How did Elliott stop the DDoS attack?

How did Elliott stop the DDoS attack? - From above of crowd of people standing on street in dark modern city centre during mass protest

In Mr. Robot, Season 1, Episode 1, Elliott stopped a DDoS attack, but how exactly did he do it?

If I understand well, he notices that everything was being infected, all the servers, so he goes​ to some "main" server, I guess. Then he cuts the connection between this main server and all the rest that was infected. But I'm not sure about my understanding.

Can someone explain what was going on at this part of the show?

plot-explanationmr-robot


Best Answer

The servers were not just being DDoSed, there was a rootkit installed on the network, which was part of the server startup sequence, causing them to crash over and over every time Elliot or Lloyd restarted them. Elliot explains they need to take the servers down and wipe/reinstall them in order to clear out the rootkits.

Gideon (Allsafe owner) takes Elliot with him to the server farm where the machines are physically hosted. While they are en route, the servers are being wiped/restored.

Elliot notices that one of the infected servers was missed and is in the process of being brought back up - if this happens, it will reinfect the network with the rootkit and undo all the progress in stopping the hack so far, so he redirects the connections to that server's backup server instead, leaving the infected one offline. This gets the network back up and running in a clean state.

He then investigates the infected machine and locates the infection/malware. He is about to delete it and then decides not to, instead changing the file's permissions so that the only user who can access the file is his user id.



Pictures about "How did Elliott stop the DDoS attack?"

How did Elliott stop the DDoS attack? - Red Stop Road Sign on Green Grass Field
How did Elliott stop the DDoS attack? - White and Black Number Print on Red Surface
How did Elliott stop the DDoS attack? - Unrecognizable young woman demonstrating prohibition sign showing gesture of refuse using hand and note with sign stop


Did Elliot hack Allsafe?

Allsafe employee Elliot Alderson stopped the hack, while secretly giving fsociety access to the root directory of cs30 server of E Corp's network. This hack lead to the dismissal and criminal prosecution of Terry Colby, E Corp's former Chief Technology Officer (CTO).

What is a DDoS attack Mr Robot?

In the Mr. Robot pilot, Allsafe notices a DDoS attack happening to E Corp and calls Elliot in to help. "A DDoS attack is many, many different people trying to access a webpage all at once," Matre says. All that demand makes a site overload and shut down.


ELLIOT STOPS A DDOS ATTACK in MR ROBOT Season 1



Sources: Stack Exchange - This article follows the attribution requirements of Stack Exchange and is licensed under CC BY-SA 3.0.

Images: LT Chan, Aaron J Hill, DS stories, Anete Lusina

Related Topics

What was Audrey's expected endgame before things took a dark turn?

Contradiction on the people in the future's views regarding the grandfather paradox

What was the significance in Laura tipping over the cross in Logan?

Why was the plane flown through close proximity to the runway rather than landing there?

How did Dr. Paul Kersey wound his own left hand while shooting a pistol?

Why did Mitsuha and Taki connect in the first place?

What made Andy lose her immortality?

What do Green, Sarawat, and Mill find attractive about Tine? [closed]

If John Hammond was known for "sparing no expense" all things Jurassic Park, why was Dennis Nedry so underpaid?

Who are the people killed right before the team meets the imprisoned creature?

Why did Jimmy and Kim undermine Howard in such a way?

Why does Mal insist on communal suicide?

Why does Bender say "Please insert girder"?

Why didn't Smiley arrest Polyakov?

Does Louise have a choice to change things, or why did she say this?