, 2004-12-13
Online extortion is quietly affecting thousands of businesses, for a very simple reason: it works. The big question then becomes, how will you and your company decide to respond?
Expand all |
Post comment
|
Online Extortion Works
, 2004-12-13 Online extortion is quietly affecting thousands of businesses, for a very simple reason: it works. The big question then becomes, how will you and your company decide to respond?
Expand all |
Post comment
|
|
|
Privacy Statement |
It boils down to being able to block the traffic as close to the source as possible, and in the worst case, at your own ISP.
But the REAL problem is identifying which traffic is part of the DDoS. If all the traffic is to your web server itself, and actually completes the 3-way handshake, or even an HTTPS/SSL negotiation, you cannot tell whether that is legit or not - it's the sort of thing that your real customers would also be doing!
The only (impractical) way of dealing with a DDoS is to have enough capacity that you can absorb whatever the extortionist throws at you. That means bandwidth, CPU, memory, etc.
As I say, not practical for most people.
[ reply ]
Link to this comment: http://www.securityfocus.com/comments/columns/283/29494#29494