DDoS on Domain Registrar - Slashdot

Slashdot is powered by your submissions, so send in your scoop

×

DDoS on Domain Registrar 69

Posted by ScuttleMonkey on Monday March 27, 2006 @08:15AM from the paint-by-numbers dept.

miller60 writes "Netcraft is reporting that 'domain registrar Joker.com says its nameservers have been hit with a massive DDoS attack, causing outages for customers. More than 550,000 domains are registered with Joker, meaning the outages could be widely felt. It's not clear why the DDoS is succeeding, as most registrars have implemented sturdy DDoS protection since the attack on the root nameserver system back in 2002.' Some security experts have warned in recent weeks about DNS recursion attacks as previously discussed here on Slashdot, which can amplify the power of attacks launched from botnets."

This discussion has been archived. No new comments can be posted.

DDoS on Domain Registrar

Search 69 Comments Log In/Create an Account

Comments Filter:

Not that surprising! (Score:5, Informative)

by Anonymous Coward writes: on Monday March 27, 2006 @08:33AM (#15001861)

Anyone that has had to deal with DDoS attacks against their networks lately should know that it isn't terribly uncommon to see DDoS attacks that saturate over 1Gbps of bandwidth. With a sizeable botnet, even if the registrar has two gigabit uplinks, it wouldn't be too difficult for an attacker to knock them compleetly offline. Take whatever DDoS prevention methods you want, if your upstream links are saturated... you're boned.

Share
twitter facebook
Can still switch DNS servers (Score:5, Informative)

by pixelbeat ( 31557 ) writes: <P@draigBrady.com> on Monday March 27, 2006 @08:42AM (#15001907) Homepage

Their website is still functional enough to allow
one to change the DNS servers away from [abc].ns.joker.com
I did this last for my domain.

Share
twitter facebook
Re:Considering... (Score:5, Informative)

by arivanov ( 12034 ) writes: on Monday March 27, 2006 @09:01AM (#15001977) Homepage

Can't really say anything about that, but a quick investigation of their DNS shows that it is not geographically distributed (RFC3258). OK, I do not have the tools to do it properly, but it does not look like.

On top of that they do not look like they have their own connectivity to peering points in EU.

So frankly, they look like they are ripe for the picking. It is utterly trivial to run a domain registrar out of several diverse locations using RFC 3258. A registrar that is not doing it is in clear need of a cluebat on the head several times. I hope that this DDOS finally delivers it.

Parent Share
twitter facebook
Old news (Score:3, Informative)

by rueger ( 210566 ) writes: on Monday March 27, 2006 @11:06AM (#15002780) Homepage

The DDOS attack was actually middle of last week. Joker.com is now operating fine. Timeliness is important when one posts stuff like this, or at least enough editorial sense to edit for the past tense and to check out what is being said.

I've used joker.com for years. It's significantly cheaper than Network Solutions and other US registrars and I've never had a problem.

Share
twitter facebook

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Related Links Top of the: day, week, month.

413 commentsChatGPT Leans Liberal, Research Shows
347 commentsAmazon CEO Says 'It's Probably Not Going To Work Out' For Employees Who Defy Return-to-Office Policy
327 commentsHotel Owners Start To Write Off San Francisco as Business Nosedives
323 commentsChina is Building Nuclear Reactors Faster Than Any Other Country
315 commentsChina is Calling in Loans To Dozens of Countries

We are each entitled to our own opinion, but no one is entitled to his own facts. -- Patrick Moynihan