Welcome to Linux Forums!

With a comprehensive Linux Forum, information on various types of Linux software and many Linux Reviews articles, we have all the knowledge you need a click away, or accessible via our knowledgeable members.

Linux Forum ArticlesLinux ForumsLinux Forum DownloadsLinux HostsFree MagazinesJobs
Home|Register|FAQ|Member List|Calendar|Unanswered Posts|Forum Rules|Today's Posts|Advanced Search|
SEARCH FOR IN
Go Back   Linux Forums > GNU Linux Zone > Linux Security
Reload this Page ddos attack please help
Linux Forums
Linux Forums
Welcome To The Linux Forums!
Welcome to Linux Forums. We pride ourselves in being one of the largest Linux communities on the web, we encourage you to REGISTER on our forums and participate in the community. There are over 150,000 members ready to answer your questions. JOINING US today will allow you to make new posts, get support, send messages to other members and submit downloads to our downloads directory and many other great features!

Linux Security Discussion about keeping your machines secure, and the crackers out.

Reply
 
Thread Tools Display Modes
Old 03-06-2008   #1 (permalink)
Just Joined!
 
Join Date: Mar 2008
Posts: 2
ddos attack please help
00:52:17.010647 IP wpc0688.host7x24.com.17206 > my doamin.domain: [|domain]

how do i protect from this ddos please?
blackps is offline   Reply With Quote
Old 03-08-2008   #2 (permalink)
Linux Guru
 
anomie's Avatar
 
Join Date: Mar 2005
Location: Texas
Posts: 1,699
So we're looking at tcpdump output here, right? This looks a lot like a packet from a name resolution request. What makes you think this is a ddos attack?
__________________
FreeBSD Handbook & FAQ // CentOS wiki
anomie is offline   Reply With Quote
Old 03-08-2008   #3 (permalink)
Trusted Penguin
 
MikeTbob's Avatar
 
Join Date: Apr 2006
Location: Cowtown, Texas
Posts: 2,371
If you were under Ddos attack, I don't think you would be able to post onto the forums for help either.
__________________
All new Users please read: FAQ
MikeTbob is offline   Reply With Quote
Old 03-09-2008   #4 (permalink)
Just Joined!
 
Join Date: Mar 2008
Posts: 2
hey
it's a dos attack allright,how can i block a ddos attack as iptables not good for this or apf or csf please help
blackps is offline   Reply With Quote
Old 03-09-2008   #5 (permalink)
Linux Engineer
 
RobinVossen's Avatar
 
Join Date: Aug 2007
Location: The Netherlands
Posts: 1,173
Send a message via ICQ to RobinVossen Send a message via MSN to RobinVossen
If its a real DDos You should give a TCP Dump. Dump File.
And then we can see who DDOSED.
Then you should contact one of those IP's saying that they are DDOSing and tell them that you can get the Bot that does that.
Get the bot, Disassemble it.
Go to the IRC Channel that he uses to Control his Bots.
And have a convo with him.

Cheers,
Robin
__________________
Linux User: 453003
New Users, please read this..
Google first, then ask..
RobinVossen is offline   Reply With Quote
Old 03-09-2008   #6 (permalink)
Linux Guru
 
anomie's Avatar
 
Join Date: Mar 2005
Location: Texas
Posts: 1,699
Quote:
Originally Posted by blackps
it's a dos attack allright,how can i block a ddos attack as iptables not good for this or apf or csf please help
More information would be better if you want some help. You haven't described the service you provide that is getting hammered, or any of the symptoms of the problem.
__________________
FreeBSD Handbook & FAQ // CentOS wiki
anomie is offline   Reply With Quote
Reply



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off
 

Similar Threads
Thread Thread Starter Forum Replies Last Post
I thought of a way to Attack Linux. Is this possible, how to prevent this? RobinVossen Linux Security 3 02-11-2008 06:41 PM
shorewall vs DDoS 4T-Technologies Redhat / Fedora Linux Help 1 11-16-2007 08:31 AM
All Wireless Internet Vulnerable To Malicious Attack xxqq Linux Networking 2 08-04-2006 01:09 PM
Basic Understanding of Block Ciphers or Types of Encryption flw Linux Tutorials, HOWTO's & Reference Material 0 07-14-2003 06:03 PM

Free Magazines
Cisco News
Receive a free quarterly e-newsletter with exclusive articles on how Cisco IT uses its own products and solutions to enable the business.
subscribe
Systems Management News, the newspaper for IT systems administration and data center managers!
Each issue of Systems Management News is chock-full of news and analysis to help you understand what's happening in your field.
subscribe
The Enterprise Newsweekly
eWeek is the essential technology information source for builders of e-business.
subscribe
Oracle Magazine
Oracle Magazine contains technology strategy articles, sample code, tips, Oracle and partner news, how to articles for developers and DBAs, and more. Oracle (NASDAQ: ORCL) is the world's largest enterprise software company.
subscribe
Total Telecom
Total Telecom is "The Economist of the communications industry".
subscribe
More free magazines »



All times are GMT. The time now is 01:10 AM.



Contact Us | Advertise | Archive | Top
© 2000 - 2008 - All Rights Reserved - Property of  MAS Media

Content Relevant URLs by vBSEO 3.2.0