| ▲ | dang 14 hours ago |
| Yes, sorry! We're investigating, but my current theory is we got overloaded because I relaxed some of our anti-crawler protections a few days ago. (The reason I did that is that the anti-crawler protections also unfortunately hit some legit users, and we don't want to block legit users. However, it seems that I turned the knobs down too far.) In this case, though, we had a secondary failure: PagerDuty woke me up at 5:24am, I checked HN and it seemed fine, so I told PagerDuty the problem was resolved. But the problem wasn't resolved - at that point I was just sleeping through it. I'll add more as we find out more, but it probably won't be till later this afternoon PST. |
|
| ▲ | shlomo_z 13 hours ago | parent | next [-] |
| Crazy that Dang literally manages HN in his sleep! We all knew that but I haven't seen any confirmation before this. |
| |
| ▲ | easterncalculus 7 hours ago | parent | next [-] | | I like hacker news but I don't think this site is worth getting paged over lol | | |
| ▲ | archon810 2 hours ago | parent [-] | | You might be underestimating HN's popularity. | | |
| ▲ | locknitpicker an hour ago | parent [-] | | > You might be underestimating HN's popularity. I think you're confusing popularity with criticality. I'm sure everyone in here can withstand a few hours without browsing the page. |
|
| |
| ▲ | dang 13 hours ago | parent | prev | next [-] | | failing to manage HN in my sleep is more like it | | |
| ▲ | jonny_eh 12 hours ago | parent | next [-] | | Your sleep is more important than our work distraction. | | | |
| ▲ | zenoprax 12 hours ago | parent | prev | next [-] | | Which is fine! I don't mind if it's down for a few hours. It reminds me that it's just a place to stop by for a bit before moving on. Like a digital coffee shop that sometimes has a leaky pipe and isn't open right at 7am. I hope it doesn't change (much). | |
| ▲ | wkat4242 7 hours ago | parent | prev | next [-] | | You're still a miracle worker. Single-handedly managing a well-known fully user-contributed site not just technically but moderation in contentious times like these and still keeping it working well and encouraging a positive user community can't be an easy task. | | | |
| ▲ | franciscop 12 hours ago | parent | prev | next [-] | | No worries, please take care of your sleep and thanks for all your hard work | |
| ▲ | dijit 13 hours ago | parent | prev | next [-] | | We all have our moments, and I personally consider HN to be “best effort”, almost like a volunteer project. I’m not certain I’m correct: but thats the optics I have so my expectations are adjusted to that. So don’t beat yourself up please. When I worked for “SaaS unicorn” we typically had multiple levels of escalation, and acknowledging would have done nothing because the alarm would continue firing until fixed. Not sure what’s changed in 15 years of ops, I had assumed it would be better now- I can’t imagine silencing an alert totally by acknowledging it- if its still occurring. I’m totally fine with how you handled it, if anything I am thankful. But that seems to be a system I would improve if I had the time. “mute” is different than “resolve” to me, and both should exist. (Where mute is an acknowledgement of an issue as ongoing.) | | |
| ▲ | giancarlostoro 12 hours ago | parent | next [-] | | Yeah we don't exactly pay to be on HN, not much to complain about. I appreciate everyone who works on HN. | | |
| ▲ | jacquesm 7 hours ago | parent [-] | | We pay with content and with the fact that we attract the talent that eventually ends up powering ycombinator investment rounds. | | |
| ▲ | phantasmish 6 hours ago | parent [-] | | It’s ad-supported. Any post with comments disabled is definitely an ad. Probably a lot of the others are, too. | | |
| ▲ | abustamam 2 hours ago | parent | next [-] | | Your comment makes me realize that I consume HN differently than many others, because I've never seen a post with comments disabled and I've been around here for at least ten years. It's not that I don't think they don't exist — they obviously do because you're mentioning them. I've just never encountered one, primarily because I don't casually browse HN, ever. I subscribe to a pushbullet channel that notifies me when a post hits 500 up votes. That's it. The list of submissions on the home page (even on reddit) is just overwhelming to me so I use the pushbullet channel as a sort of community curated "best of" or "trending" signal. Not to say that I don't procrastinate or waste time doing other nonsense. I can definitely spend a lot of time reading HN comments, as I'm doing right now. Anyway,anyone who finds themselves with a problem with HN should try that out :) | |
