Has anyone here looked into
   [1]http://blog.bittorrent.com/tag/maelstrom/ ?
   It would seem to offer some DDoS and other protections.

   On Wed, Sep 30, 2015 at 11:53 AM, Georgi Guninski
   <[2]guninski@guninski.com> wrote:

     On Wed, Sep 30, 2015 at 08:13:09AM +0100, Oshwm wrote:
     > It is behind Cloudflare's MiTM service which adds web services
     names to their existing certs as alternative Names.
     >
     > So your SSL/TLS connection is terminated on Cloudflare's web
     application firewalls and NOT the web servers that you think is
     terminating it.
     >
     lol, did CA based PKI (d)evolved to buying an usable cert, but not
     having the private key?
     How do you survive large scale DDOS?
     AFAICT most service providers will ditch you, since you are hurting
     their other customers.
     More ontopic, Snowden has nearly meeelion twatter actor followers
     and
     some of them call him "traitor", not sure how he deals with the
     twatter
     spam.
     IIRC (from Snowden's dox) the dear NSA infiltrated some? CC of
     botnets,
     so they can use them for any kind of DDOS.

References

   1. http://blog.bittorrent.com/tag/maelstrom/
   2. mailto:guninski@guninski.com