Re: Web site being attacked!
From: Anthony (anthonyxxx@xxx.com)
Date: 07/18/02
- Next message: penguin: "system buffer full"
- Previous message: Shenan: "Re: Web site being attacked!"
- In reply to: Shenan: "Re: Web site being attacked!"
- Next in thread: karl x y: "Re: Web site being attacked!"
- Reply: karl x y: "Re: Web site being attacked!"
- Reply: wombat: "Re: Web site being attacked!"
- Reply: Steve: "Re: Web site being attacked!"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Anthony" <anthonyxxx@xxx.com> Date: Thu, 18 Jul 2002 11:14:44 +0800
Shenan
Thank you very much for your advice.
BTW, my web hosting company or ISP is pretty irreponsible. When I first
reported my problem to them, their first reponse is to disconnect us from
their network so that their clients won't be affected. :-(
I will look into the MS site for more info.
Thanks again
Anthony
"Shenan" <shenans@hotmail.com> ¼¶¼g©ó¶l¥ó·s»D
:ujcbnnrod0c2c6@corp.supernews.com...
> Wow.
>
> Okay - How about you go to Microsoft's web site and look up some security
> info. *grin*
> Don't run an IIS server without some knowledge of security issues..
> Otherwise, you get to be the one person who gets cut off by your
ISP/Network
> Security group because YOUR server is attacking everyone else. *smile*
>
> http://support.microsoft.com/default.aspx?scid=kb;EN-US;q282060
>
> MSBA - Download and install/Run this:
>
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/
> tools/Tools/mbsahome.asp
>
> (URL likely wrapped.)
>
> Those things (the first and installing/using the second) should point you
to
> the security tools you need.
>
> --
> Shenan
>
> "Anthony" <> wrote in message :
> > Where can I find IISLock?
> >
> > "Shenan" <>
> > > Have you installed IISLock?
> > > All patched?
> > > Report the IPs to your ISP/Network Admin and let them handle it.
> > >
> > > --
> > > Shenan
> > >
> > > "Anthony" <> wrote in message:
> > > > Dear all
> > > >
> > > > I am running a web site on W2K server and IIS 5.0. The usual no. of
> > > > concurrent connections is from 100 to 500 users during peak hours.
In
> the
> > > > past week, the web site has encountered a sudden increase in the no.
> of
> > > > concurrent users, and the no. of concurrent connections can jump to
> 3,000 or
> > > > above, which overloads IIS and forces other visitors to leave. Each
> attack
> > > > will just last for 15 mins or so.
> > > >
> > > > Revealing the output from netstat, I can find out the there are many
> > > > connections attached to port 80 in the server and the attackers are
> from one
> > > > of the local ISPs but they are sitting behind the proxy servers so
it
> is
> > > > difficult to trace their real identities. I have thought of
installing
> a
> > > > firewall but the cost is too high and I cannot afford it.
> > > >
> > > > I want to know is there any simple ways to block these attacks under
> IIS?
> > > > Any suggestions are welcome.
> > > >
> > > > Thanks
> > > >
> > > > Anthony
>
>
- Next message: penguin: "system buffer full"
- Previous message: Shenan: "Re: Web site being attacked!"
- In reply to: Shenan: "Re: Web site being attacked!"
- Next in thread: karl x y: "Re: Web site being attacked!"
- Reply: karl x y: "Re: Web site being attacked!"
- Reply: wombat: "Re: Web site being attacked!"
- Reply: Steve: "Re: Web site being attacked!"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
