All Questions
Tagged with ddos denial-of-service
37 questions
0
votes
2
answers
567
views
Can CDN caching prevent DoS attacks?
Let's say I use Cloudflare to cache my images, CSS, and JS files. Requests for the HTML content itself still hit my server and an attacker could use that to his advantage.
However, if I tell ...
- 161
0
votes
0
answers
207
views
DOS Attack from local network to wan, identification and Prevention
Past few days, we have been facing a possible syn flooding DOS attack. This attack happens twice a day (afternoon and at night), one random IP in our network gets active (even though the system on ...
3
votes
1
answer
3k
views
Prevent DDOS Attack on GCP App Engine
I've launched my application on GCP App Engine with 8 micro-services.
I did an overload test with apache j-meter and it seems to scale well.
However this can also be used as a DOS attack on my ...
google-cloud-platform
0
votes
2
answers
253
views
Server's unusual outgoing traffic about 12K GB and Incurred high server traffic costs
Last night my server(centos5) had unusual outgoing traffic, About 12kGB and right now my server is down because I have to pay that traffic's cost. My server is a small server for a small App. I don't ...
- 351
-2
votes
2
answers
155
views
How does the DNS lookup query work?
Let's say, my domain's nameservers are registered like this:
ns1.domain.com.
ns2.domain.com.
ns3.domain.com.
The physical location for each of the server are as follows:
ns1.domain.com. - in Tokyo
...
- 137
5
votes
3
answers
10k
views
What is a good way to detect DoS and DDoS in Fail2Ban?
I am configuring Fail2Ban on my Ubuntu web server to prevent it from being a victim of DoS / DDoS. I don't want to use Cloudflare because I have to route my DNS over and use their SSl cert.
...
- 365
2
votes
0
answers
105
views
Will More vCPU's and RAM Help Protect Against Some Smaller Scale DDoS Attacks?
Obviously having more vCPU's (virtual CPU's) and more RAM by them self won't be able to alone help stop and/or prevent a DDoS attack, but let's say after a DDoS attack is finished and/or slowing down ...
- 21
0
votes
1
answer
4k
views
How should I test google cloud's DDOS protection?
I've an application deployed on a Google compute engine, which is being load balanced using Google's HTTPS Load Balancer. And according to this article ,
With global HTTP(S) load balancing, the ...
- 101
1
vote
1
answer
2k
views
How can I protect against Slowloris on a NGINX server? [duplicate]
Well, I recently discovered that my site(s) were vunerable to the Slowloris attack.
A few seconds in after testing the attack on my server just to verify it was Slowloris that was causing the issue, ...
- 11
2
votes
1
answer
129
views
When an ISP is DDoSed, will its NOC have Internet access?
When an ISP is hit by a huge DDoS attack and its data plane is severely congested, will its Network Operations Center (NOC) have alternative Internet access?
I'm curious what would be the industry ...
- 21
-1
votes
1
answer
4k
views
snort rule for rdp dos attack
i am very new in snort rules so i can't find the below rule exactly . is this rule send alert when tcp packets come from external network and any port to home network and port 3389? just check port , ...
- 1
1
vote
1
answer
4k
views
udp flooding prevention using iptables
i want prevent udp flooding so i think if i drop all udps that don't come from the internal network and not relate to a udp connection i can prevent udp flooding. in the other word if only udps that ...
- 11
0
votes
1
answer
1k
views
Azure VM DDOS attack via RDP
Yesterday my VM on Azure was under a DOS attack.
Symptom was I wasn't able to connect via RDP, unless the server was freshly rebooted, and only for a small fraction of time after the reboot.
Once I ...
- 15
-1
votes
1
answer
125
views
Possible DOS Attack or computer "freak out"
I am a dev-ops web developer with a site running two ec2.smalls behind a load balancer on AWS.
Recently we saw 3-4 requests per second take down our clients site.
The site was down and would not ...
