HOWTO survive a DDoS attack

Discuss

2 Responses to “HOWTO survive a DDoS attack”

  1. Matt Drew says:

    For bloggers, activists, etc, there’s a very simple and cheap solution to a DDoS:

    Just Wait.

    No DDoS can be maintained forever, because they are noisy and obvious. The longer the DDoS goes on, the more zombies are exposed, located, and taken offline, eventually draining the DDoS of its power. Consider that the U.S. government could not sustain a DDoS attack on Wikileaks for more than a week or so, even with what amounts to virtually unlimited resources.

    Obviously for online businesses this is more of a concern, because they lose money when they are inaccessible.  Even so, the impact is similar to a serious storm or other weather event – something to be anticipated, dealt with in a reasonable manner, and otherwise largely ignored. No one on the Internet need fear a DDoS attack. They aren’t the nuclear weapons of cyberwarfare – they are the Internet equivalent of throwing a tantrum.

  2. Richard Dale says:

    I found the overview from EFF to be very basic.  For example, no mention was made of DNS hosting, which I think you should always separate from your Web Hosting (this allows you to reasonably quickly relocate a web site IP address elsewhere which may help in some forms of DDOS that target a specific IP address)

Leave a Reply