The early morning of May 22 news, 24-year-old free domain name service provider voice Wu DNSPod station in two days without sleep after 2 nights and decided to take the initiative to meet with the media, on the evening of May 19 more than the province of large-scale events indicate a network failure. WU Hong-sound in it, this was a malicious attack by DNSPod accident was caused by a butterfly effect: DNSPod he is a fan of the butterfly wings, the storm has become a visual Pacific storms.
18 evening: butterfly wings
WU Hong-sound on the 20th until the afternoon of realized that, on the 19th night of large-scale network fault with their relevant DNSPod. The previous day, he has been busy handling a network failure: on the 18th around 22:00 pm, DNSPod Changzhou in Jiangsu Province and a number of the master DNS server traffic suffered more than 10G of malicious attacks.
Most do not know the sound of the beginning of Wu DNSPod blocked the main server IP is a friend to tell him do not have access to DNSPod. When he found a layer of a layer of inquiries Changzhou room before we know has been shut down telecommunications because the encounter malicious attacks. Wu is on sound, DNSPod attacked is not a big thing, after the most serious traffic 24G experienced DNSPod attacks, but this time, Changzhou, Jiangsu abnormal flow of the main points of concern arising from China Telecom, and mandatory fengdiao IP.
This has led to runs on the server DNSPod free 100,000 are unable to resolve domain names. These domain names include the local portal, port, personal websites and small enterprises station site, there are 24 hours after the storm caused by paralysis of audio-visual network. Although there have not been any detailed information on the hackers, but history is available, DNSPod had pinch because sifu aircraft attack each other.
In the ensuing years, WU Hong-sound busy DNSPod replacement of IP, the handling of the attack. Evening on the 19th, in Jiangsu, Anhui, Guangxi, Hainan, Gansu, Zhejiang Province, one after another six large-scale network failures, WU Hong-voice network is also a paralysis of the user experience, but he did not think, just furious that hackers have even all the local DNS the point of attack.
19 evening: Pacific Storm
DNSPod in March to do just before a sound WU Hong hobbies, when he was a staff MySpace. DNSPod his Web site with 16 servers, of which 4 free server, a number of personal use of a good Web site dedicated server 4. His services include Verycd, rain forest wind, 4399, small games, audio-visual and other storms. Attack on the official audio-visual services, including storm free server.
It is worth noting that at the 18th storm did not too much a problem. WU Hong-sound interpretation of the agreement, there is a buffer DNSPod time to resolve a request, the day do not have another visit to DNSPod. It is also the existence of the cache has been the appearance of normal and did not let the sound Wu aware of the attack will lead to large-scale accident paralyzed.
Attack after 24 hours at 21 o'clock on the 19th about the cache StormCodec in various parts of the domain name servers are DNSPod failure to visit the beginning of a large number of constant accumulation, telecommunications DNS servers sudden increase in traffic, the network processing performance, resulting in large-scale network fault. 0:00 ago in some areas the storm operators will be adding audio and video server IP or DNS cache DNS banned, the network is only gradually began to recover.
WU Hong 18, the sound is still busy with the evening of the attack to solve the problem until 20 pm A friend of mine told him that the evening of 19 large area of the fault may be related to DNSPod, he suddenly realized what had happened. Letter at this time the Department of Public Works has held an emergency meeting is also linked to high-level storm Wu sound, to discuss the issue of follow-up to the backup domain name server. Followed by 21, the Ministry of Public Works letter DNSPod storm and prepare a report to the Public Security Bureau.
Chance in the inevitable event
WU Hong-sound that this failure was caused by chance coincidence, but is also bound to arise. "Because of a DNS as the most basic services, not the number of people who are not familiar with, we can say that its concern is not the basic." He pointed out that the current Web preventive measures have been more perfect, but precautions are still based on the DNS is very weak vulnerable to hackers use to attack.
WU Hong-sound revealed that the domestic sifu spend 200-300 million every month to attack opponents. G made a general attack traffic takes 4-5 million. Flow through the "broiler" beating out, 24G traffic is likely to take several million to tens of millions of chickens and Taiwan. Of sifu example, to guard against weak attacks DNS is the most effective way.
According to Wu sound, the current DNS to do about a dozen industry, basic is free. Because no money to buy professional equipment, the use of intelligent DNS analysis of more than a small site. At present, the individual is still DNSPod site, rather than a company, no income and capital to maintenance, every month there will be hundreds of Wu to voice a few thousand dollars of the "lose out." Currently registered domain names on its website has more than 30 million a day, more than 20 billion request, the actual use of the domain names of about 100,000.
Although Wu did not sound the user claims to the needs of most users understand that and support him, but there are also a lot of the opinion that in order to prepare his charges to take the interests of zuopudian users. Wu has had some sound aggrieved, he believes he is the victim, but also worried about the future of domain name can not continue to do business, or experienced users claim. (Han-chi)
评论