| ▲ | mysterydip 4 hours ago | parent | prev [-] | | I assumed the main purpose was to show off the ycombinator batches when they launch. |
|
|
| |
| ▲ | scottlamb 12 hours ago | parent | prev [-] | | This. If it were a business-critical money fountain, I'd expect follow-the-sun SRE coverage. I don't think it is, so I can probably accept drinking my morning coffee without scrolling HN once in a while. There's only so much one can beat oneself up about a slow/incorrect response when the on-call is handled by what, just one person? maybe two people in the same time zone? (Might be wise though to have PagerDuty configured to re-alert if the outage persists.) |
| |
| ▲ | notachatbot123 13 hours ago | parent | prev | next [-] | | And that is a good thing. Sleep tight! | |
| ▲ | sizzle 4 hours ago | parent | prev | next [-] | | Time to train an AI agent on your moderation activity and get some well deserved sleep! | | |
| ▲ | dang 2 hours ago | parent [-] | | We're working on it! well, some of it. I'm pretty happy with how it's developing—the trendline is promising—but not ready to rely on it in prod yet. |
| |
| ▲ | nubinetwork 7 hours ago | parent | prev | next [-] | | I was starting to think you never slept, I remember that one time I emailed you at 1am. :) | |
| ▲ | commandersaki 13 hours ago | parent | prev | next [-] | | Do you have nightmares of failing to manage HN when you sleep too? | |
| ▲ | djmips 8 hours ago | parent | prev | next [-] | | I appreciate what you do. Hope you got some rest when it was all over. | |
| ▲ | feczeri_c 8 hours ago | parent | prev | next [-] | | You deserve a lot of rest! | |
| ▲ | sailfast 12 hours ago | parent | prev [-] | | Yeah, I mean how dare you?! I pay good money for high uptime SLAs! :) |
| |
| ▲ | qingcharles 12 hours ago | parent | prev | next [-] | | I was today years old when I found out Dan sleeps. | | | |
| ▲ | sizzle 4 hours ago | parent | prev | next [-] | | What if Dang made an AI agent of himself for when he sleeps? | |
| ▲ | utopcell 5 hours ago | parent | prev [-] | | By demonstration he didn't. |
|
|
| ▲ | xandrius 10 hours ago | parent | prev | next [-] |
| Hey dang, don't worry. It's just a site for reading articles and reacting to them. Enjoy your deserved sleep and if for a couple of hours it's down, so be it. Thanks for your continued service! |
| |
| ▲ | powvans 10 hours ago | parent [-] | | 100% Though I will say, HN is a pretty great source of information about major outages like the recent AWS and Cloudflare issues. I had a moment this morning where I thought, oh, is there a larger issue and then, oh, HN is down, huh, the next option is so far down my list that it's going to take me a moment to think of it. I hope that serves as a testament to how great this site and the community is. Thanks for all your hard work keeping it that way! | | |
| ▲ | derrida 8 hours ago | parent [-] | | > huh, the next option is so far down my list that it's going to take me a moment to think of it. Option 4: take your grab bag with the tcp over IP shortwave radio, sextant and head for pre-cached month supply of food in the hills. |
|
|
|
| ▲ | Imustaskforhelp 12 hours ago | parent | prev | next [-] |
| I was personally worried if there was some major outage of the whole world or something the first time hackernews didnt work because I didnt expect hackernews to go down but rather, something even more catastrophic than aws going down must happen (because we see major cloud outage posts) https://downforeveryoneorjustme.com/hacker-news This website had many instances of reports, the last I saw were 52 reports in only a short frame of time, the maximum reports on this are 118 it seems. > In this case, though, we had a secondary failure: PagerDuty woke me up at 5:24am, I checked HN and it seemed fine, so I told PagerDuty the problem was resolved. But the problem wasn't resolved - at that point I was just sleeping through it. Its okay I suppose, have you figured out who is crawling hackernews so much tho, was it a ddos attack or an AI company trying to get data, doesn't hackernews support an api and I am sure that there are datasets for it too so Its interesting why they might crawl but we all know the reasons why as they have been discussed here. |
|
