, but creating too many "legitimate-looking" HTTP requests that overloads your webserver and application servers.
We found CloudFlare with custom WAF rules can block majority of the attacks. However attack vector changes and we too need to change the WAF rules to block those requests. OzBargain might suffer down time during that lag (us updating the WAF rules).
For "adaptive DDoS protection" from CloudFlare Enterprise — I have no idea how much it would cost as I haven't gotten a quote yet. However from what I have read it could be 4-5 figures a month, i.e. costly comparing to what we currently have.
@scotty: hmmm… i have quite a few large client web sites using Bunny CDN, they swear by it and in their opinion much better options than cloudflare at a fraction of the price https://bunny.net/network/ddos-protection/
Can you put a ban on IPs that arent from Australia? Or those IPs are showing Australia?
And if the botnet smashing the site is here? Then what?
My guess the attacks are coming from everywhere.
Yeah thats something we dont know.
Won’t that exclude everyone?
Attacks inside Cyberspace aren't as clearcut as that.
It is not always about the origin, which itself can be spoofed, but what the objective is, eg. depleting bandwidth? stressing a server out? etc. etc.
Are notifications broken at the moment?
Noticing this too. Not receiving notifications when someone comments on my deals etc
The only notification I have received today is because I’m subscribed to mitre 10, the WD40 posted by you.
Prehaps no mods have seen this because of the lack of notifications? @scotty @neil @hamza23
Thanks. I just came across this now, it seems something is going on with comment notifications. I have let Scotty know privately already, as someone twam'd about it.
I didn't get notification from @HamBoi69 tag either.
Neither then. Oh well, problem fixed, cheers!
Should be fixed now.
Yeah all good now, got the notification for your comment.
Mine was definitely broken and didn't get this notification
We have been having email delivery to iCloud Mail again since 26 March, and we have contacted iCloud Mail Postmaster trying to resolve it.
If you are using iCloud Mail (even on your own domain), your email address here might get marked with excessive bounce and gets disabled.
Twice already iCloud Mail Postmaster has replied:
We have investigated your report and made appropriate changes
However nothing appears as changed, and we are still unable to deliver emails to iCloud.
Anyone else getting constantly logged out across devices today?
Yep
Yes, came here to see if it was just me or others had the same experience.
@Loopholio: Irony is that they either using the DDoS to stop people looking at their crappy deals/scam deals or blocking the platform for bringing in customers so either way their dumb for performing such an attack or paying someone to do it for them