[openbeosnetteam] Re: what about attacks?
- From: "David Reid" <dreid@xxxxxxxxxxxx>
- To: <openbeosnetteam@xxxxxxxxxxxxx>
- Date: Sat, 16 Mar 2002 14:40:23 -0000
> > in any case, I was wondering, if we (umm, you) could add tests (sort
> > of like extreme
> > programming unit tests) so that denial of service attacks won't
> > happen..
>
> Truth is, there is no way to do that. If the attacker has a large
> enough pipe (or a large number of small connections adding up) they may
> not take your machine down, but they can everload your link and you
> won't be getting any real requests anyway. Also even if you're doing
> packet filtering on your machine he machine still has to process each
> packet that arrives to see if it is to be discarded or not so, again, a
> large number of packages can get your machine to its knees.
Not quite true. It's possible to provide things like connection pacing and
restrictions so that we limit many connections per sec we accept on an
entire system, how many per if and so on.
> The only real solution top DoS and DDoS attacks is to find someone with
> a bigger pipe than you between you and the attacker (usually your
> access provider) and ask them to block the packages at their routers.
Really, I thought the answer was a smaller pipe so they die first :)
david
- References:
- [openbeosnetteam] Re: what about attacks?
- From: Bruno G. Albuquerque
Other related posts:
- » [openbeosnetteam] what about attacks?
- » [openbeosnetteam] Re: what about attacks?
- » [openbeosnetteam] Re: what about attacks?
- » [openbeosnetteam] Re: what about attacks?
- » [openbeosnetteam] Re: what about attacks?
- » [openbeosnetteam] Re: what about attacks?
- » [openbeosnetteam] Re: what about attacks?
- [openbeosnetteam] Re: what about attacks?
- From: Bruno G. Albuquerque