You are here: silicon.com > Resources > White Papers > Security > Intrusion - Tampering > Denial of Service

Denial of Service White Papers

Distributed Denial of Service: Trin00, Tribe Flood Network, Tribe Flood Network 2000, and Stacheldraht - CIAC-2319

Overview One type of attack on computer systems is known as a Denial of Service (DoS) attack. A Denial of Service attack is designed to prevent legitimate users from using a system. Traditional Denial of Service attacks are done by exploiting a buffer overflow, exhausting system resources, or exploiting a system bug that results in a system that is no longer functional. In the summer of 1999, a new breed of attack has been developed called Distributed Denial of Service (DDoS) attack. Several educational and high capacity commercial sites have been affected by these Distributed Denial of Service attacks. A Distributed Denial of Service attack uses multiple machines operating in concert to attack a network or site. There is very little that can be done if you are the target of a DDoS. The nature of these attacks cause so much extra network traffic that it is difficult for legitimate traffic to reach your site while blocking the forged attacking packets. The intent of this paper is to help sites not be involved in a DDoS attack.

The first tools developed to perpetrate the DDoS attack were Trin00 and Tribe Flood Network (TFN). They spawned the next generation of tools called Tribe Flood Network 2000 (TFN2K) and Stacheldraht (German for Barb Wire). These Distributed Denial of Service attack tools are designed to bring one or more sites down by flooding the victim with large amounts of network traffic originating at multiple locations and remotely controlled by a single client.

This paper discusses how these DDoS tools work, how to detect them, and specific technical information on each individual tool. It is written with the system administrator in mind. It assumes that the reader has basic knowledge of the TCP/IP Protocol.

Further White Paper Details
Publisher	CIAC: U.S. Department of Energy (DOE)	File Format	PDF, requires Acrobat Rdr 5
Date Published	February 2000	Downloads	1773
Format	White Papers
Topics	Denial of Service, Security Tools

Did you find this white paper useful? 15 out of 21 users found this white paper useful

Slammer time - SQL worm brings net to its knees over weekend

SQL Slammer's code instructs the Microsoft SQL Server to go into an endless loop, continually sending out data to other computers, in effect performing a denial of service attack, F-Secure said, comparing the slowdown to the impact of the Code Red...

Channel:
Security Strategy

Cyber gangs hold companies to ransom

The most common and effective ploy being used by these criminals is the threat of a distributed denial of service attack (DDoS), which can take down a site by bombarding its servers with emails from a network of PCs all breached by a Trojan.

SCO denial-of-service attack intensifies

The attack, which SCO identified as a SYN flood, tries to open a connection with a server across the internet by sending a SYN packet to the computer. The statistics suggest, however, that the attack is more a brute-force tactic of inundating a...

Channel:
Law & Policy

Zombie PC army responsible for big name web blackout

Such a distributed denial-of-service, or DDoS, attack can block access to a website for several hours or even days. A security professional who participated in investigating the attack confirmed that the DDoS attack apparently came from an...

Channel:
Malware

Cybercrime - together we can defeat it

The chief technology officer of online gaming portal Betfair has called on more government and industry cooperation to combat the growing threat of distributed denial of service (DDoS) attacks to online businesses.

Channel:
Security Strategy
Tags:
ddos,
isps

Security experts criticise Phorm

D is for DDoS These request bounce-backs would magnify any denial-of-service attack, according to Clayton, and could also create incompatibilities with browser-security measures. Security experts have criticised targeted-ad company Phorm, claiming...

Channel:
Security Strategy
Tags:
threat,
ads,
phorm

Virtualisation: Architectual Considerations and other Evaluation Criteria

In the past several years, server virtualisation technology has moved quickly and firmly into the IT mainstream. Of the many approaches to system virtualisation available in the market today, VMware's hypervisor architecture has gained the greatest market acceptance. This paper examines the architectural issues, solution support, and enterprise readiness required when deploying such a virtualisation solution.

Publisher:
EMC

Getting Started with Master Data Management

Master data management forms part of an overall enterprise governance program that aims to establish trusted data throughout the enterprise. This white paper from Mike Ferguson of Intelligent Business Strategies defines master data, examines why it is needed, and explores methodologies for implementing master data management.

Publisher:
DataFlux

Optimising Storage with Global File Virtualisation

This white paper will provide an overview on how Rainfinity Global File Virtualisation virtualises unstructured data environments and moves data -including active, open files-without disruption to users or applications. Rainfinity is the only enterprise-class file virtualisation solution, and delivers complete NAS optimisation across geterogeneous environments, such as NAS, CAS, and file servers.

Publisher:
EMC

Also on silicon.com

Site Navigation:

Denial of Service White Papers

Distributed Denial of Service: Trin00, Tribe Flood Network, Tribe Flood Network 2000, and Stacheldraht - CIAC-2319

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific