unless you can't log a single minute between EA and OR your reward is amount of time you could playQuote:
Originally Posted by Azmura
and anyway you have EA IG goodies
-
05-27-2015, 09:49 PMHik0
-
05-27-2015, 09:52 PMSouljackerThese things actually happen to call attention to lax security, not because there is no defense against them and we should all just give up. The guys who did those attacks (Lizard I believe?) called both targets idiots and they were mostly right.Quote:
Originally Posted by Malzian
-
05-27-2015, 09:54 PMDuuude007How would you know what SE will or will not do?Quote:
Originally Posted by Souljacker
A DDoS comes in many forms, most of which cannot be effectively 'prevented' and if it was a version they could mitigate, it wouldn't be in their best interests to advertise. -
05-27-2015, 09:57 PMSouljackerTwo decades of playing SE games.Quote:
Originally Posted by Duuude007
Besides that, I don't think that anyone really cares enough about SE to launch an actual DDoS against XIV, so the point is moot. The only issues that we'll likely see will come from actual stress from players. -
05-27-2015, 10:05 PMCirgellon
Why even worry about something like this? lol
There is no point worrying about something that might happen when you won't be able to do anything about if it does. -
05-27-2015, 10:12 PMNezmHmmm awful lot of those lax securities which may be used lie in bugs found in the NW or Infra manufacturers equipment, which has little to do with the company using it.Quote:
Originally Posted by Souljacker
Saying as such I believe LS used a route which only redundancy could prevent. Meaning your security choices are close the service down or, or have a complete separate infrastructure to re route to. And that's pretty much it.
From there they might be able to be handled reactively, but the service is already down. -
05-27-2015, 10:46 PMDuuude007There was an announced imminent DDoS against SE 3-4 months ago, so your awareness of 'SE goings on' seems to be lacking, to say the least. Also, their flagship game remained online for the duration of the window. Magic?Quote:
Originally Posted by Souljacker
-
05-27-2015, 10:59 PMMalzianYou seem to have a misunderstanding of what a DDoS attack actually is. These types of attacks do not actually stem from any individual security flaw in a company’s system. Did Lizard Squad call MS and Sony idiots? Yes. Do both companies have issues with their security practices? Yes, most especially Sony. However, DDoS doesn’t take into effect any specific vulnerability and instead leverages the main feature of how the internet works and how servers handle traffic.Quote:
Originally Posted by Souljacker
The best example is probably the simplest, and that one is the office secretary:
So, let us say for argument’s sake that we have an office building and that building gets a certain amount of letters per day. Each letter needs to be received and read by a secretary who then has three possible options regarding that letter: pass it on to its destination, put the letter into a queue to wait or throw the letter out. We have no idea where the letters are coming from or what they contain, though we have a specific set of rules regarding which of the three actions are taken based on whatever criteria we’ve decided on.
Next, let’s assume that the secretary can read through and sort 1,000 letters a second with 100% accuracy. This means that if 1,000 letters come in it takes 1 second to sort through and follow the appropriate action for it. If 10,000 letters come in, it takes 10 seconds to do this provided no other letters come through in the mean-time. Also let’s assume that the maximum capacity of the room to hold letters is 1,000,000.
If we only ever receive 1,000 letters every second then it’s no problem since the secretary can handle it all and everything is nice and smooth. If we receive 10,000 letters in 2 seconds then the room will still take 10 seconds to empty since we can only handle 1,000 every second. However… if I start receiving 10,000 letters every 2 seconds continuously then the pace at which they arrive will quickly overcome what the secretary can handle and it takes about 111 seconds… a little under two minutes, but at this point the room is full.
This means that no new messages can make it in to the secretary for another full second during which she can only handle 1,000. But since 5,000 have just arrived and only 1,000 get in meaning the other 4,000 get dropped. (This is packet-loss in a nutshell.)
The only… and I mean -only- way do deal with this is to hire more secretaries, or in more realistic terms is to set up new servers to handle the load. This takes both time and money, and typically lots of both. You can’t say things like, ‘Well, we’ll just stop accepting all those letters.’ The paradox there is that someone still needs to sort them to determine if they’re ones we don’t want.
This is the exact problem DDoS causes. Millions of machines sending millions of requests per second to a system, and that system gets overloaded and can no longer deal with the requests and therefore can no longer respond. This is why Microsoft was able to deal with it and Sony was not. Microsoft didn’t need to invest in hardware to put up new servers (to make ‘new secretaries’), they just created thousands of virtual ones to do the work and had the capacity to add even more if they needed to with virtually no expense in time nor money.
So no, we don’t just sit back and give up. We do what we can to anticipate and mitigate, we shore up the best possible system we can manage and wait for the letters to start coming in. Hopefully your redundancy pans out, sometimes it doesn’t, sometimes we have better sorting methods and can handle more traffic… but you can’t stop the letters, all you can do is put as much effort into getting them dealt with and gone before the next round comes in. -
05-28-2015, 12:00 AMSartoriI wouldn't worry about it, the servers are going to crash anyway....Quote:
Originally Posted by Azmura
-
05-28-2015, 12:45 AMGyson
I'd be more concerned about how they intend to handle all these players attempting to move to (and AFK'ing in) a few zones. Has everyone forgotten all the Golden Saucer lockout complaints when it first launched?