In an official statement post on So Furry
Recent update – DOS attack yesterday
Credited to: Toumal
Heya folks! Sorry for the downtime yesterday.
We were under attack, and the problem is that while we have a firewall that can fend of such things, it’s not a simple matter of just rejecting bad traffic. The thing is, datacenter routers tend to react to traffic that isn’t accepted by sending a broadcast saying “hey, we got some packets here, anyone know where that server has gone off to?”. Multiply that with a couple million every second and you get the situation. As a result, datacenter operators typically “nullroute” servers that are under attack as soon as they start rejecting traffic.
There’s ways around that, and we actually used a solution back in February/March when we had a 6MBit/s DDOS hitting sofurry. It worked beautifully and the attacker gave up after two weeks, but it costs a pretty penny and basically doubles our operating cost. That’s why we don’t do this unless we’re under prolonged attack.
Also, no we can’t use Cloudflare. But thanks for suggesting it 🙂
Anyway, we’re no longer nullrouted and hopefully this is the end of that. If not, well, lets see what happens. The attackers weren’t very smart and there may be consequences coming up.
Thanks for your support here, and on Twitter while the site was down. Believe it or not, that’s incredibly motivating. Thank you ❤
UPDATE:
As of the AM of the 17th they are down once again
Furry Times 