| ▲ | neilv 13 hours ago | parent | prev | next [-] |
| Maybe it would be fine if ops alerts were silenced during normal US sleeping hours? HN is important, but unlikely much harm could be done before morning. (Source: Lost a lot of sleep at one place, enough to realize that sleep interruption and deficit has significant costs.) |
|
| ▲ | Rooster61 13 hours ago | parent | prev | next [-] |
| No apology needed. We all needed to stop procrastinating anyways :) |
|
| ▲ | tsoukase 12 hours ago | parent | prev | next [-] |
| During the last week my IP was banned for unknown reason. Glad to hear it might not be a problem from my side. |
| |
| ▲ | dang 9 hours ago | parent [-] | | Yes, sorry! This is the problem - we don't want to block legit users, but if we loosen the bolts, we get flooded. If you browse HN while logged in, that should immunize you against this happening. Also, if it does happen again, you can unban your IP as described at https://news.ycombinator.com/newsfaq.html. But you have to do that from a different IP address, of course. If those things don't work, email hn@ycombinator.com and we'll get it sorted. |
|
|
| ▲ | andy_ppp 12 hours ago | parent | prev | next [-] |
| I’d love to know more about what running a site like HN involves, would be great to get a write up of what it’s like running something like this at this scale (and what kind of traffic you guys get)! |
| |
| ▲ | alwa 12 hours ago | parent [-] | | I can’t put my finger on anything within the last decade, but I seem to recall it running in something close to its current form on a single core on a single server for a long time: https://news.ycombinator.com/item?id=5229522 Re: traffic, dang said (2022): https://news.ycombinator.com/item?id=33454140 I took it as a good reminder that the hard part is the human part: that high-overhead features and UI fripperies are nice but not necessary (or sufficient) to keep a community healthy and vibrant over the decades. (And on the subject of the human side, if you didn’t catch Anna Wiener’s 2019 profile, it’s here: https://www.newyorker.com/news/letter-from-silicon-valley/th... ) | | |
| ▲ | ilamont 12 hours ago | parent | next [-] | | From dang's 2022 comment about traffic: The most interesting number is the 1300 submissions because that hasn't grown since 2011 - it just fluctuates. Everything else has been growing more or less linearly for a long time, which is how we like it. I find that surprising, as 2011-2022 covers an exponential rise in SEO spam and "growth hackers" attempting to drive traffic and links. Or was 1,300 the number of non-flagged submissions? | |
| ▲ | tempest_ 12 hours ago | parent | prev [-] | | The other reality is that as much as this industry is up its ass about scalability you can run a very very busy site on a single machine now a days. A lot of people out here designing their blogs like its 1989. |
|
|
|
| ▲ | giancarlostoro 12 hours ago | parent | prev | next [-] |
| The transparency is deeply appreciated by me and others. We don't pay to keep HN on, so we cannot complain. Thank you and the rest of the team for all you do to give us a corner of the internet that is quite 'different' from the rest of the wild west that is the web. |
|
| ▲ | maxloh 11 hours ago | parent | prev | next [-] |
| Frankly, I don't understand why someone would even try to crawl Hacker News. There is an official dump which doesn't even require parsing HTML at all: https://console.cloud.google.com/marketplace/details/y-combi... |
| |
|
| ▲ | mmooss 11 hours ago | parent | prev | next [-] |
| In a situation like this one, good crisis leadership is essential. dang, HN will help you with tips from vast collected experience (please chip in): 1. Blame: The first thing to do is to point the finger. That doesn't mean analysing the technical issue, which can delay this step and limit your options, but figuring out who is politically easiest to blame. Often, that's the new guy, but outside contractors and vendors without good connections are also a common solution. Even if you are technically responsible for hiring them, you can always push them under the bus with a little skill. This small sacrifice helps unify, focus, and motivate the rest of the team. 2. Emotion: Inject your emotion into the situation and make that the implicit, but indisputable priority. Particularly, outrage and anger - This is completely _____. These people are utterly _____ (I'd use all caps, but that's not allowed on HN). Make sure everyone's attention is over their shoulder, on your emotion, and infect the team with it. Threats are an effective tool here - this is a crisis, and anyone who is calm is not emotionally engaged. Otherwise, they won't care enough about this problem - without you driving them, they probably wouldn't care much at all. Anyway, you don't have time for niceties like empathy or even basic respect. 