Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




BDFL - Memuneh
64189 posts

Uber Geek

Administrator
Trusted
Geekzone
Lifetime subscriber

# 255481 14-Aug-2019 09:33
6 people support this post
Send private message quote this post

Over a period of almost 20 hours people may have noticed Geekzone was sometimes slow to respond, not responding at all or just spitting out 500 errors (Server error).

 

Our database server was running at 100% most of this period. After investigating we found a couple of queries that could be optimised but this was not the actual root cause. Further investigation revealed a very large number of page requests coming from China - sometimes at more than 150 - 200 per second. Our poor little server couldn't cope with the stress at a times.

 

At around 6pm I implemented a whole country block, preventing requests originating from China to reach our server. I had to block the whole country because the requests were coming from different networks.

 

With this block in place the server was able to return to normal operation. At the end of the 24 hour period we had about 3.8 million requests, with 2.6 million coming from China alone.

 

The block remains in place, regardless of @sbiddle plans to visit the country in the near future.

 

 

 





View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2 | 3
609 posts

Ultimate Geek


  # 2298876 14-Aug-2019 09:40
One person supports this post
Send private message quote this post

When you mentioned performance, the first thing that came into my head was a song and dance by the moderators.... I blame this on too many kids plays and show attended recently 😂






314 posts

Ultimate Geek

Lifetime subscriber

  # 2298878 14-Aug-2019 09:43
One person supports this post
Send private message quote this post

I am disappointed too.  maybe for another pizza night?


 
 
 
 


819 posts

Ultimate Geek


  # 2298879 14-Aug-2019 09:43
Send private message quote this post

maoriboy:

 

When you mentioned performance, the first thing that came into my head was a song and dance by the moderators.... I blame this on too many kids plays and show attended recently 😂

 

 

Geekzone Stars?

 

Can't be worse than Block Stars. Or can it?


211 posts

Master Geek

Lifetime subscriber

  # 2298887 14-Aug-2019 09:48
Send private message quote this post

I'm guessing that anyone legitimately wanting to visit geekzone from China would be using a VPN anyway, to get around the various firewall issues. That would neatly skirt around the geoblock, would it not?



BDFL - Memuneh
64189 posts

Uber Geek

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 2298889 14-Aug-2019 09:55
One person supports this post
Send private message quote this post

Gurezaemon: I'm guessing that anyone legitimately wanting to visit geekzone from China would be using a VPN anyway, to get around the various firewall issues. That would neatly skirt around the geoblock, would it not?

 

 

Correct. My guess this was an intentional DDoS, seeing the traffic wasn't really coming with a legit bot crawler browser user-string.





2949 posts

Uber Geek


  # 2298890 14-Aug-2019 09:56
Send private message quote this post

When I had to look after a website a while back (NZ based site that would be no use to anyone overseas) I found we were getting clobbered and used some tools to see where traffic was coming from.

 

It was actually pretty scary seeing relentless attempts to access the admin backend from all over the world - notably at the time somewhere in the former Soviet union was featuring pretty heavily.

 

You have my sympathy and respect!

 

 





Nothing is impossible for the man who doesn't have to do it himself - A. H. Weiler

8460 posts

Uber Geek


  # 2298953 14-Aug-2019 10:49
Send private message quote this post

Interesting. My guess, this thread is related:

 

https://www.geekzone.co.nz/forums.asp?forumid=48&topicid=250964

 

And in the first post of that thread, "Time to get Geekzone blocked in the PRC" wasn't the response.

 

GZ isn't accessible from China - but "403 - Forbidden" as expected from your block - but it seems as if the site's not firewalled by China.

 

 

 

At a guess, if the Chinese dictators want to launch DDOS attacks against political targets but deny direct involvement, they wouldn't firewall the target to block the botnet they claim they have nothing to do with. (don't shoot me if I'm wrong - I'm no IT expert).

 
 
 
 


5600 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

  # 2298999 14-Aug-2019 10:59
Send private message quote this post

Do we have conversations going on about the Hong Kong situation?

 

That's really disturbing behaviour eh.


'That VDSL Cat'
10602 posts

Uber Geek

Trusted
Spark
Subscriber

  # 2299005 14-Aug-2019 11:00
Send private message quote this post

Given most of those hits are cache hits, maybe there i still some optimization to make?





#include <std_disclaimer>

 

Any comments made are personal opinion and do not reflect directly on the position my current or past employers may have.


Fat bottom Trump
10371 posts

Uber Geek

Lifetime subscriber

  # 2299051 14-Aug-2019 11:06
Send private message quote this post

I was actually thinking it was 8chan taking revenge on Cloudflare.

 

 





I reject your reality and substitute my own. - Adam Savage
 




BDFL - Memuneh
64189 posts

Uber Geek

Administrator
Trusted
Geekzone
Lifetime subscriber

8460 posts

Uber Geek


  # 2299086 14-Aug-2019 11:40
Send private message quote this post

gehenna:

 

Do we have conversations going on about the Hong Kong situation?

 

 

From what I've seen, nothing more aggressive (to PRC) than you'd read on any NZ or other western news site.

 

 




BDFL - Memuneh
64189 posts

Uber Geek

Administrator
Trusted
Geekzone
Lifetime subscriber

'That VDSL Cat'
10602 posts

Uber Geek

Trusted
Spark
Subscriber

  # 2299097 14-Aug-2019 11:53
Send private message quote this post

freitasm:
hio77:

 

Given most of those hits are cache hits, maybe there i still some optimization to make?

 



Actually the cache hits are images and scripts. Pages are always fresh.

 

Missleading graph is missleading then..

 

 

 

Time for a server upgrade! we have to take on our new forum members clearly rather than block them! ;)

 

 

 

On a more serous note, thanks for getting to the bottom of this.





#include <std_disclaimer>

 

Any comments made are personal opinion and do not reflect directly on the position my current or past employers may have.


 1 | 2 | 3
View this topic in a long page with up to 500 replies per page Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Kiwi workers still falling victim to old cyber tricks
Posted 12-Aug-2019 20:47


Lightning Lab GovTech launches 2019 programme
Posted 12-Aug-2019 20:41


Epson launches portable laser projector
Posted 12-Aug-2019 20:27


Huawei launches new distributed HarmonyOS
Posted 12-Aug-2019 20:20


Lenovo introduces single-socket servers for edge and data-intensive workloads
Posted 9-Aug-2019 21:26


The Document Foundation announces LibreOffice 6.3
Posted 9-Aug-2019 16:57


Symantec sell enterprise security assets for US$ 10.7 billion to Broadcom
Posted 9-Aug-2019 16:43


Artificial tongue can distinguish whisky and identify counterfeits
Posted 8-Aug-2019 20:20


Toyota and Preferred Networks to develop service robots
Posted 8-Aug-2019 20:11


Vodafone introduces new Vodafone TV device
Posted 7-Aug-2019 17:16


Intel announces next-generation Intel Xeon Scalable processors with up to 56 cores
Posted 7-Aug-2019 15:41


Nokia 2.2 released in New Zealand
Posted 5-Aug-2019 19:38


2degrees celebrating ten years
Posted 5-Aug-2019 05:00


Sure Petcare launches SureFeed microchip pet feeder
Posted 2-Aug-2019 17:00


Symantec Threat Intelligence: revival and rise of email extortion scams
Posted 2-Aug-2019 16:55



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.