On Sunday 17 June 2001 09:22 pm, s wrote:
>�Well, naw, but it's cool he switched. �I was just mentioning it
>�because Tom said Steve was unwise to use windows for a server.
>�-s
� �No, I said I lack faith in any security expert who would choose the
most insecure server available, Winblows.
>
>�On Sunday 17 June 2001 05:53 pm, you wrote:
>�> s wrote:
>�> > He has recently moved his site and ngs to a unix server (after
>�> > the recent DoS attacks). �So I guess he's catching on. �:-)
>�>
>�> Can Linux protect him from a DoS attack?
>�>
>�> Randy Kramer
� Ya know I was gonna drop out of this because it's no longer on topic
for this list, but search just now at �http://www.netcraft.com/whats/ �
shows that www.grc.com (ShieldsUP)
"The site www.grc.com is running Microsoft-IIS/5.0 on Windows 2000."
just as his site currently says Gibson is in his warning message that
his scan could be innacurate 'cause his Windoze server is buggy..
� �The only reason this topic is pertinent is that after I gave the
simple instructions for configuring an iptables firewall, I recommended
that it be test scaned to verify it. Granted I implied the Gibson's
site isn't the best, and that Secure Design's was better, more
comprehensive and more accurate. I still believe SD is _much_ better,
YMMV. �BTW, www.sdesign.com reports
"The site www.sdesign.com is running Apache/1.3.6 (Unix) on Linux."
� � To answer Randy, very little can be done to protect a site before a
DoS begins, but much can be done during and after. �FWIW, both sites
were DoS'd. Gibson's Windoze server was down and out for several days
after the attack was over. SecureDesign's Apache/Linux was only down
during the attack for a few hours. You may want to Google 'Denial of
Service' for more info.
--
Tom Brinkman [EMAIL PROTECTED] Galveston Bay
