Lemmy.world update: Downtime today / Cloudflare

Today, like the past few days, we have had some downtime. Apparently some script kids are enjoying themselves by targeting our server (and others). Sorry for the inconvenience.

Most of these ‘attacks’ are targeted at the database, but some are more ddos-like and can be mitigated by using a CDN. Some other Lemmy servers are using Cloudflare, so we know that works. Therefore we have chosen Cloudflare as CDN / DDOS protection platform for now. We will look into other options, but we needed something to be implemented asap.

For the other attacks, we are using them to investigate and implement measures like rate limiting etc.

zazaserty,
@zazaserty@discuss.tchncs.de avatar

Damn these script kiddies… I don’t like Cloudflare at all but it does its job well. It may just be my paranoia, but putting a single entity in control of so many websites seems dangerous. I think we have all learned about the intentions of big corporations. But hey, it’s better than being taken down tbf.

PropaGandalf,

Exactly my words. I’d love to see a decentralized network to do the job instead. No single point of failure and people can actually earn a bit of money instead of big corpos enriching themselves.

Sproux,

What are your reasons for hating cloudflair? Best i can tell they run a good service and their free offerings have been great (1.1.1.1)

lemming741,

We said the same thing about chrome 10 years ago. It’s not the quality of the product, which is excellent. It’s the concentration of control.

HelloHotel, (edited )
@HelloHotel@lemmy.world avatar

they have a bad habbit of getting Brain bleeds

phoenix591,

sure, but there’s so many ddos attacks and other scans and probes its nearly required to put something in front of the server

FedditAlt,

I’ve been having lots of connection errors today

HelloHotel, (edited )
@HelloHotel@lemmy.world avatar

Went back up for me again only an hour ago

Anders429,

Why does this comment show up as pinned?

Anders429,

A lot of people don’t like that they’ve basically inserted themselves as a man in the middle to a lot of internet traffic.

pickman_model,

Thanks a lot for all the work you folks are doing to keep this instance up.

md5crypto,

Also when will CloudFlare drop lemmy as a ‘Nazi’ site?

stevestevesteve,

Cloudflare isn’t bad per se, but having huge amounts of the public internet behind a centralized provider is bad for the flexibility and resiliency of the internet as a whole.

linearchaos,
@linearchaos@lemmy.world avatar

Maybe one day we’ll work out a distributed version. The upside is, they’re a filter, not the actual site. If we work out better long term strats they’re disposable. If they’re worse than not having them at any point, it’s just a dns change to kick em to the curb

tabular,
@tabular@lemmy.world avatar

I would like to know the answer too.

Noneo,

Obviously cloudflares ddosing lemmy just to get some extra money

md5crypto,

This might not be a joke as CloudFlare employs lots of woke types that just might do that.

another_kbin_addict,

What do you mean by woke types?

md5crypto,

Woke as in believing in identity politics, Marxism, the usual crap.

gingersneak,

https://lemmy.world/pictrs/image/b84d2277-8297-4046-9365-90c8881421bf.jpeg

Noneo,

woke bots lol. I seriously don’t doubt, It’s a logical step for a business like cloudflare. Won’t ever really be proven or disproven though.

Noneo,

Well I signed today and I got an error saying rate limit earlier for using these types of symbols “î¦âö)ééäë((ºÜݨ¿ã¿ï” I’m assuming It has nothing to do with this but just In case I’m making a comment about it edit:also just realized It may have been from how long the password was (33 characters)

abhibeckert,

This might be related. Encrypting passwords is resource intensive, and longer passwords need more resources.

Specifying really long passwords, repeatedly, is one way to DDoS a server. Maybe they’re blocking unnecessarily long passwords.

solrize,

Any news? I’m still seeing empty pages sometimes (db errors I think), s6 wonder if the kiddies are somehow getting through despite cloudflare.

kn33,

It’s not. People hate large companies that have a dominant position in their industry. Usually, that’s fair. However, in the case of DDoS protection, you have to have a large overbearing presence to be able to have the capacity to withstand such attacks. People don’t know how to see through what’s typically true for what’s true in this case. Do I like having a dominant player in an industry? Not particularly. Do I understand why it’s necessary in this case? Yes.

Nerrad,
@Nerrad@lemmy.world avatar

My biggest problem with CloudFlare is that very often they don’t play nicely with VPN.

AphoticDev,

It’s not ideal, but there’s not a whole lot of options out there for DDoS mitigation.

GatoB,

Like?

  • All
  • Subscribed
  • Moderated
  • Favorites
  • lemmyworld@lemmy.world
  • GTA5RPClips
  • DreamBathrooms
  • InstantRegret
  • ethstaker
  • magazineikmin
  • Youngstown
  • thenastyranch
  • mdbf
  • slotface
  • rosin
  • modclub
  • kavyap
  • cisconetworking
  • osvaldo12
  • JUstTest
  • khanakhh
  • cubers
  • Durango
  • everett
  • ngwrru68w68
  • tester
  • normalnudes
  • tacticalgear
  • anitta
  • megavids
  • Leos
  • provamag3
  • lostlight
  • All magazines
    •