Support NeoGAF

[Siphorus]

I encourage anyone who knows one of these pieces of shit to go to their house and beat them to death with their own god damn keyboard.

If I found one of these dog raping shit eating butthole tossing fucks in my day to day travels I would tortrue them for 3 days straight, film the whole thing, then release out into the wild so the other little needle dicks wisen up and get a life.

How do you toss a butthole?

PS4 down for me

 

[Idba]

No, they are more live accounts than psn.

Nope

 

[Kayant]

Isn't the whole argument here that Live was much quicker at fixing this?

Yes but this argument was different. It was when reports started to come in. I don't think anyone is arguing Live was fixed quicker and was less affected.

So theoretically if there are double the PS4's trying to reconnect at once as X1's, would it take about twice as long bounce back after the attacks?

Have no idea but Miktar has the best breakdown on possible things going on atm.

Personally: I think Sony is still doing maintenance on a variety of services and infrastructure that were affected by the DDoS. I don't think there is a DDoS going on currently. That Sony is taking this long to bring PSN back up to full speed could mean a variety of things: the damage was worse than we thought, or the infrastructure was worse than we thought, or they're paranoid since the Sony Hack and are checking for intrusion attempts that might of happened during the DDoS. We really don't know, and I doubt Sony will admit to anything other than "technical issues". It's rare for a corporation to admit weakness, since it goes against their personal branding.

It doesn't help that it's Christmas, which add its own host of problems.

 

[ThirdMartini]

Sony/PSN is using prolexic for DDOS mitigation.

At this moment all auth requests are being blackholed behind prolexics servers. There could be several reasons for this.
* The auth server going offline on Sony's side.
* The auth server being overloaded
* Prolexic actively filtering traffic because of an ongoing attack.
* Some problem at prolexic (perhaps they can't handle the load either)

PSN also uses Amazon EC2 for their applications/multiplayer servers. And Akamai for game downloads, updates, firmware, etc. EC2 and Akamai also seems to be stable and explains why folks can get downloads and even play Online ( if they managed to login ) since those services are running in EC2 or over Akamais CDN.

When snooping traffic it's clear that the auth server is responding sporadically... and sometimes not at all. Which implies that it is at least alive but struggling.

It should also be noted that when a DDOS mitigation is done by first attempting to filter out offending traffic based on content... when that fails (IE: the attack is sophisticated enough) IP ranges begin to be blackholed altogether. This causes some regions to appear completely offline while others are fine. Those filters are then refined to allow legitimate users in. (Assuming the mitigation service is not overloaded). This is never perfect and extremely time consuming. ( BTW Mitigation services are EXPENSIVE ) To say Sony is not spending enough on infrastructure is a bit presumptuous.

The real problem is zombied edge devices. My little itybitty server in the corner of the internet gets 10s of thousands of hits from zombied IPs a day looking for vulnerabilities in my server. 1/2 the time I look it's from a Cheap wireless router that's been rooted and has an open telnet/ssh port or botnet client on it. ( It's so tempting rm -rf / and then burn the flash out on those things to kill them!! ) So it's not just infected enduser PCs anymore... it's all the cheap, insecure other crap people buy and plug into their internet connection. For all I know many of the folks here are running zombies without even knowing it and contributing to the problem. Perhaps while waiting for Sony to get PSN up and running folks should go see if their own gear has been compromised. :O

 

[Pestilence11]

When I went to bed about 8 hours ago it seemed like most people were getting online on their PS4s, myself included. Surprised to see the last page on this thread.

 

[H1PSTER]

So long as TLoU is one of the 3 free games they're going to offer, all is forgiven.

... They're going to offer games?

 

[Progmetal]

Played BF4 online on PSN, just a couple og hours ago.

 

[shysaursoft]

Sony/PSN is using prolexic for DDOS mitigation.

At this moment all auth requests are being blackholed behind prolexics servers. There could be several reasons for this.
* The auth server going offline on Sony's side.
* The auth server being overloaded
* Prolexic actively filtering traffic because of an ongoing attack.
* Some problem at prolexic (perhaps they can't handle the load either)

PSN also uses Amazon EC2 for their applications/multiplayer servers. And Akamai for game downloads, updates, firmware, etc. EC2 and Akamai also seems to be stable and explains why folks can get downloads and even play Online ( if they managed to login ) since those services are running in EC2 or over Akamais CDN.

