Professional Documents
Culture Documents
Fail Patterns
Building Defenses
Summary
• 73,000+ Servers
• 1,600+ Locations
• 70 Countries
Customer
Webserver
End User
Geographic Dispersion
Traffic Management
Device Offload
Blocking
Site Failover
Fail Patterns
Building Defenses
Active Response
Summary
Or were they?
Greetings, Anonymous
Our beloved Pirate Bay has been recently taken down by certain Media Interests groups. It's back
up, but-
It has happened far too many times.
It is time to show a clear message to those that wish to harm our Internet Refuge.
It is time to strike back.
We must show these jerks what we think of their games.
We can not let them win.
We must retaliate.
Our first objective was to take down Aiplex, the ones that DDoSed The Pirate Bay.
Everything had went even better than expected.
We selected a new target, MPAA, in just eight minutes after launching the attack, their website
suffered a tremendous blow at the hands of Anonymous.
Instead of selecting another target we will be launching a second attack against the MPAA on
September 19th, 3:00PM.
This is to show these corporate jerks that we won't stand for them messing with our websites.
If you do not use TPB, remember that Private Trackers are the next target.
So, if you are still with me, Lets give them a night to remember.
49
50
45
40
40
35
Attack Size - Gbps
30
24
25
20 17
15
10
10
2.5
5
0.4 1.2
0
2001 2002 2003 2004 2005 2006 2007 2008
(Arbor Networks)
50 49
45 40
40
Attack Size
35 24
30 17
25 10
2.5
20 1.2
0.4
2001 2002 2003 2004 2005 2006 2007 2008
(Arbor Networks)
Fail Patterns
Building Defenses
Summary
while true;
do wget 'http://riaa.com/
goldandplatinumdata.php?
table=SEARCH_RESULTS&title=&artist=&label=&f
ormat=&category=&type=&awardDescription=&st
artMonth=1&startYear=0&endMonth=12&endYear
=2009&sort=Date&sense=ASC&perPage=500000
0000&go=Search' > /dev/null &
done
Fail Patterns
Building Defenses
Summary
Times Above
Top Targets Peak Traffic
Normal Traffic
US Government 1 124 Gbps 598x
US Government 2 32 Gbps 369x
Financial 1 26 Gbps 110x
US Government 3 9 Gbps 39x
US Government 4 9 Gbps 19x
US Government 5 2 Gbps 9x
US Government 6 1.90 Gbps 6x
US Government 7 0.73 Gbps *
14:00
16:00
125
Attack Size - Gbps
100
75
50
20:00
25
Probes
Time
Securing a Better Internet © 2010 Akamai
100
23:50 795K
75 Peak page views
50
25
Korea
IP Space
125
Attack Size - Gbps
100
75
0:30
50
25
9:30
100
75
9:30
50
25
Fail Patterns
Building Defenses
Summary
• Monitoring
• Tuning
• Caching
• Filtering
• Traffic Management
Customer
Webserver
End User
HTTP TTL
HTML Pragmas
CDN Configuration
• UserAgent
• NULL
• JS-Kit
• Wget
• Java
• Apache Benchmark Tool
• Accept-Language
• Cookie set by site
• Cookie set by client-side JavaScript
• Referrer
• All of these together
Fail Patterns
Building Defenses
Summary
Fail Patterns
Building Defenses
Summary