Monday, 15 December 2008

14/12/08: Sanesecurity signatures ddos


Sanesecurity signatures are no longer being updated or distributed due to extremely high server resource usage, which appears to be from a distributed denial of service attack (DDoS). I've moved server hosts twice (which takes time) and both times have resulted in the site being suspended.

As many of you know, I produce the signatures and run the site, in my spare time and with Christmas approaching I’m finding my spare time is currently limited.

Hopefully this won’t be the end of the signatures and I’m hoping that they may return in the New Year.

May I take this opportunity to thank everyone who has helped this project, either by
providing samples, bandwidth, download scripts or donating.

Thanks and sorry to let you all down.

Steve
Sanesecurity

5 comments:

Anonymous said...

Hi Steve,

I am not sure how this work, but is there any way to put the signatures on another system, or even bit torrent.

Your signatures have been wonderful and a great service.

MxUptime said...

Steve

We really hope to see you back again next year. Your signatures are an invaluable resource.

Cheers

Andrew Fife said...

Hey Steve:
we've got a couple ideas on how Untangle might be able to help with your current problem. Can we chat some time soon? Whats the best way to reach you directly?

-Andrew
--
Andrew Fife
Untangle
afife@untangle.com
+1 650.425.3327

ObiWan said...

Steve... I'm sorry I don't have a mirror to offer, but... did you think about using the standard ClamAV mirrors to distribute your signatures ? Or either you may even distribute them through sourceforge; that would mean setting up a "sanesigs" project on SF and hosting the signature files there ! I think such an approach may help solving the DDoS issue (at least I hope so)

All the best.

Curtis LaMasters said...

First of all, thank you for your work on this project. I can personally say that you have saved my clients thousands of dollars and more. I have a suggestion for hosting your files that may prove to be very cost effective. Amazon S3 and or Amazon EC2 would give you the flexibility, bandwidth and control that you would need. Let me know what you think.