Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Best practices for detecting DOS (denial of service) attacks? [closed]

Tags:

security

denial-of-service

I am looking for best practices for detecting and preventing DOS in the service implementation (not external network monitoring). The service handles queries for user, group and attribute information.

What is your favorite source of information on dealing with DOS?

like image 313
David G Avatar asked Sep 20 '08 13:09

David G

People also ask

How can DoS attacks be detected?

The best way to detect and identify a DoS attack would be via network traffic monitoring and analysis. Network traffic can be monitored via a firewall or intrusion detection system.

What is the best Defence against denial of service DoS attacks?

The most effective way to protect against the impact of DoS attacks is to stop them before they even reach a company's network. That means partnering with the contracted ISP to block the attack at the gateway.

What is DoS DDoS and how you mitigate against it?

DDoS mitigation refers to the process of successfully protecting a targeted server or network from a distributed denial-of-service (DDoS) attack. By utilizing specially designed network equipment or a cloud-based protection service, a targeted victim is able to mitigate the incoming threat.

2 Answers

Whatever you do against DoS-Attacks, think if what you do may actually increase the the load required to handle malicious or unwanted requests!

If you are using Linux then you should read this article:
Rule-based DoS attacks prevention shell script (from Linux Gazette) It has the following topics:

  • How to detect DoS attacks from /var/log/secure file
  • How to reduce redundant detected IPs from the temporary file
  • How to activate /sbin/iptables
  • How to install the proposed shell script

Applying this without properly restricting the number of blocked IPs in iptables may intro a DoS-Vulnerability by increasing the requiered resources to handel unsolicited requests. To reduces that risk use ipset to match IP-Addresses in iptables.

Also, read about ssh dictionary attack prevention using iptables. (enabling iptables with stateful firewalling as suggested here does not protect against most DoS-Attacks against but may actually ease DoS-Attacks that pollute your RAM with useless state info.)

New to Linux? read the Windows-to-Linux roadmap: Part 5. Linux logging of IBM.

Good Luck!

like image 129
Rodrigo Amaya Avatar answered Nov 17 '22 01:11

Rodrigo Amaya

This is a technique I found very useful..

Prevent Denial of Service (DOS) attacks in your web application

like image 42
Gulzar Nazim Avatar answered Nov 17 '22 01:11

Gulzar Nazim
Sign in to Comment

Related questions

Obfuscation: hide hardcoded values in java [duplicate]
What is the threat model for the same origin policy?
Win32: How to validate credentials against Active Directory?
How to store passwords *correctly*?
How to securely submit a high score in a front end game to prevent post hijacking [closed]
How is a keyvault more secure than standard storage?
Does AntiForgeryToken in ASP.NET MVC prevent against all CSRF attacks?
Verifying JWT Signature using public key endpoint
PHP Form Security With Referer
Shellcode for a simple stack overflow: Exploited program with shell terminates directly after execve("/bin/sh")
PHP Security: how can encoding be misused?
Secure C# Assemblies from unauthorized Callers
Will an English CAPTCHA be an issue for people in other countries?
Breaking Data.Set integrity without GeneralizedNewtypeDeriving
Why is it not recommended to use server-side stored functions in MongoDB?
Share credentials between native app and web site
Handling sensitive information with Puppet
security error the operation is insecure in firefox document.stylesheets
NDK application Signature Check
Which version of Kafka are impacted due to log4j CVE-2021-44228?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!