Important supplementary information from the Fedora Project’s Discourse
Supplement to clarify some questions:
This is not a DDoS attack on Fedora systems, but on some of our infrastructure.
It is not relevant if you use Workstation or KDE or some other Fedora variant. It is relevant which service you want to use: e.g., Discourse is operated not on our own infra but provided by the Discourse people. So this is not affected. But services like koji or bodhi or the FAS-login seem affected (these are the services I experienced time outs / unreachable today), as we operate them ourselves on our affected infra.
This attack is also affecting Flatpak updates and rpm-ostree as well.
Why don’t they just use Cloudflare?
Presumably just not trustworthy enough for their standards. We wouldn’t switch to Cloudflare in this scenario either 