Top Mud Sites Forum - View Single Post

JilesDM · 12-07-2003, 09:15 AM

On a more.. pragmatic note..

None of those suggestions will do anything against a script kiddie with a decent number of zombied boxes. By the time the storm of packets generated by a D[R]DoS hits your box, all of your bandwidth is gone. Unless you have a direct T-3 (possibly even an OC-3 for large stables of cable zombies that do a combo DDoS/DRDoS) drop from your provider or one of the backbones, you'll be choked off at the bottleneck between your upstream provider and your server. The only possible way to stop a D[R]DoS while it is in progress is to work with your upstream provider to have the packets filtered at their end (this is assuming that they have an OC-3+ drop, which is unlikely for MUD hosting sites).

In short, a firewall on your end isnt' gonna do jack sh*t. If a script kiddie starts a serious D[R]DoS against your MUD, kick back, read a book, and pity the sysadmin who handles the network upon which your MUD resides.

12-07-2003, 09:15 AM	#41
JilesDM Member Join Date: Nov 2002 Posts: 66	On a more.. pragmatic note.. None of those suggestions will do anything against a script kiddie with a decent number of zombied boxes. By the time the storm of packets generated by a D[R]DoS hits your box, all of your bandwidth is gone. Unless you have a direct T-3 (possibly even an OC-3 for large stables of cable zombies that do a combo DDoS/DRDoS) drop from your provider or one of the backbones, you'll be choked off at the bottleneck between your upstream provider and your server. The only possible way to stop a D[R]DoS while it is in progress is to work with your upstream provider to have the packets filtered at their end (this is assuming that they have an OC-3+ drop, which is unlikely for MUD hosting sites). In short, a firewall on your end isnt' gonna do jack sh*t. If a script kiddie starts a serious D[R]DoS against your MUD, kick back, read a book, and pity the sysadmin who handles the network upon which your MUD resides.