Go Back  FlyerTalk Forums > Support&Services > Technical Support and Feedback
Reload this Page >

Periodic FT issues (crash, Cloudflare, database errors) - DDoS attack, cf wiki

Periodic FT issues (crash, Cloudflare, database errors) - DDoS attack, cf wiki

    Hide Wikipost
Old Jan 4, 19, 1:52 pm   -   Wikipost
Please read: This is a community-maintained wiki post containing the most important information from this thread. You may edit the Wiki once you have been on FT for 90 days and have made 90 posts.
 
Last edit by: JDiver
Wiki Link
FlyerTalk Up, Down, Crash, DDoS, Database Error, etc.

Thursday July 26, 2018, FlyerTalk was under a DDoS / Distributed Denial of Service attack; it seems to be persisting since then. Cloudflare services are keeping the site up, but you may see errors, page call intercepts and delays while the attack is ongoing.

If you are posting content, select all and copy prior to saving or posting to prevent losing your work. Then you can still post it after overcoming the redirect.

For further information on Cloudflare and its workings, see Post #82 by plunet.

FlyerTalk up or down troubles? Check by using: http://isup.me- or http://www.isitdown.us, http://www.doj.me.

Or use this direct link - http://downorisitjustme.com/res.php?url=flyertalk.com

If it is just you, try: reloading the page; emptying your cache; deleting one or more cookies; quitting and restarting your browser or trying an alternate or shutting down and rebooting your device.



Print Wikipost

Reply

Old Jul 26, 18, 5:31 pm
  #46  
FlyerTalk Evangelist
 
Join Date: Nov 2002
Location: PWM - the way life should be
Posts: 11,419
Originally Posted by Deltus View Post
Does DDOS threaten any passwords or personal data? I thought it just takes websites down (although I'm definitely no expert).

In any case, if you *are* an expert, you'll surely have different passwords on every single website account you access, so nothing to worry about...
THat's correct. Who knows why someone would want to knock the site offline.

Even non-experts can use a password manager to generate and store unique passwords for every site. I use LastPass.
JDiver, EDIflyer and wrp96 like this.
gfunkdave is offline  
Reply With Quote
Old Jul 26, 18, 5:48 pm
  #47  
FlyerTalk Evangelist
2019 FlyerTalk Awards
 
Join Date: Jan 2014
Location: San Diego, CA
Programs: GE, Marriott Gold
Posts: 11,845
The CloudFlare thing doesn't bug me as much as every image and CSS being broken when the page finally does load. Weirdly, however, the breakage only happens on my phone and not on my PC.
tmiw is offline  
Reply With Quote
Old Jul 26, 18, 6:49 pm
  #48  
 
Join Date: Apr 2008
Location: RDU
Posts: 3,421
Originally Posted by gfunkdave View Post
THat's correct. Who knows why someone would want to knock the site offline.

Even non-experts can use a password manager to generate and store unique passwords for every site. I use LastPass.
You're certainly right about passwords. Password manager is helpful. I would still like to know if this is only a DDOS attack or something more.
zitsky is offline  
Reply With Quote
Old Jul 26, 18, 7:18 pm
  #49  
FlyerTalk Evangelist
 
Join Date: Jan 2012
Location: West Coast Best Coast
Programs: DL PM
Posts: 15,035
at least we are viewed by someone as important enough to get attacked LOL

DL/AA/UA/WN/AS/AF/BA/etc, take notice!
PV_Premier is offline  
Reply With Quote
Old Jul 26, 18, 7:27 pm
  #50  
 
Join Date: Apr 2008
Location: RDU
Posts: 3,421
Originally Posted by PV_Premier View Post
at least we are viewed by someone as important enough to get attacked LOL

DL/AA/UA/WN/AS/AF/BA/etc, take notice!
I'm not really worried. I changed my password to my$password. No one will guess that!
JDiver and wrp96 like this.
zitsky is offline  
Reply With Quote
Old Jul 26, 18, 7:51 pm
  #51  
 
Join Date: Mar 2012
Location: Navajo Nation, Northern Arizona
Programs: ex-Con *Gold (earned)
Posts: 7,681
Originally Posted by IBobi View Post
Just FYI, we pay Cloudflare a lot of $ to keep the site up during these attacks. They're our protector.
Originally Posted by COSPILOT View Post
Maybe a horribly stupid question from me, but what would be beneficial of a hacker doing something with FT?
Perhaps I'm a cynic, but the DDoS attack certainly appears to be beneficial to Cloudflare. It's certainly not outside the realm of possibility that the "hacker" is a stakeholder.

Meanwhile, I am now unable to connect to Flyertalk at all on my older iPad Mini.

Last edited by kale73; Jul 26, 18 at 9:19 pm Reason: sp
kale73 is offline  
Reply With Quote
Old Jul 26, 18, 8:13 pm
  #52  
 
Join Date: Jun 2007
Location: gggrrrovvveee (ORD)
Programs: UA silver, Marriott Gold, Hilton Gold
Posts: 5,948
Originally Posted by kale73 View Post
Perhaps I'm a cynic, but the DDoS attack certainly appears to be beneficial to Cloudfare. It's certainly not outside the realm of possibility that the "hacker" is a stakeholder.

