[XML-DEV Mailing List Archive Home] [By Thread] [By Date] [Recent Entries] [Reply To This Message] Re: Can A Web Site Be Reliably Defended Against DoS Att acks?
On Wed, Feb 04, 2004 at 04:24:46PM -0600, Bullard, Claude L (Len) wrote: >> From: Louis_Smith@K... [mailto:Louis_Smith@K...] >> I suggest reading the story of the DDoS attacks on Gibson Research's site >> (grc.com) > Thanks Louis. That is an excellent read with a good > overview of TCP/IP and how this all works. I'm sure > many here know this, but when one has to explain it > to customers, this is a good resource. I had the dubious pleasure of chatting online with the bot author once (and then my internet connection stopped working for a while :-X ). These days there are also p2p ddos botnets, which can be harder to deal with than the centralized psychohug bots described on grc.com. There are programs in which an MS Windows (ab)user can click on a couple of pretty icons to scan thousands of Internet addresses, and infect automatically any Windows XP systems with no Admin password and/or file sharing turned on. I encountered someone who had infected tens of thousands (literally) of PCs this way. He was 15, and the FBI weren't interested unless he'd done provable financial damage. I think in the long term p2p federated/distributed network services may be a way to avoid some of the vulnerabilities -- you can then ask any neighbouring computer to fetch a resource for you, without being able to contact the resource directly. Liam -- Liam Quin, W3C XML Activity Lead, http://www.w3.org/People/Quin/ http://www.holoweb.net/~liam/
|
PURCHASE STYLUS STUDIO ONLINE TODAY!Purchasing Stylus Studio from our online shop is Easy, Secure and Value Priced! Download The World's Best XML IDE!Accelerate XML development with our award-winning XML IDE - Download a free trial today! Subscribe in XML format
|