Re: DoS attack... what to do?
From: Steve Friedl (steve_at_unixwiz.net)
Date: Tue, 4 Jan 2005 14:12:22 -0800 To: "Shaffer, Bruce" <BShaffer@PRAC.com>
On Tue, Jan 04, 2005 at 03:19:14PM -0500, Shaffer, Bruce wrote:
> About the only thing you can do for a DDoS is to work with your ISP to
> control things on his net. They should be more than happy to work with you
> as this affects their performance and resources including their SLAs.
Actually, many ISPs are not terribly happy to "work with you", as "their
time" is a resource just as much as their bandwidth is, and this often
requires the attention of the most senior people. Customers who repeatedly
get DoS'd often find themselves invited to take their business elsewhere.
> Now the question is: Who did you piss off?
Same thing I asked him :-)
Stephen J Friedl | Security Consultant | UNIX Wizard | +1 714 544-6561
www.unixwiz.net | Tustin, Calif. USA | Microsoft MVP | email@example.com