Lol?
What kind of host doesn't have ddos protection already?
|
|
06-29-2009, 04:32 AM
While I was working on my networking framework, you know every back-end programmers fear is "can it withstand an attack", well this has been my top priority for the past few weeks and I finally came up with a solution, to not just DoS attacks but to DDoS attacks also. As you should know a DDoS attack is a DoS attack but is not only one person, but many people (zombies), controlled by one person. My protection is simple but effective, a DDoS attack will effect my server but it will only allow so many connections from each zombie before it locks that host out until the attack stops, and the attack will stop sometime, because there is never going to be an unlimited number of zombies.
How my protection works is each connection is checked if it has already been connected since start time, if it has it gets it's last connection time from a stored HashMap and compares that time with the current time, if the time between them two times is under one second, then it will start to deny that host until the last connection time is not a second apart from the current connection time. This could simply be called connection throttling, because it's filtering out fast connecting sockets.
Since JaGeX's servers do not block multi-login, that means nither am I, my attack protection doesn't deal with multiple connecting, because, all the time, that doesn't mean it's an attack, it could be two people living in the same house connecting to my server.
Well, you didn't go into that depth with it on msn but yeah, super sexy job ;D.
Your retarded, this is done in his FrameWork, not some fucking hosting company.Originally Posted by Tyler
Yes, but it's still proper to have protection build in with native code.
I can do as best as I can do prevent it and stop as much as I can. If I ever come across a time when there's a big enough threat to my network, it's illegal can be reported. Any attack that my network framework cannot handle is not big enough to report. If someone puts a big enough force into taking it down, it's simple to report the address(es) that's attacking, even if it's not that person that was actually attacking, they can still be tracked.
Yes, I know that and if you read my first post you could see that I explained what a DDoS attack is.
And also, if it is a DDoS attack I can collect all of the addresses and report all of them. Since it's a botnet, the addresses from the attack will most likely be innocent people, but the police or whatever can help them get the botnet removed, or whatever they do when it comes to reporting DDoS attacks.
A DDoS attack cannot be blocked, end of thread. No matter what you put on your server a 5k botnet will take you down easily.
A 5k botnet will take you down for a few minutes - until all of the zombies are banned - with Gnarly's approach.
rest in peace Qemist, Izzy, TeChNo PuNk, Impulser, & bootnecklad| « IO vs. NIO | List of Java classes » |
| Thread Information |
Users Browsing this ThreadThere are currently 1 users browsing this thread. (0 members and 1 guests) |
blakeman8192