Security Incidents mailing list archives

Re: DoS attack... what to do?

From: Steve Friedl <steve () unixwiz net>
Date: Tue, 4 Jan 2005 14:12:22 -0800

On Tue, Jan 04, 2005 at 03:19:14PM -0500, Shaffer, Bruce wrote:

About the only thing you can do for a DDoS is to work with your ISP to
control things on his net.  They should be more than happy to work with you
as this affects their performance and resources including their SLAs.


Actually, many ISPs are not terribly happy to "work with you", as "their
time" is a resource just as much as their bandwidth is, and this often
requires the attention of the most senior people. Customers who repeatedly
get DoS'd often find themselves invited to take their business elsewhere.

Now the question is: Who did you piss off?


Same thing I asked him :-)

Steve

--- 
Stephen J Friedl | Security Consultant |  UNIX Wizard  |   +1 714 544-6561
www.unixwiz.net  | Tustin, Calif. USA  | Microsoft MVP | steve () unixwiz net

Current thread:

DoS attack... what to do? Nigel Kukard (Jan 04)
- Re: DoS attack... what to do? falcon (Jan 04)
- Re: DoS attack... what to do? Faisal Khan (Jan 04)
- Re: DoS attack... what to do? Mark C (Jan 04)
  - Re: DoS attack... what to do? Bernie Cosell (Jan 04)
    - Re: DoS attack... what to do? Jose Nazario (Jan 05)
- <Possible follow-ups>
- RE: DoS attack... what to do? Shaffer, Bruce (Jan 04)
  - Re: DoS attack... what to do? Steve Friedl (Jan 04)
    - RE: DoS attack... what to do? Craig Skelton (Jan 05)
    - Re: DoS attack... what to do? Alvin Oga (Jan 05)
    - Re: DoS attack... what to do? Valdis . Kletnieks (Jan 07)
    - Re: DoS attack... what to do? Paul Laudanski (Jan 05)
    - Re: DoS attack... what to do? easternerd (Jan 13)
- RE: DoS attack... what to do? Drumm, Daniel (Jan 05)
- Re: DoS attack... what to do? Fergie (Paul Ferguson) (Jan 13)