[vlovich123]

To all the ones making fun, yes his point about firing and it being fine is a problem. However, any IT team that shows me a dashboard that can actually measure attacks I’m going to be skeptical of. At best you’re seeing probes and you don’t know the intent until it’s too late and then you comb through the logs and find breadcrumbs that no monitoring tool told you about. A port scan is not an attack.

The more likely story is the IT team used this as a way to try to get more budget because politicians don’t respond to anything else (whether or not the budget is justified, impossible to say from the outside). Or they were incompetent and truly believed their firewall was measuring attacks and they stopped them all.

Overloaded servers likely is just bad engineering because there’s many tools (many/most free or incredibly cheap) to help with that. Heck, SO, one of the most trafficked sites on Earth, ran on a number of Xeon machines. I suspect their IT infrastructure was poorly optimized.