When snooping traffic it's clear that the auth server is responding sporadically... and sometimes not at all. Which implies that it is at least alive but struggling.

It should also be noted that when a DDOS mitigation is done by first attempting to filter out offending traffic based on content... when that fails (IE: the attack is sophisticated enough) IP ranges begin to be blackholed altogether. This causes some regions to appear completely offline while others are fine. Those filters are then refined to allow legitimate users in. (Assuming the mitigation service is not overloaded). This is never perfect and extremely time consuming. ( BTW Mitigation services are EXPENSIVE ) To say Sony is not spending enough on infrastructure is a bit presumptuous.

The real problem is zombied edge devices. My little itybitty server in the corner of the internet gets 10s of thousands of hits from zombied IPs a day looking for vulnerabilities in my server. 1/2 the time I look it's from a Cheap wireless router that's been rooted and has an open telnet/ssh port or botnet client on it. ( It's so tempting rm -rf / and then burn the flash out on those things to kill them!! ) So it's not just infected enduser PCs anymore... it's all the cheap, insecure other crap people buy and plug into their internet connection. For all I know many of the folks here are running zombies without even knowing it and contributing to the problem. Perhaps while waiting for Sony to get PSN up and running folks should go see if their own gear has been compromised. :O

Oh thank the gods, someone who knows shit. You just made my day.

... They're going to offer games?

There are unsourced news articles floating around claiming as much, but with zero sources or confirmations. Don't believe anything until an official Sony PR statement is made.

 

[WinterX]

It's just poetic. If someone's bought a digital version of a game you can only play for a few hours. Later you won't be able to let the PSN check it.

 

[Kerned]

... They're going to offer games?

No.

 

[kitch9]

So theoretically if there are double the PS4's trying to reconnect at once as X1's, would it take about twice as long bounce back after the attacks?

No, they should be quicker than one of the world's biggest server companies who have a much smaller userbase.

Or something.

 

[mreddie]

Everyone think Sony is making way too sure they didn't get hacked again, in light of the Sony Pictures hack?

 

[komorebi]

It's just poetic. If someone's bought a digital version of a game you can only play for a few hours. Later you won't be able to let the PSN check it.

What? I've been playing digital FC4 nonstop the past two days.

 

[GANGSTERKILLER]

... They're going to offer games?

Maybe a indie game...or two. Not expecting more from them.

 

[PodcastFips]

... They're going to offer games?

Most probably not.

 

[PaRappa]

Yikes. London, PSN, down again. OMG, it was ok this morning after the Sony tweet

Im not mad at Sony but it is maddening.

Just imagine if Xbox Ones always online scheme went ahead and they were constantly bombarded like this?

 

[SwordStruck]

The St. Louis area is still getting hammered on ipviking. Is there another DDOS going on at the moment? Pretty sure I remember that being where the main PSN servers are.

 

[Marvel]

You'll get a 48hour PS+ code and like it.

 

[ComputerMKII]

Nah the vouchers get revoked if they attack

But didn't Lizard Squard make thousands of dollars selling the accounts?

 

[Jamiaro]

In an interview from Finland, over Skype, with Sky's Joe Tidy, Ryan said the hacking team was small and included members who were under the age of 20.

From this link, posted couple of pages back, with the blond guy-pic. If true, this guy is already caught.
http://http://news.sky.com/story/1398435/xbox-hacker-reveals-why-he-attacked-consoles

 

[shysaursoft]

The St. Louis area is still getting hammered on ipviking. Is there another DDOS going on at the moment? Pretty sure I remember that being where the main PSN servers are.

There are over 15 large datacenters in St. Louis, so we have no way of knowing what the DDoS is targeting there, or in that general region (remember, the darknet you're looking at doesn't show the actual targets, just the location where a sensor got hit). Plus, DDoSing is pretty much constant these days, it's backround radiation on the internet - it gets stronger sometimes as a botnet swings in a specific direction (like when LS called out its attacks against Blizzard, Steam, NCSoft, XBL and PSN), but it's never clear what the goals of the general DDoSsing every day is.

