Would this help with preventing DDOS

BYOND Forums

Announcements · BYOND Help · Bug Reports · Feature Requests · Beta Testers · Beta Bugs · Developer Help · Design Philosophy · Demos & Libraries · Tutorials & Snippets · Art & Sound · Classified Ads · Game Updates · Contests & Events · Linux Talk · On Topic · Off Topic

Page: 1 2

Nov 18 2013, 11:27 am
Stephen001	What. http://en.wikipedia.org/wiki/Denial-of-service_attack

Nov 18 2013, 12:26 pm
Xirre	Denial of Service - DoS Distributed Denial of Service - DDoS And your theory is completely wrong. Research a bit more on what it is to get a clearer understanding. I don't even think it'd be good to talk about it in detail over BYOND. Just my opinion.

Nov 18 2013, 5:51 pm

In response to Xirre

Magicmann

Xirre wrote:

Stephen001 wrote:

A more pragmatic response is:

Hosting somewhere that is better provisioned for network bandwidth ie. not your house or a cut-rate VPS company.

Sensible firewall strategies ie. iptables rules to drop SYN-only connections after 30 seconds, to avoid kernel resource exhaustion on Linux, iptables/tc level traffic control to let you drop packets before they hit the BYOND process and avoid chewing up BYOND's resources forming responses to bogus requests

Didn't even bother to mention iptables because of the fact that it's no help anymore. By brute force, it's simply ineffective. I have screenshots as to what iptables does for me in terms of dropping packets when the incoming bandwidth is over a Gb/s. Yes, I've used it to fight some small ones. And yes, it's effective. But, those were DoSs. A DDoS can mostly be of a larger scale that my network just can not handle. Most networks for that matter...

And what does it matter if you drop the packets of the attack? What if the attacker is on your server? They will know that their goal isn't being achieved because they haven't disconnected yet. (I had more to write but I had to leave)

I would like to note that regardless of what people are capable of, the hosting I will soon introduce to BYOND will be able to withstand quite literally any attack anyone visiting this server could conceive of! Imagine taking every computer to ever have BYOND on it all pointed to the same IP, you still couldn't touch my server. =P

To get back to the original question; the problem is that you can literally get the IP in thirty seconds. Windows 7 has a built in application that I could detect the IP anything is connected to. Comodo Internet Security (the A/V I use) will get me that info in less than twenty seconds.

Nov 18 2013, 6:18 pm
Xirre	Okay. As for your server not being touched, let me know if you have at "least" 5Gb/s in bandwidth. Least being the smallest DDoS attack I have seen myself. Most being somewhere near 10Gb/s. And it gets worse. There are 100Gb/s attacks. But I'm sure that'll never reach here.

Nov 18 2013, 7:38 pm

In response to Xirre

Magicmann

Xirre wrote:

Okay. As for your server not being touched, let me know if you have at "least" 5Gb/s in bandwidth. Least being the smallest DDoS attack I have seen myself. Most being somewhere near 10Gb/s. And it gets worse. There are 100Gb/s attacks. But I'm sure that'll never reach here.

I'll be able to outlast attacks harder than 500Gbps on the network I'll be using. I don't think anyone here will be able to touch my hosting with a (D)DoS attack.

Nov 18 2013, 9:21 pm
Xirre	Nice.

Nov 19 2013, 3:13 am In response to Xirre
Magicmann	Think that's enough to keep a BYOND server safe from those kinds of attacks? I know they're not nearly as common as some people may think (darn bugs), but having enough of an infrastructure to mitigate almost literally any DDoS attack sounds like it would definitely be a plus.

Nov 19 2013, 3:36 am
Stephen001	Well, usually just being in a good data-centre and say ... actually having some data-centre support, helps. You can usually ask them to use their gateway boxes to mitigate what they think is spurious data bound for your machine.

Page: 1 2