Re: How can u stop a dos attack ? - XCC ForumRegister | Login | Search
History | Home | Messages
How can u stop a dos attack ?Jointpowr20:11 29-08-2004
Re: How can u stop a dos attack ?Olaf van der Spek23:23 29-08-2004
Re: How can u stop a dos attack ?Chandler18:17 31-08-2004
Re: How can u stop a dos attack ?Olaf van der Spek18:21 31-08-2004
Re: How can u stop a dos attack ?Descarte818:46 31-08-2004
Re: How can u stop a dos attack ?Chandler18:56 31-08-2004
Re: How can u stop a dos attack ?Chandler20:07 31-08-2004
Re: How can u stop a dos attack ?Olaf van der Spek20:28 31-08-2004
Re: How can u stop a dos attack ?Chandler22:04 31-08-2004
Re: How can u stop a dos attack ?Olaf van der Spek22:05 31-08-2004
Re: How can u stop a dos attack ?Chandler22:19 31-08-2004
Re: How can u stop a dos attack ?Chandler22:22 31-08-2004
Re: How can u stop a dos attack ?Necromonger05:14 01-09-2004
Re: How can u stop a dos attack ?Necromonger05:24 01-09-2004
Re: How can u stop a dos attack ?t00much4u17:08 02-09-2004
Re: How can u stop a dos attack ?Olaf van der Spek17:49 02-09-2004
Re: How can u stop a dos attack ?t00much4u18:37 02-09-2004
Re: How can u stop a dos attack ?Olaf van der Spek18:48 02-09-2004
Re: How can u stop a dos attack ?t00much4u19:09 02-09-2004
Re: How can u stop a dos attack ?Olaf van der Spek19:19 02-09-2004
Re: How can u stop a dos attack ?t00much4u20:17 02-09-2004
Re: How can u stop a dos attack ?Olaf van der Spek20:20 02-09-2004
Re: How can u stop a dos attack ?t00much4u20:50 02-09-2004
Re: How can u stop a dos attack ?Olaf van der Spek17:31 04-09-2004

> > > > It's a DDoS, not a DoS. The attack is executed by 'zombies', which are infected PCs from 'normal' people that are usually unaware of the trojan on their PC. So you wouldn't see the IPA of the real attacker anyway.

> > > Understand the difference. What I meant was it would be silly of the attacker to use his 'zombies' without spoofing their IPA, he wants to keep them, not have them discovered.

> > Well, that depends. If he can't attack with them, they're kinda useless.

> Very useless, no point in having them. So having them operate with their real IPA is not something the attacker would want to do, so he spoofs their IPA but if egress filtering was applied by the ISPs spoofing would not work. (at least not to the degree it does at the moment)

Not true, he'll just send them on a suicide mission or hope nothing is done against them.
Bots are also used for HTTP attacks and you can't use IPA spoofing in that case anyway.

Olaf van der Spek

XCC Home Page

Home | Post | Users | Messages