How can a person secure his site against a DDoS attack?I have heard of sites being defaced.How can one prevent that from happening?Since this is the firewall help forum,I thought I could ask this.Sorry if this is mentioned anywhere else cause I’m a newbie.
A site cannot be defaced through a DDOS attack.
A DDOS attack occurs by hijacking a heap of computers and getting them to flood an IP address (Site) with spoofed SYN packets or flood computers that are not secured with some type of spoofed connection (Forgotten what it is called) to get them to send allot of traffic back at the spoofed IP address.
Unless you are running the server of your own computer then the group you are paying to have the site up that own the servers, it is there problem (-:
Defacing of sites can only occur if you have forums, or input that can be entered into the website. Your Web Server application could be vulnerable, or a brute force of the admin password if some sort of remote login is enabled to the server. For most hacks to work on websites, they consist of SQL injection or JavaScript injection attacks, these can only exist if you have forums or a search function. To prevent SQL attacks simply conduct some filtering on the input that can be entered into the site to prevent SQL commands from being passed to the SQL Server.
Your site can be hacked VIA another site if your site exists on the same server as the other vulnerable site.
thanks for the clarification.
A DDOS attack can be protected against in a few ways, one i know of is to set a maximum time that the server waits for a response in the event of a SYN attack. A spoofed Source Routing attack is very hard to protect against because the traffic is bounced of legitimate computers and then to the web site/server.
If you gave us more details as to what web server program you are using, we could look at the specs and see what type of protections it supports.
No problem (-: .