Hosting Provided By

RE: DoS Attacks, Detecting the Source, and Service Providers

From: Rob Shein <shoten(at)starpower.net>
Date: Tue Feb 04 2003 - 13:56:13 EST

It is not a requirement, unless for some reason it's in their terms of service. That said, I've never seen a ToS from an ISP that involved backtracing a DoS. Detecting the source, in the event that it involves spoofed packets (as they almost always do), requires backtracing. If the DoS is traffic-intensive, it may be coming from more than one source as well, and there is no reliable way to determine this without backtracing either.

> -----Original Message-----
> From: Hamid [mailto:hamidmails@panaisp.net]
> Sent: Monday, February 03, 2003 4:40 PM
> To: incidents@securityfocus.com
> Subject: DoS Attacks, Detecting the Source, and Service Providers
>
>
> Hi everybody,

This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com Received on Tue Feb 4 18:10:11 2003

This message: [ Message body ]
Next message: H C: "Re: DoS Attacks, Detecting the Source, and Service Providers"
Previous message: Boyan Krosnov: "RE: FTP/Port 1038"
In reply to Hamid: "DoS Attacks, Detecting the Source, and Service Providers"
Next in thread: H C: "Re: DoS Attacks, Detecting the Source, and Service Providers"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:01:57 EDT