Some data that may help:<p>If you're in the rare situation of using GoDaddy DNS but don't use them as a registrar, then you're in luck. Simply sign up with a new DNS provider. They will give you their DNS servers which you need to set as the DNS servers that are authoritative for your domain. Then sign into your registrar and change the authoritative DNS servers for your domain. There will be a propagation delay but once it's done you're all set.<p>If you are in the extremely common situation of having registered your domain through GoDaddy and also use their DNS service, then you have a problem because to move to another DNS provider you need to sign into GoDaddy.com to make the change I've described above i.e. change which DNS provider is authoritative for your domain. You can't do this until GoDaddy.com is back online. So what I suggest is that you sign up for a new DNS provider and then keep checking GoDaddy.com. As soon as it comes back online, sign in and make the change to your new provider as quick as you can.<p>Other data:<p>Whois requests for godaddy domains are currently failing because whois.godaddy.com is offline due to name resolution failure.<p>Godaddy's twitter feed is a good source of updates, although they are claiming to be making progress and all my godaddy DNS hosted domains are still offline, so it seems to be more marketing speak than real data: <a href="https://twitter.com/godaddy" rel="nofollow">https://twitter.com/godaddy</a><p>As mentioned, Anonymous seems to be behind it as three tweets on their twitter account seem to indicate: <a href="https://twitter.com/AnonOpsLegion" rel="nofollow">https://twitter.com/AnonOpsLegion</a><p>I don't think the scale of this attack is fully understood yet. According to the CBC, GoDaddy hosts over 5 million websites (not sure if that's DNS, registrar, etc) so expect this to be big news and potentially the next political football.<p>Edit: And finally, <a href="http://www.downforeveryoneorjustme.com/" rel="nofollow">http://www.downforeveryoneorjustme.com/</a> is down for everyone because it's over quota. Via Reddit which is also covering this: <a href="http://www.reddit.com/r/technology/comments/znvwk/godaddycom_dns_servers_are_completely_down_and/" rel="nofollow">http://www.reddit.com/r/technology/comments/znvwk/godaddycom...</a>
General question here about upstream outages that can take down your site, e.g. DNS outage, AWS zone outage, etc.<p>What to tell your customers when an upstream service provider experiences an outage? I mean, if you're running ifttt.com your users might be savvy enough to understand that a DNS outage isn't your fault; but pinterest.com or whatever (painting with broad strokes here, forgive me) might not have a user base that would understand that events out of your control have made your site inaccessible.<p>How do you reassure your customers? What's the proper tone to take?
It looks like the root of the problem is that their DNS servers are unresponsive or offline. Web sites and mail whose DNS is hosted on GoDaddy appear to look "down" because they cannot resolve.<p>Good push for anyone to switch to DNSMadeEasy or Amazon Route53 if you're currently caught in this.<p>Update: It appears Anonymous is behind this <a href="https://twitter.com/AnonOpsLegion/status/245218636187443200" rel="nofollow">https://twitter.com/AnonOpsLegion/status/245218636187443200</a>
I'm one of those people you call "stupid", who "deserves what I get". This is my first time posting here. I've used GD for years. Sure, they try to upsell me, but being in sales, I don't have a problem with giving them a firm "no thanks". If you do, that's your problem, not theirs. They're a business, for goodness sake. Realize that.<p>And not only my sites are now down, but all the sites I maintain for clients. If some individual (or group) has done this intentionally, then these people are responsible for taking hundreds, maybe thousands of small businesses off line today. They're cutting into their sales, hurting their bottom lines, and if it continues for too long, will probably lead to people being laid off.<p>So you can sit on your techie high horses and think you're oh so smart, but the fact is, these are real business people doing real business and criminals are hurting them. So you come down on the honest people for signing contracts and paying their bills on time?<p>Seriously?
Does anybody have a guide on how to migrate away from GoDaddy without downtime? And what would you recommend instead? We currently host a bunch of domains and use their DNS servers.
This thread demonstrates that HN needs a comment collapse button a la reddit. The first comment thread, mostly useless, is taking most of the page, and no way to collapse it.
I'm assuming they're adding the Verisign DDoS protection service, but this change should make EVERY single Godaddy client very, very, very nervous (from the current whois):<p><pre><code> Domain Name: GODADDY.COM
Registrar: GODADDY.COM, LLC
Whois Server: whois.godaddy.com
Referral URL: http://registrar.godaddy.com
Name Server: A1.VERISIGNDNS.COM
Name Server: A2.VERISIGNDNS.COM
Name Server: A3.VERISIGNDNS.COM
Status: clientDeleteProhibited
Status: clientRenewProhibited
Status: clientTransferProhibited
Status: clientUpdateProhibited
Updated Date: 10-sep-2012
Creation Date: 02-mar-1999
Expiration Date: 01-nov-2021
</code></pre>
Yes, you read that right... they just implemented verisign name-servers. A multi-multi million (billion?) dollar company.
