This forum topic will contain announcements from the team about any issues that are occuring for the OzBargain website and/or related services.
Site Issue Announcements
moocher on 14/04/2014 - 20:12
Last edited 15/04/2014 - 09:09
Last edited 15/04/2014 - 09:09
Comments
are you happy with the way cloudflare is kicking in? or would you look at using something like imperva?
@SpeedAU: Not happy, but they provide an API so we could deploy something to automate that (one of many todo's here). We already have code that integrates with other parts of CloudFlare so not likely going to change.
Some level 10 weirdos right there 😂
Ozbargain is the Worst of the worst website. It should be banned from internet world
That’s the best thing I’ve read all week.
Easy way to tell. Has there been a good DDOS toolkit deal posted recently?
Could be someone disgruntled that Thai Honey never came back in stock due to an OzB member…
Ooh now getting database errors occasionally, error 2002
!$#%
I must have some script blocking thingamajig because that Cloudflare human verification hates me.
And now its blocked me on Chrome 121.
Probably should switch to Firefox full time anyway.Was experiencing issues yesterday evening with Cloudflare. I'm guessing another DDOS attack?
I wonder why?How long was that one? 2 hours or so hours?
Yep site was totally down.
Yeah almost 2 hours. I think web server ended up using up all the file descriptors and went haywire afterwards. Poor DDoS attacker who even had to work overtime on Sundays.
you might have to invest more into DDoS protection. Increase bandwidth.. but i know that aint cheap :P
invest more into DDoS protection
L7 DDoS protection is not really about increasing bandwidth. It's not UDP or syn flood that saturate your pipe, but creating too many "legitimate-looking" HTTP requests that overloads your webserver and application servers.
We found CloudFlare with custom WAF rules can block majority of the attacks. However attack vector changes and we too need to change the WAF rules to block those requests. OzBargain might suffer down time during that lag (us updating the WAF rules).
For "adaptive DDoS protection" from CloudFlare Enterprise — I have no idea how much it would cost as I haven't gotten a quote yet. However from what I have read it could be 4-5 figures a month, i.e. costly comparing to what we currently have.
@scotty: hmmm… i have quite a few large client web sites using Bunny CDN, they swear by it and in their opinion much better options than cloudflare at a fraction of the price https://bunny.net/network/ddos-protection/
Can you put a ban on IPs that arent from Australia? Or those IPs are showing Australia?
And if the botnet smashing the site is here? Then what?
My guess the attacks are coming from everywhere.
Yeah thats something we dont know.
Won’t that exclude everyone?
Attacks inside Cyberspace aren't as clearcut as that.
It is not always about the origin, which itself can be spoofed, but what the objective is, eg. depleting bandwidth? stressing a server out? etc. etc.
Are notifications broken at the moment?
Noticing this too. Not receiving notifications when someone comments on my deals etc
The only notification I have received today is because I’m subscribed to mitre 10, the WD40 posted by you.
Prehaps no mods have seen this because of the lack of notifications? @scotty @neil @hamza23
Thanks. I just came across this now, it seems something is going on with comment notifications. I have let Scotty know privately already, as someone twam'd about it.
I didn't get notification from @HamBoi69 tag either.
Neither then. Oh well, problem fixed, cheers!
Should be fixed now.
Yeah all good now, got the notification for your comment.
Hey mate,
Seems to be back again? Not receiving notifications about my comments on my deal here: https://www.ozbargain.com.au/node/866770I did receive a notification for your comment. Did you get this notification?
Mine was definitely broken and didn't get this notification
We have been having email delivery to iCloud Mail again since 26 March, and we have contacted iCloud Mail Postmaster trying to resolve it.
If you are using iCloud Mail (even on your own domain), your email address here might get marked with excessive bounce and gets disabled.
Twice already iCloud Mail Postmaster has replied:
We have investigated your report and made appropriate changes
However nothing appears as changed, and we are still unable to deliver emails to iCloud.
Anyone else getting constantly logged out across devices today?
Yep
Yes, came here to see if it was just me or others had the same experience.
Since yesterday I can't upvote deals, the report button is broken and on the right hand side the new deals/forum topics says loading… and never does.
Firefox v126 on Windows 10.
Twix wants a fix.
Yeah I don't know if it's related to the Firefox update or something else.
Have you tried an alternate browser?
