Security Basics
RE: Directory Scanner Feb 14 2012 02:07PM
Calderon, Juan Carlos \(GE, Corporate, consultant\) (juan calderon ge com) (1 replies)
How to prevent Dos and DDoS, Feb 16 2012 12:54AM
Dinh Truong Quang (dinhtq gmail com) (7 replies)
Re: How to prevent Dos and DDoS, Feb 16 2012 07:49AM
Quentin Chung@Programmer (quentin chung programmer com hk) (1 replies)
Re: How to prevent Dos and DDoS, Feb 16 2012 08:07AM
LIAD Mizrachi (liadmz gmail com) (1 replies)
Re: How to prevent Dos and DDoS, Feb 17 2012 02:59AM
security (at) stealthnodes (dot) com [email concealed] (security stealthnodes com)
Re: How to prevent Dos and DDoS, Feb 16 2012 07:20AM
Teddy Quentin Chung (quentin chung programmer com hk)
Re: How to prevent Dos and DDoS, Feb 16 2012 06:59AM
Claudiu Hulea (Claudiu Hulea dotpix ro)
Re: How to prevent Dos and DDoS, Feb 16 2012 06:39AM
Steven (swierckxlists gmail com)
Re: How to prevent Dos and DDoS, Feb 16 2012 06:38AM
NetRunner Zoner (netrunnerblack gmail com)
RE: How to prevent Dos and DDoS, Feb 16 2012 06:33AM
Dave, Manish, R. - EIL \(MUM\) (Manish Dave essar com)
My two cents :
There are two aspects to the solution. 1)What you as an organization can do and 2)what tier 2 or tier 1 ISP can do.
You have to define a strategy around the above points and take a call as to what extent you would go to protect or prevent a denial of service (depending on how important availability of the website is).
A normal DoS attack can be addressed by having combination of NBAD (Network Based Anomaly Detection), SIEM (Incident & Event correlation mgmt.) and strong IPS policies. To address large attacks(10-30 GB probably), you need to subscribe to cloud based DoS protection service from your ISP, additionally. Anything beyond this, may either be a focused hacker community attack or a state sponsored attack. For this you need to be in touch with country CERT, CSIRT & other govt. telecom regulatory authorities, who can come to your rescue, should there be a persistent attack. There's a nice article on Cisco website describing the solution (with Arbor Peakflow) :

www.cisco.com/assets/cdc_content_elements/networking_solutions/service_p
rovider/ddos_protection_sol/ddos_protection_sol_wp_0603.pdf

Regards,

Manish Dave, CISM

ManishDave|Chief Information Security Officer|Essar Group|
Essar House , 11 , K .K.Marg,Mahalaxmi,Mumbai|400034|Maharashtra|India|
T +91 9930134942|+91 22 66601100 Ext.: 1454|Blackberry PIN 2365D8AE|
E Manish.Dave (at) essar (dot) com [email concealed]|www.essar.com|

-----Original Message-----
From: listbounce (at) securityfocus (dot) com [email concealed] [mailto:listbounce (at) securityfocus (dot) com [email concealed]] On Behalf Of Dinh Truong Quang
Sent: Thursday, February 16, 2012 6:24 AM
To: 'Calderon, Juan Carlos (GE, Corporate, consultant)'; htroup (at) acm (dot) org [email concealed]
Cc: security-basics (at) securityfocus (dot) com [email concealed]; webappsec (at) securityfocus (dot) com [email concealed]
Subject: How to prevent Dos and DDoS,

Dear All,

I looking for good solution to prevent DoS, DDoS for my website , Anyone have a good ideal ebout this problem can help me ?pls

Thanks and Best Regards,

DINHTQ

------------------------------------------------------------------------

Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442
f727d1
------------------------------------------------------------------------

Please don't print this e-mail unless you really need to.

Disclaimer:
The information contained in this electronic message and in any attachments to this message is confidential, legally privileged and intended only for the person or entity to which this electronic message is addressed. If you are not the intended recipient, please notify the system manager and you are hereby notified that any distribution, copying, review, retransmission, dissemination or other use of this electronic transmission or the information contained in it is strictly prohibited. Please accordingly also note that any views or opinions presented in this email are solely those of the author and may not represent those of the Company or bind the Company. This message has been scanned for viruses and dangerous content by Mail Scanner, and is believed to be clean. The Company accepts no liability for any damage caused by any virus transmitted by this email. www.essar.com <http://www.essar.com/> .

------------------------------------------------------------------------

Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442
f727d1
------------------------------------------------------------------------

[ reply ]
Re: How to prevent Dos and DDoS, Feb 16 2012 05:58AM
Ivan .Heca (ivanhec gmail com)


 

Privacy Statement
Copyright 2010, SecurityFocus