Thread on Outages: <a href="http://comments.gmane.org/gmane.org.operators.isotf.outages/4228" rel="nofollow">http://comments.gmane.org/gmane.org.operators.isotf.outages/...</a><p>The GoDaddy status page proudly announces "No issues to report":
<a href="http://support.godaddy.com/system-alerts/" rel="nofollow">http://support.godaddy.com/system-alerts/</a><p>During last week's GoDaddy mail outage, they had no status info posted, even hours after reports on NANOG/Outages: <a href="http://comments.gmane.org/gmane.org.operators.isotf.outages/4207" rel="nofollow">http://comments.gmane.org/gmane.org.operators.isotf.outages/...</a>
I love their latest tweet (1:35pm Eastern):<p><i>Status Alert: Hey, all. We're aware of the trouble people are having with our site. We're working on it.</i><p>That understates things by several orders of magnitude. It's not just their site that is down, it's their domain name servers, so most websites that bought their domain from GoDaddy are unreachable (unless you are working off of cached domain data).
I don't use GoDaddy, nor do I particularly like them, so this doesn't really affect me or my business directly.<p>But I got a call earlier today from my less tech-savvy buddy who was freaking out because his GoDaddy website was down. Yea it is probably "his fault" for choosing them, and he probably "deserves it".<p>Still, not everyone is born a leet computer hacker, and sometimes this is the only way people will learn, so I'm trying not to be too hard on people for that.
1. Add the following lines to your hosts file (/etc/hosts on unix/osx, \windows\system32\drivers\etc\hosts on windows):<p><pre><code> 216.69.149.215 mya.godaddy.com
216.69.149.90 idp.godaddy.com
216.69.149.9 dcc.godaddy.com
</code></pre>
2. Go to <a href="https://mya.godaddy.com/" rel="nofollow">https://mya.godaddy.com/</a> to manage your GoDaddy accounts.<p>3. Change DNS providers.
I just got an email from GoDaddy beginning: 'Todays Lesson -...'. I thought this might go into their service being down, backups or failover protection.<p>But no, it carried on to: 'Today's Lesson - SAVINGS! 20% OFF*'
Literally just transferred all of my domain names and DNS hosting away from GoDaddy last night. Should have done it after the SOPA fiasco - glad I didn't wait until today!
GoDaddy has been providing me with excellent customer support for a decade. I'm not sure what the hate is all about.<p>Sure, they didn't take my side in the SOPA debate, but I'd rather live in a world where everyone is entitled to their opinion.<p>I'm also not comfortable with a group calling themselves "Hackers" giving my profession a foul name by activities like this. This is like bombing a nation which doesn't have same views as yours. Hackers, they are not. Shameful.
Shouldn't we all know to use hover.com by now? Don't you all listen to 5by5 podcasts?! :)<p><a href="http://5by5.tv/partners/hover" rel="nofollow">http://5by5.tv/partners/hover</a>
There's a discussion about this on WHT.<p><a href="http://www.webhostingtalk.com/showthread.php?t=1190617" rel="nofollow">http://www.webhostingtalk.com/showthread.php?t=1190617</a>
This has been a known vulnerability for dns, as they are susceptible to DOS. We use network solutions for DNS but they can be taken down in a similar manner as GoDaddy.<p>BTW one of the servers we needed to access did not resolve, but I was able to connect via IP instead of DNS. Host file baby!
In other news, IP addresses are still working. ;)<p>So what can we conclude from this incident?<p>GoDaddy's registrar service
GoDaddy's authoritative DNS service
GoDaddy's hosting service
GoDaddy SSL certificates
etc.<p>They are all different services. When you link them all together and give GoDaddy control over your entire setup, if there's a problem with any one service, you can't recover as easily as if they were each handled independently. meme: "Do one thing well."<p>"All-in-one" solutions, though they might provide convenience, might come at a cost in terms of disaster recovery. meme: SPOF<p>I wonder if this thinking might also apply to software: using a single, large "all-in-one" program versus using lots of smaller, independent (and replaceable) programs.
Why is GoDaddy excluded from the requirement to provide port 43 whois service? Are they special? To my knowledge you can only get whois information on GoDaddy domain names from their website. Why only HTTP whois? Are they front-running?
I recently rented a VPS specifically so I could run my own DNS. I use tinydns[1] on the VPS as a stealth primary to host my zones and then use BuddyNS[2] as my secondary. It works seamlessly and wasn't that hard to set up if you know how to work a command line.<p>Of course, if someone were to do this same thing to BuddyNS I would be up a creek for a little while, but I could just login to Namecheap and point to a different secondary.<p>[1]: <a href="http://tinydns.org/" rel="nofollow">http://tinydns.org/</a><p>[2]: <a href="http://www.buddyns.com/" rel="nofollow">http://www.buddyns.com/</a>
Sure someone will post this as a new story, but it appears DNS services are back online. I checked a few of the sites I manage and they are now working.<p>Now I need to bust a nut and get things moved off ASAP.
