McDuff
12-07-2007, 03:14 PM
Email DoS attack
I am doing web- email stuff for our US non-profit and also for our sister organization in Europe. That site –www.rozmberk.org- is hosted locally. I am considering already longer getting all the websites to FQ but the hosting was paid for within a joint project.
Now a serious problem occurred, and I would like to know if people here have had something similar and – specifically asking the FQ staff – how FQ would have dealt with that if it had happened here.
Normally, only two of the five user@rozmberk.org addresses get some spam, average about 10-40 a day; annoying but not a big deal. However, last week suddenly the provider was swamped with emails to the main addresses. At the peak they got something like over :shock:ten thousand emails per minute:ytrubeye::shocked:.
This is a local computer-internet company; they do hosting just as a side-service for clients (less than 400 sites total). They have a few servers with a larger, specialized hosting company. These servers could not cope and in the end in desperation they just blocked all email addressed to that account.
This provider mentioned that the only solution they saw was to physically move the account to the main provider that had the infrastructure to deal with this; installing the extra soft- and hardware to deal with it would be too expensive for them.
Some questions – remarks:
- Since it is the only …org domain on those servers, maybe this was a part of a more coordinated attack on ..org domains and the attackers did not even know where the servers were?.
- Anybody ever experienced something like that?
- Are these email addresses burned for good or is this a one-off occurrence?
- Complaining to any police makes any sense?
- If these accounts would have been hosted with FQ, would it have resulted in the same block or do we at FQ are better protected?
That question is rather important; I would not want to move that website to FQ to find out that I am causing problems or will end up with the same problems.
Thanks, have a nice weekend
Mcduff
I am doing web- email stuff for our US non-profit and also for our sister organization in Europe. That site –www.rozmberk.org- is hosted locally. I am considering already longer getting all the websites to FQ but the hosting was paid for within a joint project.
Now a serious problem occurred, and I would like to know if people here have had something similar and – specifically asking the FQ staff – how FQ would have dealt with that if it had happened here.
Normally, only two of the five user@rozmberk.org addresses get some spam, average about 10-40 a day; annoying but not a big deal. However, last week suddenly the provider was swamped with emails to the main addresses. At the peak they got something like over :shock:ten thousand emails per minute:ytrubeye::shocked:.
This is a local computer-internet company; they do hosting just as a side-service for clients (less than 400 sites total). They have a few servers with a larger, specialized hosting company. These servers could not cope and in the end in desperation they just blocked all email addressed to that account.
This provider mentioned that the only solution they saw was to physically move the account to the main provider that had the infrastructure to deal with this; installing the extra soft- and hardware to deal with it would be too expensive for them.
Some questions – remarks:
- Since it is the only …org domain on those servers, maybe this was a part of a more coordinated attack on ..org domains and the attackers did not even know where the servers were?.
- Anybody ever experienced something like that?
- Are these email addresses burned for good or is this a one-off occurrence?
- Complaining to any police makes any sense?
- If these accounts would have been hosted with FQ, would it have resulted in the same block or do we at FQ are better protected?
That question is rather important; I would not want to move that website to FQ to find out that I am causing problems or will end up with the same problems.
Thanks, have a nice weekend
Mcduff