[OWASP-Malaysia] DDoS Defence Guide Released France CERT

Adnan Mohd Shukor adnan.shukor at gmail.com
Wed Jun 22 00:52:48 EDT 2011


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA224

Yerp.. Cloudflare works as CDN and will monitor the traffic. It has the
capability to stop ddos as well..

hiding IP? hurm.. in MOST cases, MX or direct-connect.<some_host>.<tld>
is still pointing to the original IP :)

Thanks

- --
Adnan Mohd Shukor

http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x6CE81365A566284F



On 6/22/11 12:44 PM, Mohammad Hafiz Ismail wrote:
> using CloudFlare to mask the ip and the real NS is a good idea. But
> somehow I felt something not right when I'm about to hand over my
> domain(s) to a third-party NS
> 
> Just my personal thoughts
> 
> ___________________________________________
> 
> MOHAMMAD HAFIZ BIN ISMAIL Lecturer, Computer Science Department, 
> Faculty of Computer & Mathematical Sciences Universiti Teknologi
> MARA, 02600 Arau, Perlis
> 
> Room : B0-24 (HEA) Phone : +604 9882896 Mobile :+6012 760 5169
> 
> Alt. Email : mypapit at gmail.com <http://mailto:[email protected]> 
> Website : http://www.perlis.uitm.edu.my/hafiz
> 
> <http://www.perlis.uitm.edu.my/hafiz>YM id: papit58
> 
> 
> 
> -----owasp-malaysia-bounces at lists.owasp.org wrote: -----
> 
> To: "Open Chapter" <owasp-malaysia at lists.owasp.org> From: "Fathi
> Kamil Zainuddin" <cikgufatah at gmail.com> Sent by:
> owasp-malaysia-bounces at lists.owasp.org Date: 22-06-2011 12:41PM 
> Subject: Re: [OWASP-Malaysia] DDoS Defence Guide Released France
> CERT
> 
> Or we can hide the real ip using something like CloudFlare. Such as
> an example http://www.zonegeek.tk/ .Wallahualam. Sent from my
> BlackBerry® smartphone
> 
> -----Original Message----- From: Harisfazillah Jamel
> <linuxmalaysia at gmail.com> Sender:
> owasp-malaysia-bounces at lists.owasp.org Date: Wed, 22 Jun 2011
> 12:07:23 To: Open Web Application Security Project (OWASP) Malaysia
> Local Chapter<owasp-malaysia at lists.owasp.org> Reply-To: "Open Web
> Application Security Project \(OWASP\) Malaysia Local Chapter"
> <owasp-malaysia at lists.owasp.org> Subject: Re: [OWASP-Malaysia] DDoS
> Defence Guide Released France CERT
> 
> Team,
> 
> Immediate action that we can do is to lower the TTL of the DNS.
> 
> Under Preparation step
> 
> Confirm DNS time-to-live (TTL) settings for the systems that might
> be attacked. Lower the TTLs, if necessary, to facilitate DNS
> redirection if the original IP addresses get attacked. 600 is a good
> TTL value.
> 
> Why?
> 
> Cache for DNS (ISP level, users DNS cache level) can be expired much 
> more faster so any redirection that we do by using Domain name can
> be done immediately.
> 
> 
> 
> On Wed, Jun 22, 2011 at 11:07 AM, Harisfazillah Jamel 
> <linuxmalaysia at gmail.com> wrote:
>> Republish for Operation Defence Malaysia.
>> 
>> DDoS Defence Guide Released France CERT
>> 
>> http://bit.ly/mcsrki
>> 
>> The original page with others publication by French Cert.
>> 
>> http://cert.societegenerale.com/fr/publications.html
>> 
> _______________________________________________ OWASP-Malaysia
> mailing list OWASP-Malaysia at lists.owasp.org 
> https://lists.owasp.org/mailman/listinfo/owasp-malaysia
> 
> OWASP Malaysia Wiki http://www.owasp.my
> 
> OWASP Malaysia Facebook http://www.facebook.com/OWASP.Malaysia
> 
> OWASP Malaysia Twitter #owaspmy http://www.twitter.com/owaspmy 
> _______________________________________________ OWASP-Malaysia
> mailing list OWASP-Malaysia at lists.owasp.org 
> https://lists.owasp.org/mailman/listinfo/owasp-malaysia
> 
> OWASP Malaysia Wiki http://www.owasp.my
> 
> OWASP Malaysia Facebook http://www.facebook.com/OWASP.Malaysia
> 
> OWASP Malaysia Twitter #owaspmy http://www.twitter.com/owaspmy
> 
> 
> 
> 
> 
> _______________________________________________ OWASP-Malaysia
> mailing list OWASP-Malaysia at lists.owasp.org 
> https://lists.owasp.org/mailman/listinfo/owasp-malaysia
> 
> OWASP Malaysia Wiki http://www.owasp.my
> 
> OWASP Malaysia Facebook http://www.facebook.com/OWASP.Malaysia
> 
> OWASP Malaysia Twitter #owaspmy http://www.twitter.com/owaspmy
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.14 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iFYEARELAAYFAk4BdSAACgkQbOgTZaVmKE/dWADeKcHPavWrLm1gSjQJnrnwmDku
+VOJSNEjO9xFAwDgmPT4vMpu6HsvrHsH3EqlDrjbOm/e6H4BCKUGDw==
=fbPN
-----END PGP SIGNATURE-----


More information about the OWASP-Malaysia mailing list