How does SE plan to handle any DDOS (if one does happen) on early acces?

[zandervont]

at least they seem to prepare a bit for it with all the equipment maintenances lately. just hoping the players wont cause accidental ddos with the rush

[Gilraen]

The free time from enduring the launch of 2.0 wasn't for compensation of a DDoS attack... unless you consider the massive influx of new players to be a DDoS attack. Yes, that's why that first week was heck of DC's and 3102s, Square hadn't anticipated quite as many people trying to play the game. But then, why would they have, 1.0 was an abysmal failure. 3.0 is hopefully not going to have that problem. Now, if there IS going to be a real DDoS attack, Square won't owe you a thing. If, on the other hand, we have another 2.0 launch fiasco then yes, they will be owing you and it will just be in the form of free play time like last time.

[Doki]

Pretty sure all the users trying to login at once for the new content is enough of a DDOS as it is.

[StrejdaTom]

I expect lots of connectivity problems first week and maybe addition of 1 free week subscription for it would be nice.

[Gilraen]

I'm anticipating a few problems, but nothing worth free time over.

[Malzian]

[Souljacker]

Actually, one does. There's an entire field of study dedicated to "handling" network security.

Having said that, SE won't do a thing.

[Malzian]

Actually, one does. There's an entire field of study dedicated to "handling" network security.

Having said that, SE won't do a thing.

Yeah, I'm in IT and that field you are talking about (Computer Information System and Information Assurance) was my major in College. Are there ways of mitigating the attack? Yes, to a point. However, sophisticated DDoS attacks are inherently difficult to deal with since there is no single point of origin you can just cut off and be done with. The only company that has successfully thwarted a strong DDoS attack is Microsoft, which is only due to them being able to spin up thousands of virtual servers on their Azure cloud network. It's why Live was up in a day and PSN was down for weeks. So, yeah... You don't just handle DDoS attacks, you weather them and do your best to stabilize where you can.

[Nezm]

Yeah, I'm in IT and that field you are talking about (Computer Information System and Information Assurance) was my major in College. Are there ways of mitigating the attack? Yes, to a point. However, sophisticated DDoS attacks are inherently difficult to deal with since there is no single point of origin you can just cut off and be done with. The only company that has successfully thwarted a strong DDoS attack is Microsoft, which is only due to them being able to spin up thousands of virtual servers on their Azure cloud network. It's why Live was up in a day and PSN was down for weeks. So, yeah... You don't just handle DDoS attacks, you weather them and do your best to stabilize where you can.

It would be nice if more people understood this.

It has very little to do with security at all. Best defense is to throw money for redundancy. This costs is covered by the consumers, and is impractical for most services.


Even redundancy to cover unexpected volumes at launches are impractical. You can't just rent stable network equip and maintenance for a few days at a enterprise scale, your talking about spending millions for a singular day. At some point the cost incurred just isn't worth it for anyone.

[Souljacker]

Yeah, I'm in IT and that field you are talking about (Computer Information System and Information Assurance) was my major in College. Are there ways of mitigating the attack? Yes, to a point. However, sophisticated DDoS attacks are inherently difficult to deal with since there is no single point of origin you can just cut off and be done with. The only company that has successfully thwarted a strong DDoS attack is Microsoft, which is only due to them being able to spin up thousands of virtual servers on their Azure cloud network. It's why Live was up in a day and PSN was down for weeks. So, yeah... You don't just handle DDoS attacks, you weather them and do your best to stabilize where you can.

These things actually happen to call attention to lax security, not because there is no defense against them and we should all just give up. The guys who did those attacks (Lizard I believe?) called both targets idiots and they were mostly right.