The web site is offline?

May 20, 2008
11,411
99
Syracuse, NY, USA
I have been getting "the web site is offline" all afternoon when connecting to these forums. I press the "try again for a live version" and it's OK. What's up?
 
May 20, 2008
11,411
99
Syracuse, NY, USA
The Chinese are attacking the site again. They've been unable to do any damage, but they're slowing things down.
This continues today. Did you do something to anger them? It's particularly annoying to have just composed a post only to press "Post Reply" and have it lost!
 

rconn

Administrator
Staff member
May 14, 2008
12,356
150
Rex, I think you should add a banner to the website saying something like "Not affiliated with the Department of Defense"....

We get attacked periodically by two (apparently? ostensibly?) different groups from China -- what appears to be criminal hacker groups looking for passwords & credit card numbers, and another set (somewhat more inept -- government sponsored?) who appear to be searching for code. Since we don't have either on the JP Software website, they're wasting their time, but perhaps the possibility of causing disruptions on our website is enough to satisfy the second group.
 
May 20, 2008
11,411
99
Syracuse, NY, USA
When they start picking on me ...
Code:
v:\> alias ipblock
netsh advfirewall firewall add rule name=aablock_%1 dir=in action=block enable=yes localip=any remoteip=%1
Code:
ipblock 218.0.0.0-223.255.255.255
is a good start. Would you like a list that covers about 98% of Asia?
 
May 20, 2008
11,411
99
Syracuse, NY, USA
I'm already blocking them. But they're beating on the door hard enough (> 1000 attempted accesses per second) that they're causing some spotty access timeouts.
Are ISPs amenable to helping out in such situations? ... blocking at a higher level?
The few times this has happened to me (that I'm aware of ... never causing any harm or even inconvenience) the attacks have been from a single IP in a block of dynamically assigned IPs used by some ISP over there. I figure it's a stand-alone hacker.
 

Charles Dye

Super Moderator
Staff member
May 20, 2008
4,466
88
Albuquerque, NM
prospero.unm.edu
We get attacked periodically by two (apparently? ostensibly?) different groups from China -- what appears to be criminal hacker groups looking for passwords & credit card numbers, and another set (somewhat more inept -- government sponsored?) who appear to be searching for code. Since we don't have either on the JP Software website, they're wasting their time, but perhaps the possibility of causing disruptions on our website is enough to satisfy the second group.

Hmp. I'd be tempted to generate a few hundred thousand "credit card numbers", complete with expiration dates, and put 'em someplace the script monkeys could find. Give them something to play with. But I guess that would just drive them into a blood frenzy; it's probably a good thing I'm not running your web site!
 

rconn

Administrator
Staff member
May 14, 2008
12,356
150
This attack is coming from at least several hundred (possibly several thousand; haven't isolated them all yet) IP addresses, most of which appear to be bots. New ones are added continually.

If it follows the same pattern as previous attacks, it'll peter out in another day or two when they decide to shift their attention to a more worthwhile target.
 
Hmp. I'd be tempted to generate a few hundred thousand "credit card numbers", complete with expiration dates, and put 'em someplace the script monkeys could find. Give them something to play with. But I guess that would just drive them into a blood frenzy; it's probably a good thing I'm not running your web site!

Such an informative post.Thank you for sharing the great knowledge.
 
Similar threads
Thread starter Title Forum Replies Date
rconn Web site and forums offline Saturday evening, January 2, 2010 Support 0
Charles Dye Outdated download links on the web site Support 1
rconn News HTTP to HTTPS for JP Software web site & forums Support 3
rconn News Web site update Support 0
Steve Pitts Documentation Problem with JP Software web site Support 0
rconn Web site upgrades complete Support 0
rconn Web site downtime Support 0
rconn JP Software web site unavailability Support 0
T Error: This page can’t be displayed Make sure the web address //ieframe.dll/dnserrordiagoff.htm# is correct. Support 8
C DEL, connected Web folder, report Support 1
M Web Help option in Take Command 15 broken? Support 3
noahcoad How to? Prevent web url from opening after silent install Support 0
rconn News Take Command Web Help Updated Support 0
S Nasty new web action by installer Support 5
rconn News Web help translation Support 0
C web help nits Support 1
Charles Dye Web help on functions Support 2
bwawsc2 Amazon Web Services (AWS) Support 14
vefatica Web server? Support 0
B when doing SFTP via IFTP to my secure site my users always get the finger print key prompt Support 1
rconn News Site down, messages lost Support 0
S How to? Connect to the FEEDBACK site when images are disabled Support 1
S How to? How can I test "if isdir"/"if isfile" tests on an HTTP site? Support 2
M Site doesn't recognise cookies Support 0
C v15 not on ftp site? Support 8
S WAD COPY from FTP site fails in 14.03.51 Support 9
S TMCD 13.04.61 not on FTP site Support 5
M Jpsoft site and forum "connection was reset" Support 7
S FTP site; FTP copy Support 4
Peter Bratton Update the ftp site Support 1
S DEL on FTP site : complaint about missing DESCRIPT.ION Support 1
dcantor Feedback site problem Support 4
BobK JPSOFT Site lost my ID.. ? Support 0
S FTP site; IFTP access Support 10
P How to? Register offline? Support 1
P Offline key Support 0

Similar threads