From this link, posted couple of pages back, with the blond guy-pic. If true, this guy is already caught.
http://http://news.sky.com/story/1398435/xbox-hacker-reveals-why-he-attacked-consoles

It is VERY unlikely the people acting as public relations for LizardSquad in these interviews and such, are actually the people responsible. They're just fans, or rubes.

 

[jeffc919]

He already is a known idiot for worse shit than that.

I thought the guy was actually in prison. I was definitely surprised when I saw his name pop up the other day.

 

[WinterX]

What? I've been playing digital FC4 nonstop the past two days.

Well my and my friend's GTAV doesn't seem to work. We are both from Europe.

 

[Live Free or Die]

YES

Xbox Live recovered quicker from the DDoS and seems to have restored most functionality, though some issues remain.

NO

PSN is NOT working properly yet. Some people do report some success, but it depends on the system (PS3, Vita), timing (Sony is randomly bringing services down for "maintenance"), or location (PSN is spread out across multiple datacenters for different regions, so one might be up while another is down).

YES

Microsoft has better infrastructure and DDoS mitigation, as has been proven a few times this year during similiar attacks.

YES

Sony's third-party DDoS mitigator wasn't up to the task, and Sony's PSN infrastructure is still Swiss cheese, even though by now Sony should really have improved, especially in light of the original PSN Outage and Hack.

NO

I don't care if this makes MS better than Sony, keep console warrior crap to yourself.

YES

It's Christmas, which means a flood of new consoles and accounts adds its own mini-DDoS effect, compounding issues.

NO

There is no KNOWN data breach or intrusion attempt, so we don't know if user details were compromised during the DDoS. DDoS is not "hacking", but it can be used to hide legitimate hacking attempts. But there is no evidence currently to suggest that it happened.



NO

There has been no OFFICIAL statement made from Sony regarding any free games or PS+ time to make up for the downtime.

Sony/PSN is using prolexic for DDOS mitigation.

At this moment all auth requests are being blackholed behind prolexics servers. There could be several reasons for this.
* The auth server going offline on Sony's side.
* The auth server being overloaded
* Prolexic actively filtering traffic because of an ongoing attack.
* Some problem at prolexic (perhaps they can't handle the load either)

PSN also uses Amazon EC2 for their applications/multiplayer servers. And Akamai for game downloads, updates, firmware, etc. EC2 and Akamai also seems to be stable and explains why folks can get downloads and even play Online ( if they managed to login ) since those services are running in EC2 or over Akamais CDN.

When snooping traffic it's clear that the auth server is responding sporadically... and sometimes not at all. Which implies that it is at least alive but struggling.

It should also be noted that when a DDOS mitigation is done by first attempting to filter out offending traffic based on content... when that fails (IE: the attack is sophisticated enough) IP ranges begin to be blackholed altogether. This causes some regions to appear completely offline while others are fine. Those filters are then refined to allow legitimate users in. (Assuming the mitigation service is not overloaded). This is never perfect and extremely time consuming. ( BTW Mitigation services are EXPENSIVE ) To say Sony is not spending enough on infrastructure is a bit presumptuous.

The real problem is zombied edge devices. My little itybitty server in the corner of the internet gets 10s of thousands of hits from zombied IPs a day looking for vulnerabilities in my server. 1/2 the time I look it's from a Cheap wireless router that's been rooted and has an open telnet/ssh port or botnet client on it. ( It's so tempting rm -rf / and then burn the flash out on those things to kill them!! ) So it's not just infected enduser PCs anymore... it's all the cheap, insecure other crap people buy and plug into their internet connection. For all I know many of the folks here are running zombies without even knowing it and contributing to the problem. Perhaps while waiting for Sony to get PSN up and running folks should go see if their own gear has been compromised. :O

THANK YOU both for the informative posts.

 

[EscoBlades]

Sony/PSN is using prolexic for DDOS mitigation.

At this moment all auth requests are being blackholed behind prolexics servers. There could be several reasons for this.
* The auth server going offline on Sony's side.
* The auth server being overloaded
* Prolexic actively filtering traffic because of an ongoing attack.
* Some problem at prolexic (perhaps they can't handle the load either)

PSN also uses Amazon EC2 for their applications/multiplayer servers. And Akamai for game downloads, updates, firmware, etc. EC2 and Akamai also seems to be stable and explains why folks can get downloads and even play Online ( if they managed to login ) since those services are running in EC2 or over Akamais CDN.