Update: Ctrl + F5 fixed the three things I mentioned. Upvoting comments doesn't work.
Works for me on 126.
Thanks for the info.
Have your tried Firefox without addons? I assume it has something like incognito mode.
Not yet. The only add-on running is an adblocker.
I can upvote comments after pressing Ctrl + F5 again. Solved.
Are notifications broken/delayed?
The last one I received was nearly 2 hours ago.
Notifications are not being sent
There is an unidentified issue causing the system to not send any notifications for replies to comments and new comments in subscribed posts.
The issue started possibly an hour ago.
Queue server restarted and notifications should be working now. This also solved a related issue with server being unable to assign images to product tags.
Another DDOS?
Yes another DDoS at around 11PM AEST last night. CloudFlare under attack mode got kicked in a few minutes later and I have to block a few countries from accessing OzBargain. DDoS subsided a few minutes later, and all the country-blocks were removed at 5AM this morning.
iCloud Mail has been blocking our email server's IP address since Sunday 8 September. All emails that go out to iCloud Mail's email addresses (@icloud.com, @mac.com, etc) cannot be delivered and result in SMTP error 554. That means,
- No daily newsletter
- No subscription email
- Won't receive reply when you email support at ozbargain.com.au
We have been trying to contact iCloud Mail admin since Monday 9 September trying to have the issue resolved. It's not the first time they blocked us without explanation and it usually takes a few days for the issue to be resolved. We have also contacted our service provider BinaryLane to contact iCloud Mail to escalate the issue.
Received an email from BinaryLane that the issue has been resolved on their end. Our mail server's log also stated that delivering to @icloud.com / @mac.com has been back to normal since around 7:54PM AEST last night (11 Sept).
About 5 mins ago I hit Send Verification in account settings for my iCloud email and still haven't gotten anything. Something to note, it its an iCloud email alias (aka Hide My Email) that gets forwarded to my personal iCloud account. Both are still @iCloud.com addresses however.
Came through eventually, I'd say about 10 mins after I pressed the button
The site has been a little slow for the past 15 minutes or so, Cloudflare challenge has been turned on temporarily, due to a high amount of unusual traffic.
Thanks for looking after us.
CloudFlare turnstile might be helpful too, https://blog.cloudflare.com/integrating-turnstile-with-the-c…
DDoS attacks back?
We can't be sure — bots are literally taking up more than 50% of the OzBargain traffic. However the CloudFlare Under Attack Mode automatically kicks in when the DB server's load is too high.
bots
Nah, but in all seriousness, though, you have to ask why. Why attack some deal-hunting site in Australia??
Maybe not attacking but some AI companies trying to sample all jv's comments to train their latest LLM.
I view ozbargain on both my phone browser and desktop. I'm logged in, lately my session on my phone keeps logging me out. Any suggestions as to why this is occurring, this hasn't been an issue previously.
iPhone? Try switching off "Prevent cross-site tracking" in Safari's preferences and see if that helps.
iPhone but using chrome.
Once again, whenever a big sale period hits my phone seems to get blocked. I get the 403 Forbidden error on mobile (iphone, chrome). Can that be fixed?
CloudFlare? Ray ID?
Not sure what that means. Under the 403 Forbidden, it says nginx/1.22.1
That means you get blocked by our webserver directly, which is likely due to excessive requests from your IP. Using any VPN on your mobile device? iCloud Privacy Relay sometimes got caught up with excessive requests.
@scotty: No i'm not doing anything out of the ordinary, though I guess on the iphone it unloads the page and refreshes when I open it again … maybe the server thinks I'm spamming it ?
@narcoleptic-haze: You can try temporarily disabling iCloud Privacy Relay to test whether this is causing the issue.
Turn iCloud Private Relay off
Go to Settings > [your name] > iCloud > Private Relay, then tap Private Relay.Turn off iCloud Private Relay temporarily: Tap Turn Off Until Tomorrow. Source
Basically, your internet traffic goes through iCloud Private Relay which can cause issues with browsing sites.
@rompastompa: Thanks for the suggestion. I just had a look and it seems Private Relay is only available in iCloud+, which I don't subscribe to.
@Loopholio: Irony is that they either using the DDoS to stop people looking at their crappy deals/scam deals or blocking the platform for bringing in customers so either way their dumb for performing such an attack or paying someone to do it for them