helpme0k Posted June 23, 2009 Posted June 23, 2009 I have a website that is currently being bombarded by DDOS. :( This website is very important to the survival of our business and provides our income. The hosting is outsourced to a company. I can't give a lot of details but would like to know of any practical solutions for fending off DDOS attacks. Hiring a company, moving our server, etc. I hope they are just targeting DNS records so that we can do some filtering. :( It's scary to think that some 14 year old kid may be holding our business to the mercy of his botnet. Quote
Sparda Posted June 23, 2009 Posted June 23, 2009 You could move your hosting to some one like SquareSpace who use a cloud infrastructure to host all web sites. Quote
digininja Posted June 23, 2009 Posted June 23, 2009 Talk to your hosting provider, they quite often have measures in place that will help guard against DDOS. You could try changing your IP in the DNS server to see if the traffic goes away. If that works, and you can get a new temporary domain name registered and out to your clients, then that would be a temporary way around it. Quote
Seshan Posted June 23, 2009 Posted June 23, 2009 You can get a 2 week free trial at squarespace.com and if you decide to stay you can get 10% off the life of your service if you use the coupon code hak5. :) Quote
helpme0k Posted June 23, 2009 Author Posted June 23, 2009 Thanks hak5 community! I'm going to bring these recommendations to my boss now. Appreciate it! Quote
Brian Sierakowski Posted June 23, 2009 Posted June 23, 2009 You need more info from your host as to what the nature of the DDOS is. Is it coming from many different sources, or multiple sources from the same network? Bot nets tend to be difficult to shield against since the attacks are coming from a geographically disperse source. That's supposing they have a net, they could be using some other unsuspecting network(s) to amplify the attack against your page. As mentioned above, I'd recommend getting in touch with whoever is hosting your site and getting them to investigate. Make sure they aren't exploiting a weakness in the companies servers or network infrastructure. They should be able to screen for all the silly named attacks (smurf, fraggle, etc), and make sure you're not in a syn flood situation. If they let you know what exactly is happening but don't know how to guard against it (first, get a new host), let us know what's going on and we can recommend how best to defend. Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.