When snooping traffic it's clear that the auth server is responding sporadically... and sometimes not at all. Which implies that it is at least alive but struggling.

It should also be noted that when a DDOS mitigation is done by first attempting to filter out offending traffic based on content... when that fails (IE: the attack is sophisticated enough) IP ranges begin to be blackholed altogether. This causes some regions to appear completely offline while others are fine. Those filters are then refined to allow legitimate users in. (Assuming the mitigation service is not overloaded). This is never perfect and extremely time consuming. ( BTW Mitigation services are EXPENSIVE ) To say Sony is not spending enough on infrastructure is a bit presumptuous.

The real problem is zombied edge devices. My little itybitty server in the corner of the internet gets 10s of thousands of hits from zombied IPs a day looking for vulnerabilities in my server. 1/2 the time I look it's from a Cheap wireless router that's been rooted and has an open telnet/ssh port or botnet client on it. ( It's so tempting rm -rf / and then burn the flash out on those things to kill them!! ) So it's not just infected enduser PCs anymore... it's all the cheap, insecure other crap people buy and plug into their internet connection. For all I know many of the folks here are running zombies without even knowing it and contributing to the problem. Perhaps while waiting for Sony to get PSN up and running folks should go see if their own gear has been compromised. :O

Good post

 

[Human 2.0]

This might make me unpopular but I'd rather PSN stays offline if it means that when it comes back it's in better shape in future to withstand this sort of shit. I don't blame Sony for being cautious, I blame lizardsquad for being a bunch of twats.

 

[GeoramA]

Can't log in the store yet. Unreal. Christmas Eve was the last time I was able to and it seems so goddamn long ago :lol

Back to Dragon Age.

 

[Acorn]

I thought the guy was actually in prison. I was definitely surprised when I saw his name pop up the other day.

Currently under house arrest in NZ whilst he fights extradition to US IIRC

 

[Jamiaro]

It is VERY unlikely the people acting as public relations for LizardSquad in these interviews and such, are actually the people responsible. They're just fans, or rubes.

So true. Just an interesting thing to take note of. Nothing more.

 

[kitch9]

I'm hearing reports that setting mtu to 1473 in PS settings works every time.

I can't test because I'm away at the moment.

 

[MogCakes]

So Lizard Squad was basically after jobs/money in the end if what I'm reading is right about MEGA and LS selling off accounts, and they're willing to fuck everyone over to get what they want. It's infuriating they haven't been caught yet.

 

[Ingueferroque]

This might make me unpopular but I'd rather PSN stays offline if it means that when it comes back it's in better shape in future to withstand this sort of shit. I don't blame Sony for being cautious, I blame lizardsquad for being a bunch of twats.

There is no chance of this happening. No chance.

 

[The Lamonster]

I'm hearing reports that setting mtu to 1473 in PS settings works every time.

I can't test because I'm away at the moment.

Did not work for me.

 

[Acorn]

So Lizard Squad was basically after jobs/money in the end, and they're willing to fuck everyone over to get what they want. It's infuriating they haven't been caught yet.

No company will hire them for a ddos. They are interested in hackers that find security holes.

 

[Quadraphonic]

Glad to see some intelligence finally coming in here.

Trying to stop a DDoS attack from a shitload of machines all around the country is a mess. You can't simply block an IP since there's so many locations.

 

[Portugeezer]

For a paid service, it should be set up that way. I know it's not, but I am pointing out the fact that a paid service should be able to handle the entirety of users. If it cannot, then it should be a free service.

What is a paid service? Out of 120 million PSN accounts only 8 million subscribe for PS+, and it's only required for PS4 multiplayer.

Though it does get me wondering... how would people feel if they got it up and running and only allowed for PS+ accounts to connect to PSN whilst everyone else had to wait for the bigger picture to be resolved?

 

[LifEndz]

I'm hearing reports that setting mtu to 1473 in PS settings works every time.

I can't test because I'm away at the moment.

I think that was a thing earlier but it looks like it's down now because Sony shut it down for maintenance.

 

[Marvel]

The blonde guy's voice in that sky interview sounds very much like one of the voices we heard during the BBC radio interview.

 

[SDCowboy]

There are unsourced news articles floating around claiming as much, but with zero sources or confirmations. Don't believe anything until an official Sony PR statement is made.