3. Speed: Respnsiveness to stakeholders is very important. People need answers now. Give them answers they want to hear, outcomes they will be comfortable with. Don't worry if different groups hear different things. Your team will find a way to make it all work - that's their job. 4. Communication: Good communication is essential. Make sure you clearly tell your team what they should be doing; repeat it several times to prevent misunderstanding. Especially people with experience can have minds of their own; keep them on track. The situation is a crisis so you can't take any risks; stay on top of them and everything they do, and give input if you're not certain they are doing exactly what you would be doing. 5. Victimhood: Find a way to turn the tables: Make it about you, and how you're the victim here, and feed the fire with more outrage. With this and outrage, nobody will undermine the team by challenging your ideas or authority, which is the most essential component of a successful outcome. Remember, without you this all falls apart. Have I missed anything? |
| |
| ▲ | yearolinuxdsktp 6 hours ago | parent [-] | | Engagement: make sure that every member of the team is either on the incident bridge or has dropped what they are doing to watch you diagnose the problem. The more eyes on the problem, the more awareness of the pain will be absorbed by all. If members need to leave to get food or put children to bed, tell them to order delivery and to ask their spouse to do their job. Demonstrate human touch by allowing them to turn off camera while they are eating. Comprehensiveness: propose extreme, sweeping solutions, such as a lights-out restart of all services, shutting down all incoming requests, and restoring everything to yesterday's backup. This demonstrates that you are ready to address the problem in a maximally comprehensive way. If someone suggests a config change rollback, or a roll-forward patch, ask them why are gambling company time with localized changes, and ask them why are they willing to gamble company time on technical analysis? Root Cause Analysis Meeting: spend the entire meeting time rehashing the events, pointing fingers and assigning blame. Be sure to mention how the incident could've been over sooner if you just restarted and rolled back every single thing. Be sure to demonstrate out-of-the-box thinking by discussing unrealistic grandiose solutions. When the time is up, run the meeting over by 30 minutes and force all to stay while realistic solution ideas are finally discussed in overtime. This makes it clear to the team that nothing is more important than this incident's RCA--their time surely is not. If someone asks to tap out to pick their kids up after school, remind them that they are making enough money to call them an Uber. Alerting: be sure to identify anything remotely resembling leading indicators, and add Critical-level wake-you-up alerts with sensitive thresholds for those indicator. Database exceeding 50% CPU? Critical! Filesystem queue length exceeding 5? Critical! Heap usage over 50%? Critical! 100 errors in one minute on a 100000 requests per minute service? Critical! Single log line indicating DNS resolution failure anywhere in the system? Critical! (What if AWS's DNS is down again?) Service requests rate 10% higher than typical peak? Critical! If anyone objects to such critical alerts, ask them why do they want to be responsible for not preventing the next incident? |
|
|
| ▲ | showcaseearth 12 hours ago | parent | prev | next [-] |
| Short lived and driven by good intentions– all's good. Thanks again for keeping this thing going! |
|
| ▲ | bicepjai 13 hours ago | parent | prev | next [-] |
| Even after providing firebase endpoint, crawlers come to the site ? |
| |
| ▲ | Bender 12 hours ago | parent | next [-] | | Most crawlers have no concept of what that is. They will follow links to this site and then follow links out of this site even after being told not to [1]. The majority of crawlers follow zero rules, RFC's, etc... The few platforms that do follow standards and rules are akin to a law abiding citizen in Mos Eisley. [1] - rel="nofollow" | |