Someone (I'm looking at you, gandi.net) should give a "GoDaddy is Down" discount for domain registration. I'm ready to migrate the domains I didn't change during the SOPA fiasco ...
I found this hoping to gather some information about the DNS attack. And instead all I found was that as a nonprofit without enough money to invest in IT staff who might "know better", it's just too bad that we can't accept donations on our website for our homeless children we support because by using GoDaddy we got what we deserved. Was hoping to find information, but that isn't quite what I got.
I had domains with them marked "auto renew" that mysteriously had that status changed. Since all my domains were "auto renew" I wasn't monitoring my renewal notices. Suddenly I discovered that several domains had expired and had been purchased by others. Now that sucks and is a good reason for me to find another registrar, in addition to the moral misgivings I already had about them!
Godaddy.com is back up! (~4:45PM PST 10SEP12)<p>I'd be really interesting to get some behind-the-scenes data on what happened and what it took to fix it.
I'm against SOPA and these laws as much as the next guy and I don't agree with many of stances that godaddy takes, but assuming they were really hacked, it's because of idiots like anonymous that our freedom on the internet is in jeopardy. This kind of stuff will simply promote the governments around the world to pass laws regulating the internet.
I don't much care for blame as much as I care for alternatives. Who do some of the largest sites register their domains with? And I mean reliable and fast. For example, a whois showed me ycombinator.com is with EASYDNS TECHNOLOGIES. Google is with MARKMONITOR INC, which is totally overkill I bet. Suggestions? Recommendations?
I have a kind of unvoluntary ping to my mailbox hosted at Gmail / Google Apps, "Buy Vigara" (sic) messages that arrive with a few minutes intervals since months ago. Google sorts them as spam correctly, but it is interesting to see how they are less and less frequent over the past hours. (Yes my domain is on godaddy)
Is there any word on if this is a DDoS type attack (I've seen things like request saturation attacks on DNS servers before)? Or, is it an actual exploit issue? Seems perhaps that it might be the latter from what I've seen so far... Anon is claiming it is only one of their guys responsible for this outage.
FWIW I run the DNS hosting service SlickDNS (<a href="https://www.slickdns.com" rel="nofollow">https://www.slickdns.com</a>). The focus is ease-of-use, but there is also good redundancy with multiple name servers located in the US, UK and Japan.
I tried to set up my site on CloudFlare but it say's that it's not a valid domain name. I think they might be checking the DNS records for the site before you can set it up so it appears to be invalid. Does anyone know a way around this?
I moved the bulk of the sites I manage off of GD when the SOPA thing happened but left a couple because the pain of transferring was to much (read, client didn't want to).<p>Surprisingly, all the reasons to stay on GD vanished this afternoon :-P
Looks like the primary server cluster that handles all the incoming traffic at godaddy for all their went down. This caused the traffic failover to secondary servers which where unable to handle the load and crash.<p>ETA is 6 hours
GoDaddy never struck me as a particularly evil corporation, just practical. But I would be interested to hear any recommendations for an alternative hosting company, and the logic behind the choice.
So.... just to get the ball rolling here... what did GoDaddy do to piss everyone off so much that they raised the ire of Anonymous? Other than the choice of Danika as a spokesmodel, I mean.
For those looking for a quick route around, you can find GoDaddy's IP address here: <a href="http://who.is/dns/godaddy.com/" rel="nofollow">http://who.is/dns/godaddy.com/</a>
An other site like downforeveroneorjustme.com is:
<a href="http://www.cherchezvous.ca" rel="nofollow">http://www.cherchezvous.ca</a>
french site but work for any site.
<a href="https://www.dnspod.com" rel="nofollow">https://www.dnspod.com</a> is a good FREE dns provider, focusing on domain/record management, you can have a try;
We've been on GD since our company (ecomm with revenue in mm) was founded with zero issues.<p>Now we need to switch to DynDNS asap who say they are getting tons of calls right now
Latest mirror from archive.org for those experiencing the slashdot effect: <a href="http://web.archive.org/web/20110724055653/http://www.godaddy.com/" rel="nofollow">http://web.archive.org/web/20110724055653/http://www.godaddy...</a>
If you are using GoDaddy for anything, you deserve what you get. If you are using GoDaddy for not just registration but also for DNS, I would just fix it as soon as possible and not tell anyone.<p>Also, do backups, use good password practices, and everything else that everyone knows and the lazy will still fail to do.<p>Oh, 20 seconds in and a downvote. I can take them, I didn't ignore the last 8 problems GoDaddy has been responsible for lately and am not hurting from this outage.
Hey - everything is pretty much down right now, who thinks it's just godaddy? You should get a dog, name is clue - then you would have one.<p><a href="http://www.internettrafficreport.com/namerica.htm" rel="nofollow">http://www.internettrafficreport.com/namerica.htm</a>