On Wednesday 11 July 2007, Yet Another Ninja wrote:
> On 7/12/2007 12:50 AM, Phil Barnett wrote:
> > On Wednesday 11 July 2007, SARE Webmaster wrote:
> >> There has been discussion of taking down the public site, opening
> >> something new ( private access, invite only, acl by ip, etc), in hopes
> >> to avoid ddos and provide better services, more requent rule updates,
> >> and so on. We are trying our best to keep it alive, but there is
> >> only so much we can do with the limited time and resources we have.

> >
> > How about releasing the ruleset via torrent or something similar.
> > Anything that you could do to distribute the load and location would make
> > a ddos attack less effective. While there might not be a lot of people on
> > this list who can use their server to take on the entire DDOS for you,
> > there are a LOT of servers here that could participate in a pool.
> >
> > Maybe a DNS round robin?
> >
> > Just some ideas.

>
> hey
>
> great ideas - who volunteers to setup the Torrent stuff and manage it all ?


Thinking further, torrent is not exactly what is needed. Torrents need to be
reseeded for every change, so that's a maintenance nightmare. RSS has some of
the pieces, but i'm not sure if it can be just a file delivery method. rsync
has obvious benefist in reducing bandwidth, but doesn't have any security
built into it.

I think some brainstorming to come up with a peer distributed subscription
service is the starting point. If there isn't one, that's the next battle.

We can't be the first people to come up against this problem. How have others
solved it?

--
Phil Barnett
AI4OF
SKCC #600