| ▲ | dang 10 hours ago | parent | prev | next [-] | | Oh my god. It's the crawlpocalypse. | |
| ▲ | busymom0 12 hours ago | parent | prev [-] | | Unfortunately, the firebase API is very bad as they even acknowledge that in their github page. |
|
|
| ▲ | 8cvor6j844qw_d6 11 hours ago | parent | prev | next [-] |
| > anti-crawler protections Sometimes I could not open the comment section, receiving a blank page with "... We're sorry" or something along these lines when opening from new private window. It works when opening normally. Logging in on the private window seems to resolve the issue. Can you take a look on this if possible? |
| |
| ▲ | dang 10 hours ago | parent [-] | | Best to email your IP address to hn@ycombinator.com so we can see if it's blocked. |
|
|
| ▲ | nottorp 13 hours ago | parent | prev | next [-] |
| Can't speak for others, but I'm sure i'll be pretty fine if no one gets woken up if HN is down... Of course, they'd better restore service after they wake up naturally, because I need my HN dose. But it's not worth losing sleep over it. |
|
| ▲ | QuantumNomad_ 7 hours ago | parent | prev | next [-] |
| > the anti-crawler protections also unfortunately hit some legit users, and we don't want to block legit users Was the blocking returning “Sorry.” instead of any page content? A couple of days ago there was a few hours where when I’d go to HN I could load the main page as a non-logged in user. But if I tried to log in I would get “Sorry.” instead. I also got the sorry message if I tried to click on user profiles of other people and a few other pages. I am assuming that the reason I could see the front page itself and discussions on posts on the front page is that they were in a shared cache for non-logged in users, but that when I clicked on some pages like some random user pages those were not in cache and hit the origin server and it blocked those with “Sorry.” like it did for log-in attempts. I also tried to go to the unblock IP page, but that one also returned “Sorry.” For a while I was scratching my head wondering if I had gotten some malware on one of my computers that was aggressively making requests to HN, and that I had become IP banned because of that. Since I think my actual request rate from browsing and commenting should be pretty average. I read HN a lot, but not that much :p Later in the day, or the next day, things were back to normal and I could log in again. Presumably after those anti-crawler protections had been relaxed again. |
|
| ▲ | irishcoffee 13 hours ago | parent | prev | next [-] |
| > The reason I did that is that the anti-crawler protections also unfortunately hit some legit users How does this happen? |
| |
| ▲ | Bender 12 hours ago | parent | next [-] | | How does this happen? Not the person you are asking. Bot operators have an incentive to make crawlers look as much like a human as possible so they do not get blocked. Some of them fail miserably and some nearly succeed. That makes it trivial to accidentally block a real person. I am personally fine with that given I do not pay for this site and have no SLA or contract with it. | | |
| ▲ | arccy 12 hours ago | parent [-] | | some humans also try their best to make themselves look like bots... | | |
| |
| ▲ | pjc50 11 hours ago | parent | prev | next [-] | | Every filter process has false positives and false negatives, especially when crawlers are trying to fake their status. | |
| ▲ | ohhnoodont 11 hours ago | parent | prev [-] | | Last week if you are using a VPN + a browser that limits fingerprinting, you were likely to see error messages accessing HN. |
|
|
| ▲ | shmeeed 14 hours ago | parent | prev | next [-] |
| Looking forward to the post mortem. :) |
| |
|
| ▲ | stmw 8 hours ago | parent | prev | next [-] |
| dang - just to say, we've all done it... |
|
| ▲ | walrus01 9 hours ago | parent | prev | next [-] |
| Just out of curiosity, if HN is still running on one physical system, what does a daily or weekly traffic chart look like for the switch port facing it? |
|
| ▲ | echelon 14 hours ago | parent | prev | next [-] |
| I didn't realize you were carrying the pager too! Kudos! |
| |
| ▲ | malwrar 13 hours ago | parent [-] | | I feel such a sense of kinship for anyone who carries a pager, almost 7 years at my current role doing it. Super cool that dang is among our number :) | | |