Meanwhile, I am now unable to connect to Flyertalk at all on my older iPad Mini.
It's like the whole snopes thing...



But the DDoS note explains the Cloudflare message before getting onto FT this morning. Thanks for the update, mods.
gobluetwo is offline  
Reply With Quote
Old Jul 26, 18, 8:47 pm
  #53  
 
Join Date: Mar 2014
Location: JAX
Programs: DL SM, UA 1K, Hilton Gold, Marriott Gold
Posts: 3,648
Originally Posted by kale73 View Post
Perhaps I'm a cynic, but the DDoS attack certainly appears to be beneficial to Cloudfare. It's certainly not outside the realm of possibility that the "hacker" is a stakeholder.
That's also the conspiracy theory behind anti-virus vendors.

DDos attacks have been used to extort money from sites. After the attack is started the attackers then send the admins an email offering to stop for a certain number of bitcoins.
wrp96 and DeathSlam like this.
TomMM is offline  
Reply With Quote
Old Jul 27, 18, 5:05 am
  #54  
Hilton Contributor BadgeAccor 5+ Badge 2019 FlyerTalk Awards
 
Join Date: Nov 2012
Location: Rhineland-Palatinate
Programs: OW Sapphire (BA), *A Gold (A3), Le Club Accor Silver, HHonor Gold
Posts: 1,975
The Wikipedia page of Cloudfare makes for interesting reading. Seems this company is very far from being clean and ethical.
fransknorge is offline  
Reply With Quote
Old Jul 27, 18, 5:47 am
  #55  
FlyerTalk Evangelist
 
Join Date: Jun 2004
Location: Either at the shooting range or anywhere good beer can be found...
Programs: HH Diamond, Priority Club Platinum
Posts: 36,267
I'm still receiving the CloudFlare message today.
kipper is offline  
Reply With Quote
Old Jul 27, 18, 6:09 am
  #56  
FlyerTalk Evangelist
 
Join Date: Mar 2010
Location: JER
Programs: BA Gold/OWE, several MUCCI, and assorted Pensions!
Posts: 27,284
Originally Posted by kipper View Post
I'm still receiving the CloudFlare message today.
If the DDoS attacks are continuing, CloudFlare will keep activating. I guess we just have to accept this is what can happen on the www.
T8191 is offline  
Reply With Quote
Old Jul 27, 18, 7:39 am
  #57  
2019 FlyerTalk Awards
 
Join Date: Jun 2018
Location: Brighton UK
Programs: BAEC-Silver, AMEX-BA Prem' Plus & Standard, Accor Gold, HH-Silver, IHG,IBIS On Business
Posts: 518
How long does a DDoS attack go on for? Over 24hrs now that I've been getting the cloudflare pop up every time I do anything. Wish i'd thought to come look for this before losing substantial reply posts to it. Hope the IT bods can get it sorted sooner rather than later.
JDiver and wrp96 like this.
TWCLAM is offline  
Reply With Quote
Old Jul 27, 18, 8:53 am
  #58  
A FlyerTalk Posting Legend
 
Join Date: Jul 2001
Location: Watchlisted by the prejudiced, en route to purgatory
Programs: Just Say No to Fleecing and Blacklisting
Posts: 86,586
Originally Posted by MSPeconomist View Post
Twice today I got a page I've never seen before:

"Checking your browser before accessing flyertalk.com"

"This process may take...."

I've never seen this before and I was using my usual iPadPro with Safari. It happened once on a wifi network that's been giving me trouble today (but which I have used in the past) and now again using my iPhone as a personal hotspot.

What does it mean and what is FT doing to "check" my browser?
A lot of people are getting this today, more so if using shared networks of some sort.
GUWonder is offline  
Reply With Quote
Old Jul 27, 18, 9:57 am
  #59  
 
Join Date: Apr 2008
Location: RDU
Posts: 3,421
Originally Posted by GUWonder View Post

A lot of people are getting this today, more so if using shared networks of some sort.
I see it on PC and mobile. Google chrome.
zitsky is offline  
Reply With Quote
Old Jul 27, 18, 10:01 am
  #60  
Senior Mod and Moderator: Aegean Miles&Bonus and British Airways
 
Join Date: Jan 2009
Location: Norwich, UK
Programs: A3*G, BA Gold, BD Gold (in memoriam), IHG Spire
Posts: 5,628
Originally Posted by TWCLAM View Post
How long does a DDoS attack go on for? Over 24hrs now that I've been getting the cloudflare pop up every time I do anything. Wish i'd thought to come look for this before losing substantial reply posts to it. Hope the IT bods can get it sorted sooner rather than later.
As IBobi has said up thread, there really is nothing the IT bods can do other than sit the attack out. At some point it'll stop, and the message won't appear. As might have been gathered from other posts, no-one is immune from having to be filtered through the protection 'gate' - including all the moderators.

The alternative to having to wait a few seconds to get in is that the site is taken down completely for an unspecified and unknown period of time - that's a much bigger disaster. On balance, I would say this is the right and practical approach.
EDIflyer and T8191 like this.
NWIFlyer is offline  
Reply With Quote

Thread Tools
Search this Thread
 
  • Ask a Question
    Get answers from community experts
Question Title:
Description:
Your question will be posted in: