Ok, people my point is we have too long relied on companies protecting those that can pay (Brian cannot) the hefty fee from DDOS.
And when I introduced this thought with "one fat
My point: Mittigation for this scale of attack is to counter it with a "borg collective" of an even or bigger scale.
The vulnerability for Brian, us and everyone is, that the fight is one against an army. Now one could argue that going on the offensive(attacking the bots, identifying the bots) would be a favourable cause. However this would end up in many little scrimishes that drain energy and end in a victory for that bad guys, because they have more energy.
So I don't think that such an offensive would be a meaningful course of action. The best course of action would be to first weaken those DDOS attacks and then rendering them uneffective because there is not even a single target.
So todays sites are a single sitting fat target, Akamai is just a thick wall, but every wall can be shot to pieces with a big army.
But there are two known and working mittigations
a.) freenet / freesite - with its hash keys and asymetric encryption a site is even "signed", also everyone who connects to a freesite will store it in the cache/storage.
example: It is still active and thriving till today, under attack and not just holding up but thriving.
Idea: torrent(ify) the web
But the secondary - offensive - measure is to identify the unwilling bots of these bot nets and work on this front - long long way to go.