- 315
-4
votes
2
answers
179
views
Does it make sense to have a server dedicated to login? [closed]
Since the login process itself involves an expensive hash, it also makes this part of any app vulnerable to (D)DOS attacks.
Is it a good idea to put the login portion of the app on it's own dedicated ...
- 101
1
vote
0
answers
255
views
Multiple IPs for one server to switch it in case of DoS / DDoS?
I'll run a server to secure a blockchain network (many servers with exposed IPs - no domains!). There will be only SSH, Fail2Ban, UFW, MONIT and the needed blockchain-client running on the server. ...
- 179
1
vote
2
answers
35
views
Quantifying site response in case of DOS/DDOS attack tests
Let us say that we need to test a HTTPS web site for vulnerability/response in case of DOS/DDOS attacks.
Among other tools, we can use GoldenEye for this purpose. We can vary the number of workers ...
- 183
0
votes
2
answers
6k
views
Should I expect reception of packets in hping3 --flood?
I'm testing a newly purchased VPS for DDoS vulnerability using hping3.
If I do not use --flood, everything goes fine and I see close to 0% packet loss every time. But If I do use --flood, then the ...
- 109
0
votes
1
answer
2k
views
Mod_evasive not blocking a DOS attack using HEAD requests
Using Apache/2.2.15 on RHEL6 with mod_evasive config:
DOSHashTableSize 3097
DOSPageCount 14
DOSPageInterval 2
DOSSiteCount 70
DOSSiteInterval 1
DOSBlockingPeriod 60
...
- 1
1
vote
1
answer
1k
views
Benefits of separate firewall product over AWS Security Groups for spam requests
I have a question that is an extension of this one: Examples where an AWS Security Group is not sufficient as a firewall?. Initially, the answer in that question made sense to me and I was working ...
- 173
0
votes
1
answer
708
views
Mitigate DDos on Windows box [duplicate]
I would love to know, If you know some way to mitigate DDos/Dos attacks on Windows. In Linux we can Mitigate using the IPTables Almighty, but I wonder If there is something like that in Windows.
I am ...
- 11
0
votes
4
answers
4k
views
apache being flooded?
I have a linux apache server which was running fine until a few days ago. What happened is from the access log there are lines like this, and the log file is growing by many lines every second. ...
- 23
3
votes
1
answer
424
views
Buffer-stuffing denial-of-service attack
I started seeing this odd sort of effect that resembles denial-of-service attack against a Linux server. The effect is that the network becomes at least partially unusable very much the same as what ...
- 15.2k
1
vote
4
answers
2k
views
Identifying DOS attack [duplicate]
I'm suspecting that one of my servers is attacked some time ago. My question is how can I identify a DOS or DDOS attack while under attack or after the attack has finished?
- 121
2
votes
2
answers
145
views
Resolving a prolonged DDoS [duplicate]
I've been totally unable to use my server for the last couple of days. I've been contacting the owners of the IP's who are attacking me but its an uphill battle. Since I don't know who is doing the ...
- 307
3
votes
2
answers
207
views
In what way am I more likely to be DDoS'd? Via http or other ports? [duplicate]
I am writing a web service that has a lot of vicious competitors. Vicious as in: people have been getting DDoS'd within hours of setting up shop in this arena.
The service will consist of:
a website ...
- 1,961
2
votes
2
answers
3k
views
DDoS Attacks on Game Servers [duplicate]
We run a fairly large game server hosting company with about 60 machines running Server 2008, and DDoS attacks something we have been dealing with for a long time. Unfortunately, due to the prices of ...
- 660
9
votes
2
answers
4k
views
Protecting against Keep-Dead Denial of service
i thought my server was safe with http-guardian but apparently not. Some smart arse keeps hitting my server with 'Keep-Dead' and causing it to crash.
I've looked through the logs but can't see ...
Stevie
4
votes
1
answer
6k
views
Logging Timeout'd Request in Apache 2.X
I am migrating some applications from Apache 1.3 to 2.2.
