[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Over a decade of DDOS--any progress yet?

Subject: Over a decade of DDOS--any progress yet?
From: sean at donelan.com (Sean Donelan)
Date: Mon, 6 Dec 2010 02:50:18 -0500 (EST)

February 2000 weren't the first DDOS attacks, but the attacks on multiple 
well-known sites did raise DDOS' visibility.

What progress has been made during the last decade at stopping DDOS 
attacks?

SMURF attacks creating a DDOS from directed broadcast replies seems to 
have been mostly mitigated by changing defaults in major router OS's.

TCP SYN attacks creating a DDOS from leaving many half-open connections 
seems to have been mostly mitigated with SYN Cookies or similar OS 
changes.

Other than buying lots of bandwidth and scrubber boxes, have any other 
DDOS attack vectors been stopped or rendered useless during the last 
decade?

Spoofing?

Bots?

Protocol quirks?

Follow-Ups:
- Over a decade of DDOS--any progress yet?
  - From: ikiris at gmail.com (Blake Dunlap)
- Over a decade of DDOS--any progress yet?
  - From: jf at probe-networks.de (Jonas Frey (Probe Networks))
- Over a decade of DDOS--any progress yet?
  - From: rdobbins at arbor.net (Dobbins, Roland)
- Over a decade of DDOS--any progress yet?
  - From: mysidia at gmail.com (James Hess)
- Over a decade of DDOS--any progress yet?
  - From: jed at jedsmith.org (Jed Smith)

Prev by Date: list archive
Next by Date: Over a decade of DDOS--any progress yet?
Previous by thread: Impact of Attacks and Outages
Next by thread: Over a decade of DDOS--any progress yet?
Index(es):
- Date
- Thread