Monday, March 24, 2008

Denial-of-service attack DoS DDoS Detection and Prevention


What is DoS (Denial-of-Service attack) or DDoS (Distributed Denial-of-Service attack)? And How we Detect and Prevent it?

Denial-of-Service attack DoS, or Distributed Denial-of-Service attack DDoS is an attempt to make a computer resource unavailable to its intended users. Although the means to, motives for, and targets of a DoS attack may vary, it generally consists of the concerted, malevolent efforts of a person or persons to prevent an Internet site or service from functioning efficiently or at all, temporarily or indefinitely.

One common method of attack involves saturating the target (victim) machine with external communications requests, such that it cannot respond to legitimate traffic, or responds so slowly as to be rendered effectively unavailable. In general terms, DoS attacks are implemented by:

=> Forcing the targeted computer(s) to reset, or consume its all resources so that it can no longer provide its service;

=> Obstructing the communication media between the intended users and the victim so that they can no longer communicate adequately.

The CERT (Computer Emergency Readiness Team) defines symptoms of DoS or DDoS attacks to include:

+ Unusually slow network performance
+ Unavailability of a particular web site
+ Inability to access any web site(s)
+ Dramatic increase in the number of spam emails received (Mail Bomb )

There is Many Kinds of DoS or DDoS Attack Characterized By Methods, Includes:

+ Flooding a network, thereby preventing legitimate network traffic;
+ Disrupting a server by sending more requests than it can possibly handle, thereby preventing access to a service;
+ Preventing a particular individual from accessing a service;
+ Disrupting service to a specific system or person.

Currently There are Five Basic Types of DoS or DDoS Attack are Common in Internet:

1. consumption of computational resources, such as bandwidth, disk space, or CPU time;
2. disruption of configuration information, such as routing information;
3. disruption of state information, such as unsolicited resetting of TCP sessions;
4. disruption of physical network components.
5. obstructing the communication media between the intended users and the victim so that they can no longer communicate adequately.

Some Common DoS or DDoS Attack Type:

==> ICMP floods ***

==> Teardrop attack ***

==> Peer-to-peer attacks ***

==> Application level floods ***

==> Nuke ***

==> Distributed attack ***

==> Reflected attack ***

==> Unintentional attack ***

To Prevention and Response Including Surviving Attacks, I will add more on my spare time. By this Time You May Go Through Links Bellow:

Useful Links Related To DoS or DDoS:

=> RFC 4732 By Internet Denial-of-Service Considerations
=> How to Prevent Denial of Service Attacks

=> CERT's Guide to DoS attacks.

=>Some CISCO IoS tips for Internet Service Providers By Mehmet Suzen


Any Idea in Your Mind? Please Add it to Comment Section.

Thanks

Ahamed Bauani

HP: +880-1818-BAUANI

-->[*** More Content Is Coming Soon]
Posted by Bauani at 3/24/2008 12:57:00 PM
Labels: ,

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Other Posts

Labels / Category

3G (4) Adsense (2) AKTEL (2) Amateur Radio (3) APNIC (5) Bajaj Discovery (1) Bajaj Pulsar (1) Bangla News (5) Bangladesh (29) Bangladesh Computer Market (1) Bangladesh Cricket (2) Bangladesh earthquake (3) Bangladesh Educational Board (1) Bangladesh Energy (4) Bangladesh ICT (15) Bangladesh Internet Service (14) Bangladeshi Credit Card (3) Bangladeshi News Site (3) Bank in Bangladesh (7) Bank of Bangladesh (10) Banking in Bangladesh (10) BGMEA Bulding (1) Big File Download (3) blackhat (1) BLOG (6) Bogon (3) bot (2) BTCL (3) BTRC (13) BTTB Internet (10) BTTB Submarine Cable (9) Byke Hijack (1) Cacti (1) Call Block (1) Carbon Credit (1) CentOs (2) CentOs Bangladesh (2) Charity (2) Chrome (2) Computer Booting (1) Credit Card (10) Credit Card in Bangladesh (8) Crime (3) CyberCrime (11) Cyclon (1) DDoS (8) Dengue (1) Denmark (1) Dhaka earthquake (5) DNS (3) DNSSEC (2) Domain (9) DoS (4) dot bd domain (3) Dot CO.CC (2) Download (4) Drive not opening on click (1) DV Lottery 2010 (2) E-Learning (1) earthquake (5) EARTHQUAKE BANGLADESH (2) EARTHQUAKE DHAKA (2) earthquake in Bangladesh (5) earthquake in Dhaka (5) Email (7) Email Full Header (3) Email Sender Identify (4) Entertainment (2) Fake Email Sender (5) Firefox (8) FTP (1) Funny (4) GMail (4) Google (18) GPRS Settings (1) GrameenPhone (1) HAM (4) Health (3) Hobby (1) IGW (3) IIG (3) India (1) Indian ICT (1) Indian IT (1) Internet (19) Internet Mail (1) Internet Security (9) iPhone (3) iPhone Bangla (2) iPhone Bangladesh (2) iPhone in Dhaka (2) iPod (1) IPv4 Allocation (8) ipv6 (10) islam (4) ISOC (3) Linux Articles (6) Metal News (1) Microsoft (4) Microsoft buy Yahoo (1) Mirror Server (1) Mobile Phone (3) Mobile Phone Internet (1) Mobile Phone News (3) Mobile Phone Operator (6) Mobile Phone User (3) Mozilla (8) Mozilla Firefox (8) Myself (1) Mystery (1) Netcraft (4) Network Monitoring (4) neverBot (2) News Site (1) Nokia (3) Oil Price (2) Online Security (7) Paypal in Bangladesh (6) Personal View (1) Phishing (2) Pigeons (1) Postfix (7) PSTN (2) RANGS Bulding (1) Relay Host (2) robot.txt (1) robots.txt (2) Scour (2) Scour.com (2) Second submarine cable (3) Sendmail (4) Share Market (4) Smart Relay (3) SSC Result 2008 (1) Stock Market (3) Technology (1) Ubuntu (4) UCB (5) UCBL (5) URL Redirect (2) Virus (3) Virus Infected Windows (3) Virus Information (3) Warid (2) Web Spider (3) Webhosting (6) Wimax (4) Windows (1) Windows Problems (1) Wireless Internet in Bangladesh (5) Yahoo (4) Yahoo Sold (1)

Share it