Wilson Technology Group and More

Your One Stop IT and Telecommunications Firm

Stopping Botnets and Distributed Denial of Service (DDoS) Attacks

Leave a comment

The following measures will help to mitigate the risks of a DDoS attack.

  1. Over-provision bandwith to absorb DDoS  bandwith  peaks.  This is one of the most common yet probably the most expensive technique, particularly because most DDoS attacks can be ten times or even one hundred times greater than standard internet traffic levels.
  2. Lock down application and servers.  Most overflow attacks can be prevented by application development teams that follow coding best practices.
  3. Install a network firewall to block known network DDoS attacks.  Most firewalls can stop network DDoS attacks like TCP floods, SYN-floods and fragmentation attacks.  Large scale network DDoS attacks can overwhelm Internet connections, preventing traffic from even reaching an on-premise firewall.  Businesses must ensure that their internet bandwith is great enough to withstand a volumetric attack.
  4. Apply application-level controls to stop application DDoS attacks.    An increasing number of DDoS attacks are not simply network onslaughts, but more advanced application attacks.  Application attacks can be difficult to stop through application coding measures alone.  Detecting and blocking excessive requests by users can help eliminate attack traffic.  CAPTCHA’s, for instance, can help differentiate humans from malicious bots.

wilsontechgroup.com

cs@wilsontechgroup.com

Find us on Facebook and LinkedIn

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s