Quote Originally Posted by AlienDiplomat View Post
What about putting sign-on verification in a cloud provider to distribute points of attack and banning any accounts found to be involved in abusive authentication behaviors?
You think nobody's tried anything like that ever before? Part of the problem is that simply determining the vector of the attack and who's preforming it is difficult at best, from what I can find. Companies have been trying (and failing) to find a way to entirely stop DOS and DDOS attacks since the publicly accessed internet first came about. Hell, 4Chan apparently has communities which created specific tools such as their infamous "orbital laser" that allow any of their users to preform DDOS attacks any time they want with just the press of a button. There is no magic bullet that'll fix the problem.