DDoS Flashcards
DDoS, SSL, TLS
3 types of DDoS attacks?
Application layer attack, protocol attacks, volumetric attacks
DDoS, SSL, TLS
How do you combat DDoS attacks?
Can’t handle it by blocking IP addresses.
DDoS, SSL, TLS
What do you generally need to launch a DDoS attack?
botnet
DDoS, SSL, TLS
What are application layer attacks?
Anything that relies on OSI layer 7 or other high layer
DDoS, SSL, TLS
Example of an appliation layer attack?
HTTP Flood
DDoS, SSL, TLS
What is HTTP Flood?
Requests that are easy for a client to generate, but hard for a server to handle.
DDoS, SSL, TLS
What happens during a HTTP Flood attack?
Server flooded with requests, each of which is a heavy-lift.
DDoS, SSL, TLS
What kind of botnet do you need to launch an application layer attack?
Generally a large one
DDoS, SSL, TLS
What are protocol-based attacks?
Exploit a protocol that’s low on the OSI stack
DDoS, SSL, TLS
Example of a protocol-based attack?
SYN Flood
DDoS, SSL, TLS
What is a SYN Flood?
Send a ton of SYN with spoofed return IP. Server sends SIN-ACK and ties up a port waiting for a reponse that won’t come.
DDoS, SSL, TLS
What kind of botnet do you need to launch an application layer attack?
Generally a large one
DDoS, SSL, TLS
What are Volumetric Attacks?
Send small requests that return large payloads. Spoof the return address to the system you’re attacking.
DDoS, SSL, TLS
Example of a Volumetric Attack?
DNS Amplification
DDoS, SSL, TLS
What is the “Volume” in Volumetric Attacks?
The number of servers that send a response to your spoofed IP addr, not related to packet size.