The Lazy Genius

Security News & Brain Dumps from Xavier Ashe, a Bit9 Client Partner

Configure your router to block DOS attempts

Posted by Xavier Ashe on July 12, 2006

In a border router, you should have five rules that will block
almost all denial of service attacks. Remember the attack against the
Internet in February 2000? Mafiaboy,
the 17-year-old Canadian script kiddie, brought down 11 sites using 75
computers in 52 countries to send 10,700 messages in 10 seconds,
causing an estimated $1.7 billion in damages. (Canadian police
discovered him from his boasting in chat rooms. In 2001 he pled guilty
to 56 charges and was sentenced to two years in a juvenile detention
center).

Why did Yahoo, Buy.com, eBay, CNN, Amazon.com, ZDNet, ETrade, Dell,
and Excite all succumb to the attack? Because they lacked one or more
of these five important rules. MSN and Microsoft were targeted, but
because our routers have these rules, we escaped the attack. The five
rules:

Check out Steve Riley's blog to get the five rules.

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

 
%d bloggers like this: