RE: DOS ATTACK

From: Black, Braden (BBlack@VSCat.com)
Date: 10/29/02 

From: "Black, Braden" <BBlack@VSCat.com>
To: "'Jim.Hunt@nwsc.k12.in.us'" <Jim.Hunt@nwsc.k12.in.us>
Date: Tue, 29 Oct 2002 10:41:47 -0500

Your friend might want to look at Hogwash (http://hogwash.sourceforge.net/).
Set it up on a box upstream of the web server, and configure it to send a
reset for any HTTP request that includes a referrer of the attacker's site.
This will prevent any of the DOS hits from ever hitting the web server.
Furthermore, it will save your friend's bandwidth, as every inbound DOS
connection will be reset before any significant volume of traffic has come
across the line.

- Braden

----- Original Message -----
From: "Hunt, Jim" <Jim.Hunt@nwsc.k12.in.us>
To: <Incidents@securityfocus.com>
Sent: Sunday, October 27, 2002 11:59 PM
Subject: DOS ATTACK

> I have a friend that has a DOS Attack going on against their website. It
is being done by someone with a very popular website trying to squash a
little guy. He is doing it be placing 1 pixel by 1 pixel inline frames in
his webpages and having them load my friends webpage. It is killing his
server and bandwidth.
>
> What can we do to block? The Server is W2K with IIS.
>
> Thanks!
>

----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management
and tracking system please see: http://aris.securityfocus.com

----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management
and tracking system please see: http://aris.securityfocus.com

Relevant Pages

  • Re: Best Server OS for Someone That Does not Want to Touch a Shell on a Regular Basis?
    ... I always do upgrades and configure services through the shell and I am not aware too much about the GUI alternatives... ... If your friend prefer to use a GUI rather than command line interface, ... On the other hand, if your friend is willing to accept a bit of shell here and there, and a good deal of doc reading, I would recommand using FreeBSD or Debian as the underlying server. ... The only easy to configure and to maintain web server I know is Cherokee. ...
    (freebsd-questions)
  • Re: GB2RS NEWS Sunday 16th May 2010
    ... Why does google need to be your friend to assist you to read off an IP ... It doesnt. ... You foolish boy... ... Every time you go to the web server you know it's IP addres - how else ...
    (uk.radio.amateur)
  • Re: Safety Review released for publication
    ... law has dictated that our ever patient webmaster (and very good friend) is ... currently experiencing problems with the web server. ... We'll post an updated link once the website is sorted out. ...
    (rec.sport.rowing)
  • Re: Trying to get my server working
    ... This is primarily a web server but I am limited on funds and want to ... a friend gave me and hope to take the first test in about 6 months. ... know the best case and then also the cheap way. ...
    (microsoft.public.windows.server.sbs)
  • Moving application under VS2005 web server to IIS
    ... A friend of mine has developed an ASP.NET application with VS2005. ... this application has been run for testing purposes in the ... default web server VS2005 has. ... I've copied application's folder to my machine and put it under IIS. ...
    (microsoft.public.dotnet.framework.aspnet)