Distributed Denial of Service on security.debian.org by DSA 816
This morning, at about 11 o'clock (CEST, i.e. UCT +0200) a distributed
denial of service attack on the host that serves security.debian.org
has been initiated. Since then the host has an output rate of about
60 MBit/s constantly. There are more than 500 Apache processes and
more than 130 FTP daemon proceses running in parallel, sending out
data. (Although, the machine is quite responsive when being logged in
This was.. err.. not intentional, but we had to update XFree86 in
woody and sarge (DSA 816)... so apparently the DDoS by our users was
sort of unavoidable. It seems that Debian has a lot more users than
during the last XFree86 update.
There are discussions about how to avoid similar situations in the future.
The MS-DOS filesystem is nice for removable media. -- H. Peter Anvin
Please always Cc to me when replying to me on the lists.