We used to run some tests where attacker opens some HTTP connection to our server, and do nothing. Apache 1.3 would log the following 408 code,...
- 2,595
0
votes
2
answers
307
views
CentOS Server keeps grinding to a halt, then comes back up
CentOS 5.2 LAMP server
The server slows down to a point where no services are responding. After a few minutes, it comes back and is running well. The server keeps doing this cycle, what could be ...
- 241
0
votes
1
answer
311
views
DDOS Mitigation Services [duplicate]
Over the past week we have been a victim of two seperate ddos attacks varying in scale. The last one was very large and very hard to mitigate. We are looking at solutions from veriSign and Akamai ...
3
votes
3
answers
722
views
DDOS by several IPs with one connection [duplicate]
I have a site that was being hit with a DDOS the same time every day for the past month, and after spending a month researching and pinpointing the bug, we enacted a bash script which if the ...
- 278
3
votes
2
answers
473
views
Is it possible to distinguish from “good” http requests and DoS attacks?
How could I know that a lot of requests in a short period of time come from a DoS attack and not from normal browser requests?
- 131
1
vote
4
answers
2k
views
Brainstorm: Flood/DoS/DDoS Attack prevention ideas
This is not a question asking how to stop an attack. This is simply a thread for anyone and everyone to discuss ideas for preventing, dealing with, and keeping your server alive during these attacks.
...
9
votes
4
answers
1k
views
Stopping a DOS attack
One of the sites I work with has recently started to get DoS'd. It started out at 30k RPS and now it's at 50k/min. The IP's are pretty much all unique, not in the same subnet, and are in multiple ...
- 357
2
votes
3
answers
8k
views
Identifying DDOS Attacks on Windows 2008 Servers [duplicate]
I recently was notified by my monitoring service that a few Windows 2008 servers (hyper-v instances) were down.
I logged into the Hyper-V box and noticed everything was super slow. I opened task ...
- 6,177
2
votes
3
answers
2k
views
Blocking IP addresses Load Balanced Cluster
We're using HAproxy as a front end load balancer / proxy and are looking for solutions to block random IP addresses from jamming the cluster.
Is anyone familiar with a conf for HAProxy that can block ...
- 121
Related Tags
security × 8
linux × 4
apache-2.2 × 3
firewall × 3
networking × 2
centos × 2
windows × 1
nginx × 1
ubuntu × 1
amazon-ec2 × 1
iptables × 1
azure × 1
web-server × 1
linux-networking × 1
logging × 1
load-balancing × 1
bind × 1
http × 1
haproxy × 1
memory × 1
apache2 × 1
more related tags
Hot Network Questions
- Nonstandard Analysis in ZFC?
- Is it valid to use an "infinite" number of universal/existential instantiations in a proof?
- Why are an F-35’s missile rails angled outboard?
- Interior stud wall height acceptable gap
- How related are imaginability and coherence?
- What has this figure to do with the Pythagorean theorem?
- Help formulating objection to Parfit's personal identity and response to objection
- Is the momentum wave function's square amplitude always time-invariant for a free particle?
- Dealing with cold
- Why won't my White Chocolate Ganache set in the freezer?
- Looking for a short story about Bela Lugosi
- What is the status of the Book of the Wisdom of Solomon?
- 70s or 80s sci-fi book, boy has secateur hand
- Package jsonparse not working with \ifthenelse
- Can you achieve 3 attacks using Dual Wield [Feat], light weapons, and nick?
- Use public CA wildcard certificate for initial ssh connection
- How can I give a standard macOS account admin-like privileges while restricting system reset and specific app access on the latest macOS?
- Is there a classical Lagrangian system with essentially no cyclic coordinates?
- NIntegrate cannot give high precision result for a well-behaved integral
- Can I screw a sagging gutter to the fascia?
- Can you identify a cartoon in which Flash became fat?
- Is oriented simple graph isomorphism GI-hard?
- Having trouble understanding saturation mode in an npn BJT transistor
- Book series about a girl who has to live with a vampire