CrazyEngineers
CrazyEngineers

  • Prevention from DDOS attack

    Manish Goyal

    Member

    Updated: Oct 23, 2024
    Views: 1.1K
    DDOS attack is one of the most deadly attack

    It has many categorizes like ping of death,smurf attack etc

    among all Zombie is one of the most deadliest attack, that can even force you to shutdown your server

    Let us discuss various preventive or control measures that can be done when encounter any such attack on your server
    0
    Replies
Howdy guest!
Dear guest, you must be logged-in to participate on CrazyEngineers. We would love to have you as a member of our community. Consider creating an account or login.
Replies

  • Kaustubh Katdare

    AdministratorMar 6, 2011

    Yeah, the recent attack on Wordpress was DDOS from China. I believe Firewall is the best way to protect DDOS attacks. But how many here really know about what a DDOS attack is? 😀
    Are you sure? This action cannot be undone.
    Cancel

  • Manish Goyal

    MemberMar 6, 2011

    For those who don't know about DDOS attack

    #-Link-Snipped-#
    Are you sure? This action cannot be undone.
    Cancel

  • PraveenKumar Purushothaman

    MemberMar 7, 2011

    In simple words, we can say a DDOS attack is blocking a service from servicing its clients, by following ways:
    1. Not allowing to resolve (DNS Poisoning).
    2. Giving more traffic and making it difficult for others to use it.
    Are you sure? This action cannot be undone.
    Cancel

  • slashfear

    MemberMar 7, 2011

    Hey goyal Nice thread!! I guess this prevention issue was already discussed in CE Here is the link for your reference guys!! : #-Link-Snipped-##-Link-Snipped-#


    -Arvind
    Are you sure? This action cannot be undone.
    Cancel

  • durga ch

    MemberMar 7, 2011

    One of the well known and very common form of DOS is done by the ' ping' command. The protocol ( ICMP) is disbaled on most of the computers for the same reason. Though a 'ping' packet can be typically small, heavy flodding of ping packets can bring the server down as the servers resources are consumed in responding to the heavy inflow of ICMp requests.
    Are you sure? This action cannot be undone.
    Cancel

  • PraveenKumar Purushothaman

    MemberMar 7, 2011

    durga
    One of the well known and very common form of DOS is done by the ' ping' command. The protocol ( ICMP) is disbaled on most of the computers for the same reason. Though a 'ping' packet can be typically small, heavy flodding of ping packets can bring the server down as the servers resources are consumed in responding to the heavy inflow of ICMp requests.
    But still we can use ping google.com stuff right? But seriously I didn't know that ICMP Ping can cause DDOS... By the way, what is Ping of Death?
    Are you sure? This action cannot be undone.
    Cancel

  • slashfear

    MemberMar 7, 2011

    praveenscience
    But still we can use ping google.com stuff right? But seriously I didn't know that ICMP Ping can cause DDOS... By the way, what is Ping of Death?
    Hey buddy Durga is right that's mostly how DDOS are performed (I have written a DDoS program by using ping) what we do is normally when you use the ping command it pings a constant packet of data to the server and tries to get a response with out loss of data but when you increase the size of the amount of data (that's the packet size) it obliviously consumes a lot of bandwidth of the host resulting in denial of services for others......


    -Arvind
    Are you sure? This action cannot be undone.
    Cancel

  • durga ch

    MemberMar 7, 2011

    ping of death almost refers to same, only that a larger chunk of ICMp packet is deleiberately sent to bring down the receiver.
    DDOS has nothing to do with the example I will mention, but I am correlating both. You must have heard of broadcast stroms right? Where a host on a switched network sends a message and in the end screw up the whole swicthed network as 1 either STP is not enabled or host is not found. ??! That one single BC packet, ends up going in rounds on whole network and eating up the Bandwidth, thus bringing the whole network down

    hmm, as far as your question regarding google is concerned, there should be a mechanism to avoid such continuous stream of ICMp requests benign sent down. Sometimes ICMP is enlisted in the ACLs itself to avoid any intermediate network to trasnport the packets.
    Are you sure? This action cannot be undone.
    Cancel

  • PraveenKumar Purushothaman

    MemberMar 7, 2011

    Right now I am using my Windows XP System and it runs three servers in it... Two application and one database. Will the ICMP Requests be disabled? If so, how to check the status. But I am damn sure that my port 80 is blocked and another port where my second app server runs is not blocked. 😀
    Are you sure? This action cannot be undone.
    Cancel

  • durga ch

    MemberMar 7, 2011

    hmm, I myself did not try out this but thought the link might help you , ( just to suffix the discussion going on)

    #-Link-Snipped-#
    Are you sure? This action cannot be undone.
    Cancel

  • PraveenKumar Purushothaman

    MemberMar 7, 2011

    Hey thanx... Not applicable for Windows XP SP3... 😀 So I guess I have to figure it out on my own to block ICMP Requests... 😔
    Are you sure? This action cannot be undone.
    Cancel

  • durga ch

    MemberMar 7, 2011

    just guessing, but can it be that the protool is defaultedly blocked or something?
    Are you sure? This action cannot be undone.
    Cancel

  • PraveenKumar Purushothaman

    MemberMar 7, 2011

    durga
    just guessing, but can it be that the protool is defaultedly blocked or something?
    May be I have to use third party tools for that! 😛
    Are you sure? This action cannot be undone.
    Cancel
Home Channels Search Login Register