New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
hey @DeluxHost, order #1322790576 for the freebie whenever you can, thanks!
Fired up the VPS again, logged in through SSH, after some time I wanted to start a second session and now I see external SSH port not responding (also through monitoring - internally it responds) - while the first session is still active. Guess it's somehow blocked by some network DDoS mitigation. Not nice, but let's see what happens next...
again all vps down
The VPS is back online after a restart.
Not mine 🙃
Mine responded on SSH again after the original session was forcefully closed (not by me); didn't reboot.
and again vps is down???? it's been a week full of trouble, multiple days of downtime?
Yep, here too. Turned the VPS on, and within 3 hours got 2 incidents already. Will turn it off again, it's a shitshow.
Yeah, it's better to use my own laptop to host or to do things. My laptop runs 24h with no issues for months and definitely better than DeluxHost somehow
Small update: this morning's issue was resolved after a few minutes, except that the rules applied were blocking some legitimate traffic because they were too aggressive, which is why some people were still complaining about problems. While the attackers are now changing their methods again, the attack has practically never stopped, even in the past few days when the situation was fine.
They're probably challenging us. they attack, we resolve, and then they change their methods again. It's quite sad, but that's how it is. They're probably reading this now, too, since every time we post here, the attack gets stronger for some reason.
We have other cards to play, it's not a problem, we still thank everyone continuously for your patience and support.
Ticket #AVY-272918
Dear attacker: My VPS is currently reachable and did not crash three times in the last hours. Wish you a day as pleasant as you are!
A day without an outage is a day wasted ?
Meanwhile, while all services are down, support has reached a new level of eloquence just to mindlessly close tickets without a reply.
@DeluxHost
Along with a handful of others, we're starting to find this very strange. None of us (a few people) have ever experienced a similar situation lasting this long in our 20+ years of experience. What makes it unusual is that DeluxHost is actually a very small provider, making it an unlikely target for a prolonged attack.
It makes you wonder:
Is the attack targeted at one or a few specific VMs involved in something undesirable, or is it a global attack?
If it is global, is it specifically aimed at DeluxHost, the owner, or triggered by one or more employees?
A DDoS attack of this scale and duration doesn't just happen out of nowhere; there is bound to be a reason behind it. I can imagine attacks with this duration and scale, would happen at OVHcloud, Strato, Hetzner, Cloudflare etc. etc. but towards DeluxHost?
This is not new and I've complained already a couple of times about it. Where other hosters only close a ticket when a customer doesn't reply within (say) 72 hours, they also do it when they don't reply within 72 hours.
@DeluxHost port 80 fixed now on my W-Series and working fine now on my W-Series. But unfortunately the problem of Public IP changing to private IP and Very slow Booting, very Slow internet speed and constant disconnection keep occuring on all the VPS series I have with deluxhost till now. Please when are we going to have peace of mind using our deluxhost VPS services again at this rate. It seriously frustrating
The issue these days: you don't know. Kiddies who think they are funny nowadays can unleash quite powerfull attacks. And since we don't know who's behind it, it's as much as a guess of what the reason is for why @DeluxHost (and we as customers) are the victim or why it goes on for such a long time.
Can be someone who just find it funny that he has the attention, can be someone who has a $12 VPS that he's not happy about, or can be a completely different reason - even if someone has a website on a $12 VPS and some criminal organisation is not happy about that.
The W series has no issues with connections so that's totally unrelated to the issue, I'll check soon what I can do for you
Should be fixed, very strange
I understand where you are coming from, but still.
Why does that make it unusual, especially when @DeluxHost offers products way below the price of others? It could be a potential reason for them to target @DeluxHost not to become a bigger hoster, thus not losing customers to them.
There are obviously other problems like CPU steal, but to be honest, if there weren't that many network hicups, I would have at least double the VPSs at DeluxHost that I currently have.
The reason isn't clear to us, probably someone having fun? It's not the first time a hosting provider, large or small, has been attacked, and as @Calypso rightly points out, having something powerful in your hands for just a few euros isn't difficult these days.
Sooner or later, he'll run out of methods. most of them are already patched. If new ones arrive, we'll fix those too. It certainly won't end the way he wants.
but we have all the proof that we are not making anything up and that it is all true.
I got two of those in a row.
Paid yesterday, today had enough of this BS and got refund through PayPal.
Even assuming that a serious attack is targeting them for real, this level of "support" is unacceptable. Period. You are clearly messing with customers.
atrocious uptime and always have to manually restart when it's "back on"
They can't even do an automatic reboot — it's always 'no bootable device' until you manually go into the control panel and press restart! I'm sure they'll also blame this on unprecedented attacks against a service that nobody needs anyway )
And look at the restart procedure. Does someone manually receive restart requests and run around between the data center racks, rebooting things by hand?
This isn't funny anymore. For almost a week now, all I've been doing is logging into the control panel and rebooting the server. If you're unable to keep the server running properly and haven't been able to resolve the issue for almost a week, just issue a refund and let's say goodbye.
DeluxHost clearly prefers to avoid the topic of compensation for service interruptions. Not to mention the blocked Discord
We're not obligated to constantly restart servers, and we certainly shouldn't worry about DDoS attacks. You should have implemented appropriate mechanisms from the start, instead of playing the victim now. Are you a professional ?
The "few euros" narrative ignores the economics of cybercrime. Cheap stressers only generate low-volume noise. If an actor actually commands a botnet capable of saturating a datacenter, they aren't doing it for fun; they monetize it via extortion or DDoS-for-hire.
Claiming you will just "patch" the attack exposes a misunderstanding of networking. You can patch L7 exploits. You cannot "patch" a volumetric L3/L4 saturation attack. When the physical uplink is full, no server update helps. True mitigation requires upstream scrubbing, which costs far more than a budget hosting plan.
Finally, "having proof" means providing upstream netflow graphs or transit logs. Words are cheap. Blaming a phantom attacker is just a convenient excuse for oversold hardware and zero mitigation.
I mean, what do you want us to do besides answer tickets and help you? Resolving the situation, I assume, is your answer? Of course, and that's what we're doing.
What causes this is the fact that your server, being on our old storage systems, needs a reboot to get back up and running when problems like this occur, and I know it's very frustrating.
I assure you, it's not down for 8 days straight, of course.
It's an issue we were fixing this month.