Security Basics mailing list archives

Re: Preveting DDOS Syn floods on HTTP servers

From: Fernando Gont <fernando () gont com ar>
Date: Wed, 17 Mar 2004 01:01:24 -0300

At 13:16 05/03/2004 +0100, you wrote:

I was wondering if it was possible for a HTTP servers to prevent DDOS syn=
 floods, attacks from different IP's, like a attack from a IRC network or=
 something like that.
Some people say it's impossible and some say it's possible, so I wonder i=
f someone can give me the right answer, and if it's possible, how to do i=
t?


Enable syncookies on your webserver.


--
Fernando Gont
e-mail: fernando () gont com ar || fgont () acm org



---------------------------------------------------------------------------

Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 offany course! All of our class sizes are guaranteed to be 10 students or lessto facilitate one-on-one interaction with one of our expert instructors.Attend a course taught by an expert instructor with years of in-the-fieldpen testing experience in our state of the art hacking lab. Master the skillsof an Ethical Hacker to better assess the security of your organization.Visit us at:http://www.infosecinstitute.com/courses/ethical_hacking_training.html

----------------------------------------------------------------------------

Current thread:

Preveting DDOS Syn floods on HTTP servers nabi1 (Mar 08)
- RE: Preveting DDOS Syn floods on HTTP servers Shaun Sturby, MCSE Optrics Engineering (Mar 08)
- Re: Preveting DDOS Syn floods on HTTP servers jamesworld (Mar 09)
- RE: Preveting DDOS Syn floods on HTTP servers Aditya, ALD [Aditya Lalit Deshmukh] (Mar 10)
- Re: Preveting DDOS Syn floods on HTTP servers Fernando Gont (Mar 17)
- <Possible follow-ups>
- RE: Preveting DDOS Syn floods on HTTP servers MARTIN M. Bénoni (Mar 09)
  - RE: Preveting DDOS Syn floods on HTTP servers Fernando Gont (Mar 17)