RE: Recent Attacks

From: John Ross (jrossat_private)
Date: Wed Feb 16 2000 - 11:30:27 PST

Next message: Ryan Russell: "Re: Recent Attacks"

Previous message: daN.: "Re: client puzzle protocol"
Maybe in reply to: hndat_private: "Recent Attacks"
Next in thread: Ryan Russell: "Re: Recent Attacks"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

The security community has been aware of DDoS for some time.  It was 
actually the topic of discussion at a recent ICSA meeting.  Because of the 
nature of the web, this type of attack is difficult to prevent.  When a 
user requests a web page, the server responds with the data.  They simply 
overloaded the websites with requests.

The only way to protect websites from this type of attack would be to 
protect networks against being vulnerable to having the client installed on 
the "zombie" machines that are the ones who are physically sending the 
false requests.

Not that it is impossible to protect machines against having these clients 
installed, but it will take a massive worldwide collective to ensure that 
systems are protected against this.

-John

At 09:35 AM 2/15/00 -0800, you wrote:
>I don't believe that this was the total objective.  I believe (and this is
>only conjecture) that their point was the actual vulnerability itself.  The
>DoS and the newly created DDos attacks are VERY simple to use and widely
>available.  I think the point was "Hey, check out this great piece of code
>that is really easy to use and the MAJOR players on the internet are still
>vulnerable."  I am hopeing it was more of a wake up call than it was
>malicious, but who knows.
>
>-Kyle
>Information Security
>MSDW Online
>
>-----Original Message-----
>From: hndat_private [mailto:hndat_private]
>Sent: Saturday, February 12, 2000 3:03 PM
>To: firewall-wizardsat_private
>Subject: Recent Attacks
>
>
>hi,
>
>I was just wondering that The latest attacks on the popular web sites had
>only
>one objective behind it: to bring the web sites and render it useless for
>the
>period of attack. If these hacker really do want to create massive scale
>problems why not hack the root servers?!!!!!!!  This will bring down the
>whole
>internet.
>
>Hoshil
>

Global Technology Associates, Inc.
3505 Lake Lynda Drive
Suite 109
Orlando, FL 32817 USA
Tel: +1.407.380.0220  x105
Fax: +1.407.380.6080

http://www.gnatbox.com

Next message: Ryan Russell: "Re: Recent Attacks"
Previous message: daN.: "Re: client puzzle protocol"
Maybe in reply to: hndat_private: "Recent Attacks"
Next in thread: Ryan Russell: "Re: Recent Attacks"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:04:14 PDT