DO Ideas 2

Not to turn off all droplets when only one droplet has been ddosed or has other problems

I'm asking not to turn off all droplets and not to lock an account when only 1 droplet has problems (ddos, abuse, etc.).

If you wouldn't turn off all droplets on situations like these - it would be easier to resell your services and to spread the word about Digital Ocean among new clients.

For example, I'm reselling your droplets and creating new droplets for my clients using your API, when suddenly one of droplet gets ddosed - result: all droplets are turned off and my account gets locked, even if all the rest droplets are ok.

That's not good. It would be good that such a problems wouldn't affect other droplets and whole account.

  • MNT
  • Sep 11 2018
  • Shipped
  • Attach files
  • Moisey Uretsky commented
    September 11, 2018 18:39

    An abusive website doesn't lead to all servers being powered off, depending on the type of abuse an email is always sent out first, in cases where the virtual server is actively being malicious to other networks it may get powered off.

    In the case of DDOS attacks the initial action is usually a power off to restore connectivity to the rest of the network, hypervisor, or any other affected systems and a review of the account.

    If there are any specific concerns regarding this or any specific questions please email me directly and we can gladly address them.

    Thanks

  • MNT commented
    September 11, 2018 18:39

    Mostly, if only 1 server (of n+1 servers on my account) got DDoS - all servers are down and account locked, and it doesn't matter if only 1 server is problematic.

    Same thing happens if my 1 of many servers is hosting website and it gots abused - all servers are down, even if only 1 server is holding abused website.

  • Moisey Uretsky commented
    September 11, 2018 18:39

    We do not turn off all droplets in the case of abuse that very rarely happens, if its occurred please email me directly so we can resolve it for you.

    Thanks

  • Sasha Shepherd commented
    September 11, 2018 18:39

    Yeah, this seems like a terrible policy.

    For truly abusive users, just setting up multiple accounts is trivially easy.

    The only people hurt are the legit users who get in a jam.

  • Moisey Uretsky commented
    September 11, 2018 18:39

    When you resell droplets you take on the liability of all of your users, in many cases we try our best to limit any actions taken against specific droplets but in some cases where there isn't enough of a user history or if there is repeated infringement then it becomes more of an account level lock.

    Thanks

  • MNT commented
    September 11, 2018 18:39

    Somebody already opened a suggestion on DigitalOcean voice - to hide a real IP/hostname while reselling services - and DO team was not against it.

  • Anonymous commented
    September 11, 2018 18:39

    Is reselling droplets even allowed?