Comment by snowy
10 years ago
Does any one know the technical details of the attack? The article simply refers to it as 'highly advanced denial-of-service attacks'.
From the fact that it knocked off their upstream providers also means it was probably just a simple volumetric attack like an NTP or DNS reflection attack. These are relatively easy to defend against.
I work for an ISP that gets hit with 5 or 6 of these a week, but because of the mitigation strategies we have in place our customers don't even notice...
They say the attack "exceeded 100Gbps" (https://protonmaildotcom.wordpress.com/). I moved my server to OVH 6 months ago, and since then any DDoS attacks don't affect me at all. OVH say they can handle up to 480Gbps of attacks, and people are reporting that they are getting up to 90Gbps of DDoS attacks mitigated by OVH without any problem. Their DDoS protection is completely free with any of their dedicated servers.
I don't really understand the logic behind setting up with a Swiss datacenter with zero (or very little) DDoS protection. It is pretty much guaranteed that China will DDoS you if you are in any way involved in helping dissident groups.