Jun 21, 2011

Ddos attack :why what how



From last two months barely anybody heard about the term "DoS" or "DDoS", but nowadays everyone appears to be using it.
However, people do not seem to understand the actual meaning of the term. For example: one week ago my friend said that CIA website  has been "ddosed" for 2 hours(he meant, someone was insulting the website).
I'm getting pretty tired of the use of the term while barely anybody actually knows what it means or is facing real attacks, so I've decided to make this post to make it all clear.





What is a Dos or DDoS attack?

The purpose of a DoS or DDoS attack is to overload a server (as in "a computer" used to host services, not a "private server") by overloading it with connections.
An overload on a server will cause the server to go offline for a while and be unavailable for the users, meaning that any services such as a website or private server will be inaccessible.


Is there a difference between a DDoS and DoS attack?

Yes! There's a difference between a DDoS and DoS, even though the purpose will remain the same.
Many people believe it's the same and just use the term "DDoS" because an extra D rougher, but that's incorrect because people here are most likely facing a DoS attack instead of a DDoS attack.

DoS stands for Denial of Service. An attack coming from one single computer and internet connection.
If you have any tool on your computer to attack a server, it'll be a DoS tool. By using the tool you're exposing your own IP address, computer information and such information to the target of your attack.
In most cases a simple attack coming from one single computer is not strong enough to make a server unavailable.


My private server is down, is it a DDoS attack?

No. Like I said, barely anybody here has a proper botnet and is able to do such a DDoS attack.
If you are facing an overload of connections it is most likely a DoS attack coming from a single computer, if it was a real DDoS attack your internet connection probably wouldn't even be working unless you are using another internet connection to host your website (e.g. a dedicated or virtual server at another host/datacenter).



Can I defend my server, private server or website from such attacks?

Yes, it is possible but hard for a private server. Your host usually has an expensive firewall (such as CISCO's), but these gadgets are to fight real DDoS attacks.
Attacks done in this RuneScape private server business cannot be considered as real attack because they're too small to be recognized by firewalls, which will mean you have to fight it on your own.
Fighting attacks is easier when using an OS like Linux with Shell instead of Windows with remote desktop, however I'll spare you this story because you most likely do not want to use Linux due to all the typing instead of clicking. For people who are serious in life, internet and fighting the attacks, obtain some information about "null routing".




How to make Ddos attack !!

50 Most useful websites



Useful Websites Worth a Bookmark!

I am sure that the sites mentioned below solve at least one problem really well and they all have simple web addresses (URLs) that you can easily learn and thus saving you time to visit Google.






01. screenr.com – record movies of your desktop and send them straight to YouTube.
02. bounceapp.com – for capturing full length screenshots of web pages.
03. goo.gl – shorten long URLs and convert URLs into QR codes.
04. untiny.me – find the original URLs that's hiding behind a short URLs.
05. localti.me – know more than just the local time of a city
06. copypastecharacter.com – copy special characters that aren't on your keyboard.
07. topsy.com – a better search engine for twitter.
08. fb.me/AppStore – search iOS app without launching iTunes.
09. iconfinder.com – the best place to find icons of all sizes.
10. office.com – download templates, clipart and images for your Office documents.
11. woorank.com – everything you wanted to know about a website.
12. virustotal.com – scan any suspicious file or email attachment for viruses.
13. wolframalpha.com – gets answers directly without searching  - see more wolfram tips.
14. printwhatyoulike.com – print web pages without the clutter.
15. joliprint.com – reformats news articles and blog content as a newspaper.
16. isnsfw.com – when you wish to share a NSFW page but with a warning.
17. e.ggtimer.com – a simple online timer for your daily needs.
18. coralcdn.org – if a site is down due to heavy traffic, try accessing it through coral CDN.
19. random.org – pick random numbers, flip coins, and more.
20. mywot.com – check the trust level of any website - example.
21. viewer.zoho.com – Preview PDFs and Presentations directly in the browser.
22. tubemogul.com – simultaneously upload videos to YouTube and other video sites.
23. truveo.com – the best place for searching web videos.
24. scr.im – share you email address online without worrying about spam.
25. spypig.com – now get read receipts for your email.
26. sizeasy.com – visualize and compare the size of any product.
27. whatfontis.com – quickly determine the font name from an image.
28. fontsquirrel.com – a good collection of fonts – free for personal and commercial use.
29. regex.info – find data hidden in your photographs – see more EXIF tools.
30. tineye.com – this is like an online version of Google Googles.
31. iwantmyname.com – helps you search domains across all TLDs.
32. tabbloid.com – your favorite blogs delivered as PDFs.
33. join.me – share you screen with anyone over the web.
34. onlineocr.net – recognize text from scanned PDFs and images – see other OCR tools.
35. flightstats.com - Track flight status at airports worldwide.
36. wetransfer.com – for sharing really big files online.
37. pastebin.com – a temporary online clipboard for your text and code snippets.
38. polishmywriting.com – check your writing for spelling or grammatical errors.
39. awesomehighlighter.com – easily highlight the important parts of a web page.
40. typewith.me – work on the same document with multiple people.
41. whichdateworks.com – planning an event? find a date that works for all.
42. everytimezone.com – a less confusing view of the world time zones.
43. warrick.cs.odu.edu – you'll need this when your bookmarked web pages are deleted.
44. gtmetrix.com – the perfect tool for measuring your site performance online.
45. imo.im - chat with your buddies on Skype, Facebook, Google Talk, etc. from one place.
46. translate.google.com – translate web pages, PDFs and Office documents.
47. youtube.com/leanback – enjoy a never ending stream of YouTube videos in full-screen.
48. similarsites.com – discover new sites that are similar to what you like already.
49. wordle.net – quick summarize long pieces of text with tag clouds.
50. bubbl.us – create mind-maps, brainstorm ideas in the browser



Another Top-level Domain( whatever ) coming soon


ICANN (Internet Corporation for Assigned Names and Numbers)  is going crazy and allowing suffixes named after brands, hobbies, political causes and just about anything else.
Under guidelines approved Monday, Apple is planinng to register addresses ending in ".ipad," 

By this the web addresses will expand beyond dot.com, with top businesses and governments expected to hasten to apply for signature domain names.
The Top-Level Domain program will be ratified by ICANN (Internet Corporation for Assigned Names and Numbers) in Singapore on June 20 and will be followed by a four-month global communication campaign to get anyone with a digital presence onboard with this drastic change.
Following this there will be a 60-day window to apply for a Top-Level Domain name, attached with a hefty application fee to discourage joke applications. The first Top-Level Domain names are said to come into effect by the middle of next year.
Trademark holders will be protected when applying for a domain name, whilst it has been reported that no one will be allowed to apply for a city name, such as .Sydney or .NewYork, without written approval from the relevant government.

Comments system

Disqus Shortname