Would certainly be a good gesture if they offered, say, one game.

 

[jeffc919]

I'm hearing reports that setting mtu to 1473 in PS settings works every time.

I can't test because I'm away at the moment.

Supposedly that was working with high success earlier but it may not any more.

 

[Kerned]

I managed to purchase Ground Zeroes last night on the webstore, but can't play it today because it can't connect to a server to verify my license. This is the sort of shit that drives me nuts.

Yes I've tried going offline, yes I have my PS4 set as my primary console.

 

[DietRob]

What is a paid service? Out of 120 million PSN accounts only 8 million subscribe for PS+, and it's only required for PS4 multiplayer.

Though it does get me wondering... how would people feel if they got it up and running and only allowed for PS+ accounts to connect to PSN whilst everyone else had to wait for the bigger picture to be resolved?

I think it would be fucking great if as a PS+ member we had a key to the backdoor so to speak. Instead of waiting in line with everyone on the porch ringing the doorbell.

 

[antibolo]

Sony/PSN is using prolexic for DDOS mitigation.

At this moment all auth requests are being blackholed behind prolexics servers. There could be several reasons for this.
* The auth server going offline on Sony's side.
* The auth server being overloaded
* Prolexic actively filtering traffic because of an ongoing attack.
* Some problem at prolexic (perhaps they can't handle the load either)

PSN also uses Amazon EC2 for their applications/multiplayer servers. And Akamai for game downloads, updates, firmware, etc. EC2 and Akamai also seems to be stable and explains why folks can get downloads and even play Online ( if they managed to login ) since those services are running in EC2 or over Akamais CDN.

When snooping traffic it's clear that the auth server is responding sporadically... and sometimes not at all. Which implies that it is at least alive but struggling.

It should also be noted that when a DDOS mitigation is done by first attempting to filter out offending traffic based on content... when that fails (IE: the attack is sophisticated enough) IP ranges begin to be blackholed altogether. This causes some regions to appear completely offline while others are fine. Those filters are then refined to allow legitimate users in. (Assuming the mitigation service is not overloaded). This is never perfect and extremely time consuming. ( BTW Mitigation services are EXPENSIVE ) To say Sony is not spending enough on infrastructure is a bit presumptuous.

The real problem is zombied edge devices. My little itybitty server in the corner of the internet gets 10s of thousands of hits from zombied IPs a day looking for vulnerabilities in my server. 1/2 the time I look it's from a Cheap wireless router that's been rooted and has an open telnet/ssh port or botnet client on it. ( It's so tempting rm -rf / and then burn the flash out on those things to kill them!! ) So it's not just infected enduser PCs anymore... it's all the cheap, insecure other crap people buy and plug into their internet connection. For all I know many of the folks here are running zombies without even knowing it and contributing to the problem. Perhaps while waiting for Sony to get PSN up and running folks should go see if their own gear has been compromised. :O

Great post. This should be added to the OP.

 

[BoboBrazil]

PSN is up for some. Watching Live from Playstation right now.

 

[Kerned]

Would certainly be a good gesture if they offered, say, one game.

Maybe they can give everyone the PS+ version of Driveclub.

 

[SDCowboy]

Maybe they can give everyone the PS+ version of Driveclub.

lol I was literally thinking that.

 

[shysaursoft]

Great post. This should be added to the OP.

In hindsight, I think a seperate thread for the Great Christmas Outage would probably have served everyone better, operated by someone who would actually update the OP with relevant information and status updates. Instead, we had this thread, almost 200 pages of the same looping questions. Derp.

 

[Tagg9]

Glad to see some intelligence finally coming in here.

Trying to stop a DDoS attack from a shitload of machines all around the country is a mess. You can't simply block an IP since there's so many locations.

That doesn't change the fact that Sony's DDOS mitigation technology is absolutely terrible. They don't seem to have any kind of load balancing or automatic scaling (ie. server spin up or spin down based on traffic levels) as far as I can tell.

 

[CosmicQueso]

Maybe they can give everyone the PS+ version of Driveclub.

Zing. Made coffee go up my nose. So painful/not cool/awesome.

 

[hetchi]

Yesterday I was logged into PSN/Destiny for about 7 hours. What kicked me off last night was the maintenance. Today I got to play 3 hours before I got a beetle error code.