Posted by smartypants in Tech (edited )

https://www.fastmail.com/

status page not DDOSED yet :

https://www.fastmailstatus.com/

this is huge, because Fastmail is used by millions of people , stores no logs at all if you set it to not, enforces ssl end to end on all emails from employees if you set it to, and never once in federal court records of trial transcripts provided collected data for nations outside Australia.

THIS IS HUGE and means their current levels of anti-DDOS were blown away somehow, or millions of IP origin addresses are using surgical targeting of crafted fuzzing , or too many half-connects to 'tar pit overrun' their ip connection tables in their anti-ddos tools.

Alternatives to Cloudflare DDoS protection (unranked, some not relevant) :

BitMitigate (only censored free speech servers once)
Digital ocean
Imperva Incapsula
Dynu Dynamic DNS
ClouDNS.net
Neustar SiteProtect
JavaPipe
ArvanCloud
Corero Network Security
Link11
CloudLayar
F5 Networks
Arbor Network
Radware
Imperva
Century Link
Nsfocus
A10 Networks
Nexusguard
StackPath
SiteLock
Fortinet
Corero Network Security
Akamai Technologies

do your research, and if needed use two in a cascade.

Chances are, FastMail coded their own anti-DDOS to stop well funded attacks , but .... poorly.

4

Comments

You must log in or register to comment.

dontvisitmyintentions wrote

Fastmail is based in Australia, which subjects it to the "Assistance and Access Bill" which introduces secret warrants, gag orders, and backdoors. Like VPNs in similar jurisdictions, you can not take seriously any claims to deleting logs or other privacy trust.

3

Rambler wrote

Is it based there, as in, that is where the company is registered?

Or is it based there, as in, that is where the servers are?

If that's just where the company is registered, no big deal really. (As far as I know) If the servers / infrastructure for the service is there, then that is more worrisome.

2

dontvisitmyintentions wrote

It's registered in AU and they have operations there, but they claim the "main servers" are in the US.

The CEO griped that secret code added to their platform, required by the law, could foul their operations or get accidentally fixed, so they certainly think they're subject to it.

3

BlackWinnerYoshi wrote

Fastmail location is not really a problem, but there are others that make it the second worst e-mail provider, the first one being Hushmail. I would only use it for its JMAP thing ltt.rs supports, but most people use IMAP instead, so why bother? Just use Riseup (or Disroot if you don't have the invite code) - you don't even have to pay for it!

2

dontvisitmyintentions wrote

How friendly to free speech is riseup? It certainly doesn't present itself as such.

For example, would it be less likely to kick off somebody using their email service in a flyer they don't like than Protonmail? Everybody gushes over these little services, yet the first change they have of calling you a racist for something you didn't even do with their service, they will cut you off.

What's the point of feeding communists, who hate me, all my data voluntarily?

0