RE: DDoS protection

["Phillip Lofaso" <Phillip.Lofaso () prihcs com>]

My apologies for the mass email, but can someone please tell me how to unsubscribe from this group?  I am no longer 
working in this field.

Thank you.


**************
Phillip A. LoFaso
Marketing Director
PRI Healthcare Solutions | Haymarket Media, Inc.
140 East Ridgewood Avenue  Suite 176N | Paramus, NJ 07652
O: 201-799-4889
E:  phillip.lofaso () haymarketmedia com 




-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Sardina, Dominick
Sent: Friday, June 20, 2014 2:49 PM
To: security-basics () securityfocus com
Subject: RE: DDoS protection

Brett, I have to agree 100%.


Regards,
Dominick 


-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Wagner, Brett
Sent: Friday, June 20, 2014 12:57 PM
To: Hartley, Christopher J.; Kellstr
Cc: security-basics () securityfocus com
Subject: RE: DDoS protection

IMHO - I am not a fan of all the mumbo jumbo that goes along with the "Cloud" like it is a new invention. I worked at 
GTE/BBN in 1999 and we were selling all the same crap back then. With that said and having worked at EMC for a while 
you can have a "Cloud" on premises just means you have the hardware in one of your company locations. You can have 
private, shared, public or a combo. 

It is the same evolution as IT security circa 1970-80s (Rainbow Book Series days), then Information Security circa 
1990s, then Information Assurance circa late 90s early 2000s and now Cyber Security. With each name change consultants 
and companies can charge more for the same ultimate goal with each name change.

OK I will now get off my soapbox.
-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Hartley, Christopher J.
Sent: Friday, June 20, 2014 10:48 AM
To: Kellstr
Cc: security-basics () securityfocus com
Subject: Re: DDoS protection

This is a little confusing; “cloud”, “on-premise” etc… weird.

By “Cloud,” it seem like we mean “by provider” (makes sense).

On-premise is the best way to detect an attack imo, since the victim network knows what’s good and what’s not (or 
should….).

So I think the best solution involves some kind of remote blackhole or ideally, perhaps flowspec.

I don’t think it’s a problem that requires spending significant money.

Chris

On Jun 19, 2014, at 12:50 PM, Kellstr <kellstr () gmail com> wrote:

> Disclaimer: I work for a company which offers a DDoS Protection Service.
>
> The advantage of a service "in the cloud" is that if an attack exceeds 
> your circuit bandwidth the provider will be able to drop the malicious 
> traffic. That cannot be done at your premise. Both Arbor and Radware 
> offer strong appliances that can clean up smaller attacks at your 
> premise and can send a signal to the provider if they support that 
> service. You can block traffic using IPS's but keep in mind they are 
> not designed for a volumetric attack and may be overwhelmed.
>
> On Wed, Jun 18, 2014 at 11:10 AM, Lance Lassetter 
> <lancelassetter () gmail com> wrote:
> > What about Suricata or Snort IDS in IPS mode?
> >
> > On Jun 18, 2014 8:43 AM, "Mikhail A. Utin" <mutin () commonwealthcare org> wrote:
> > > As you indicated " Although we're small, We're an organization playing with ($,¥,€,£) exchanges" you are on client 
> > > side rather than on server. If that is right, you do not need to bother with DDoS protection, which is against 
> > > server side.
> > > Mikhail
> > >
> > > -----Original Message-----
> > > From: listbounce () securityfocus com
> > > [mailto:listbounce () securityfocus com] On Behalf Of 
> > > kartik.netec () gmail com
> > > Sent: Wednesday, June 18, 2014 12:49 AM
> > > To: security-basics () securityfocus com
> > > Subject: Re: Re: DDoS protection
> > >
> > > Hi,
> > >
> > > Thanks for your replies.
> > >
> > > Noted the points raised by Jacint and Kelly Keeton. I appreciate that.
> > >
> > > May I be kind to seek an opinion/ arguments suggesting if the In-house appliances are more "intelligent" thwarting 
> > > the application level DOS/ DDoS attacks as compared to ISP provided DOS protection wherein it may even fail to 
> > > detect them. or if there are other benefits owning an In-house product?
> > >
> > > As far as Cons are concerned, I feel that the appliance may add some latency which may create issues wherein a 
> > > latency of milliseconds count.
> > >
> > > Although we're small, We're an organization playing with ($,¥,€,£) exchanges and heavily regulated by the 
> > > Government.
> > >
> > > Thanks,
> > > KT
> > >
> > > --------------------------------------------------------------------
> > > ---- Securing Apache Web Server with thawte Digital Certificate In 
> > > this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
> > > it benefits your company and how your customers can tell if a site is secure. You will find out how to test, 
> > > purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for 
> > > set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital 
> > > certificates.
> > >
> > > http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6b
> > > e442f727d1
> > > --------------------------------------------------------------------
> > > ----
> > >
> > >
> > > CONFIDENTIALITY NOTICE: This email communication and any attachments 
> > > may contain confidential and privileged information for the use of 
> > > the designated recipients named above. If you are not the intended 
> > > recipient, you are hereby notified that you have received this 
> > > communication in error and that any review, disclosure, 
> > > dissemination, distribution or copying of it or its contents is 
> > > prohibited. If you have received this communication in error, please 
> > > reply to the sender immediately or by telephone at (617) 426-0600 and destroy all copies of this communication and 
> > > any attachments. For further information regarding Commonwealth Care Alliance's privacy policy, please visit our 
> > > Internet web site at http://www.commonwealthcare.org.
>
>
>
> --
> Laws alone cannot secure freedom of expression; in order that every 
> man present his views without penalty there must be spirit of 
> tolerance in the entire population. - Albert Einstein
>
> ----------------------------------------------------------------------
> -- Securing Apache Web Server with thawte Digital Certificate In this 
> guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how it 
> benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
> install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
> highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.
>
> http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be4
> 42f727d1
> ----------------------------------------------------------------------
> --



------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and 
who needs an SSL certificate.  We look at how SSL works, how it benefits your company and how your customers can tell 
if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your 
Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing 
management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------



-----------------------------------------
The information contained in this e-mail, including any attachment(s), is intended solely for use by the named 
addressee(s).  If you are not the intended recipient, or a person designated as responsible for delivering such 
messages to the intended recipient, you are not authorized to disclose, copy, distribute or retain this message, in 
whole or in part, without written authorization from PSEG.  This e-mail may contain proprietary, confidential or 
privileged information. If you have received this message in error, please notify the sender immediately. This notice 
is included in all e-mail messages leaving PSEG.  Thank you for your cooperation.

This e-mail and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed. If you have received this email in error please notify
the sender by replying to this e-mail.

Replies to this email may be monitored by the Haymarket Group
for operational or business reasons. 

Whilst every endeavour is taken to ensure that e-mails are free from
viruses, no liability can be accepted and the recipient is requested
to use their own virus checking software. 

www.haymarket.com

Haymarket Media Group Limited
Registered in England no. 267189
Registered Office: Teddington Studios, Broom Road, Teddington, Middlesex, TW11 9BE