All Questions
Tagged with ddos ip-spoofing
12 questions
1
vote
1
answer
330
views
How does IP traceback works? [closed]
In part prompted by the difficulties in determining the true origins
of DDOS attacks featuring spoofed IP addresses, researchers have
attempted to develop the concept of IP traceback: determining ...
- 427
3
votes
2
answers
1k
views
Why is IP spoofing still possible?
What are valid usages?
Why don't ISPs prevent this by default? Do any major ISPs do this already?
- 1,682
1
vote
1
answer
4k
views
What is Ingress filtering and how does it work?
I know that Ingress filtering is used to try and verify that a packet actually came from the ip address that it claims to have come from. But how is it possible to verify this when all you have is the ...
- 133
1
vote
1
answer
11k
views
Iptables rules to prevent IP Spoofing
We had following below iptables rules that exist in our web front-end boxes to prevent IP Spoofing:
-A INPUT -s 255.0.0.0/8 -j LOG --log-prefix "Spoofed source IP"
-A INPUT -s 255.0.0.0/8 -j ...
- 113
5
votes
2
answers
1k
views
Is BCP38 enough to stop DDOS attacks?
BCP38 is a network security standard which has the scope to prevent spoofing the source of DDOS attacks. The main idea is that the ISP shouldn't forward traffic which is not coming from it's network ...
- 659
2
votes
4
answers
9k
views
Can one use IP-spoofing to anonymize DDOS attacks?
Since it is possible to fake the source IP of a packet, is it also possible to anonymize DDOS attacks?
- 121
0
votes
1
answer
545
views
How does IP Spoofing increase the upload speed?
I was talking earlier to a script kiddie and claimed that IP spoofing can increase the upload speed in a DDOS attack?! that does not make any sense to me
According to him if your server has an upload ...
- 8,853
0
votes
1
answer
2k
views
Preventing DDoS from faked IP address [duplicate]
According to this answer, it's possible to send a network packet with a forged source IP address.
So, what methods a server administrator can take to prevent/block a countless requests from faked IP ...
- 219
8
votes
6
answers
13k
views
Why can't we block DNS Amplification attack by blocking UDP packets or DNS response packet?
I mean if the attacker tries to ask all the open DNS resolver respond to a web server. The web server can just block its UDP ports.
If the all the DNS response go to a Authoritative Nameserver(victim)...
- 777
-3
votes
1
answer
681
views
Spoofed DDoS mitigation / DNS amplification mitigation [duplicate]
Recently my server has been attacked multiple times, after looking at my firewall I've come to the conclusion that the IP's are spoofed. (10,000+ IP's connect at once)
I'm running Win server 2012 x64 ...
- 1
7
votes
1
answer
358
views
Parabolic Denial Of Service -- Would it work?
Would this DoS attack be effective:
Attacker determines target (10.0.0.1)
Attacker sends ack packets to a buch of web servers with a src addr of 10.0.0.1
Servers reply to 10.0.0.1 with syn packets
...
- 505
109
votes
12
answers
43k
views
Why is it difficult to catch "Anonymous" or "Lulzsec" (groups)?
I'm not security literate, and if I was, I probably wouldn't be asking this question. As a regular tech news follower, I'm really surprised by the outrage of Anonymous (hacker group), but as a ...
- 2,175