| ▲ | geocrasher 12 hours ago | parent | next [-] | | Yep, have been on constant "pager duty" for 2+ years, although I have more help now and I get paged 1-3 times a week instead of per night. Still, carry my lappy everywhere I go. Bought an ARM Windows laptop to get that 20hr battery life so I could worry less during my travels. You know, fancy things like going get food or going grocery shopping. | | |
| ▲ | malwrar 10 hours ago | parent [-] | | Rough shift, my worst was every other week and my boss prior to hiring me was 24/7 just like you. I just carry a backpack with a few batteries + my work laptop, fortunately only a few really bad stories but hooooo boy me and that backpack have seen some fun times. |
| |
| ▲ | wkat4242 7 hours ago | parent | prev | next [-] | | I wish I could still buy a pager where I live :'( | |
| ▲ | idontwantthis 12 hours ago | parent | prev [-] | | Do you carry a literal pager? We use the PagerDuty app. | | |
| ▲ | geocrasher 12 hours ago | parent | next [-] | | My organization is, for now, using OpsGenie. My pager noise: https://www.soundjay.com/transportation/sounds/train-crossin... That will not only wake the dead, it'll wake me no matter how asleep I am. | | |
| ▲ | malwrar 10 hours ago | parent | next [-] | | Haha I made the mistake of using the default iPhone ringtone, now when strangers get called in public my heart rate spikes. Too scared to change it. | |
| ▲ | darkwater 10 hours ago | parent | prev [-] | | The "for now" is very important because it will be sunset in 1 year and something. I can recommend you Incident.io or Rootly as alternatives. |
| |
| ▲ | kunwon1 12 hours ago | parent | prev | next [-] | | It may interest you to know that pagers are still a thing, Motorola still makes them, and I know that one major use case is volunteer fire departments I used to work on Motorola Minitor 5 pagers. Looks like they recently released their newest model, the Minitor 7 I wonder if pagers are still used in hospitals? I imagine so | | |
| ▲ | sgerenser 11 hours ago | parent | next [-] | | Doctors on call at hospitals also routinely still use pagers. There was a planet money episode on it a couple years ago: https://www.npr.org/2023/12/08/1197955913/doctors-pagers-bee... | | | |
| ▲ | sharpshadow 11 hours ago | parent | prev | next [-] | | The AUBMC hospital is definitely using them as well as the paramilitary in that country, at least until recently. | |
| ▲ | ZuoCen_Liu 8 hours ago | parent | prev | next [-] | | Now, whenever I see a pager, I think of explosions. Haha. | |
| ▲ | ErroneousBosh 10 hours ago | parent | prev [-] | | There's a company in England called "Cascode" who make firefighter alerters. These are really basic "beeper" pagers, which you can program to have a bunch of different tones and LED patterns based on the RIC and Subcode. I look after several thousand of these across several hundred paging sites. They're relatively inexpensive (70 quid or so in quantity) and they last about six weeks on a commonly-available AA battery. The batteries go flat enough to trigger the "low battery" beep at about 3am, for some reason. I don't know why. There's no messaging involved, although the encoders are capable of sending a text string. The message is "get up and get down to the fire station right now", which generally needs no further explanation. POCSAG is unencrypted, so there would be privacy concerns with sending actual incident information in the clear with it. While we're on the subject of old tech, until BT finally cut the last of them off, we use dialup modems to control the encoders (not dialup internet, just a hundreds-of-miles serial cable) as a backup, and dot-matrix printers to print out a hardcopy message for the crews to pick up. All very low-tech. All very fixable. All stays working if you don't mess with it. https://cascode.co.uk/products/2ar2-and-2ar3/ | | |
| ▲ | wkat4242 7 hours ago | parent [-] | | Encryption is easily doable even with one way pagers. With one way you will lose the perfect forward secrecy option but that's usually ok. |
|
| |
| ▲ | malwrar 10 hours ago | parent | prev [-] | | Oh no, I just always hear it termed that way and it captures the “feeling” for me since it feels like a dedicated device. I just just carry a work phone w/ PagerDuty during my shift. |
|
|
|
|
| ▲ | altairprime 13 hours ago | parent | prev | next [-] |
| Decades ago I had to write a Perl script to auth to the site for proper downtime checking. Some things never change :) Good luck with the triage. |
|
| ▲ | racl101 12 hours ago | parent | prev [-] |
| dang! |
