From owner-freebsd-questions Sun Jan 5 15:59:40 2003 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 449B637B401 for ; Sun, 5 Jan 2003 15:59:39 -0800 (PST) Received: from rwcrmhc53.attbi.com (rwcrmhc53.attbi.com [204.127.198.39]) by mx1.FreeBSD.org (Postfix) with ESMTP id EADA943EC5 for ; Sun, 5 Jan 2003 15:59:38 -0800 (PST) (envelope-from paulbeard@mac.com) Received: from mac.com (12-231-115-57.client.attbi.com[12.231.115.57]) by rwcrmhc53.attbi.com (rwcrmhc53) with SMTP id <2003010523593705300clesre>; Sun, 5 Jan 2003 23:59:37 +0000 Message-ID: <3E18C6E7.3040106@mac.com> Date: Sun, 05 Jan 2003 15:59:35 -0800 From: paul beard User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.1) Gecko/20021210 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Michael Cc: freebsd-questions@FreeBSD.ORG Subject: Re: dos attack References: <3100.192.168.1.10.1041810566.squirrel@email.unixhideout.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Michael wrote: > Thanks for all that responded. Your ideas are great but they will just > slow the dos down if even that. Well, that seems like it's better than nothing. I have always regarded DOS attacks as crimes of opportunity: as you say, it doesn't take a lot of smarts to pull one off. If you make it too hard, they'll give up. So take what steps you can. > I guess no one has either thought of a > true way to stop a DOS or maybe its really impossible because your > allowing them in to begin with. Well, it is impossible unless you shut down your site. > I figured it was worth a shot to ask. Ill > just wait it out for now. Eventually they will go away. They can try to > take us out the game but unixhideout isnt going anywhere. So they just > better get used to being second place. What concerns me about this thread is that by doing nothing, it makes the choice of UNIX as a secure OS less credible. One of the strengths of open source is that it allows rapid response to threats. By not taking what steps you can, you risk undermining that point. My two cents, of course. -- Paul Beard: seeking UNIX/internet engineering work 8040 27th Ave NE Seattle WA 98115 / 206 529 8400 To envision how a 4-processor system running [SunOS] 4.1.x works, think of four kids and one bathroom. -- John DiMarco To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message