using CloudFlare to mask the ip and the real NS is a good idea. But somehow I felt something not right when I'm about to hand over my domain(s) to a third-party NS
Just my personal thoughts
___________________________________________
MOHAMMAD HAFIZ BIN ISMAIL
Lecturer,
Computer Science Department,
Faculty of Computer & Mathematical Sciences
Universiti Teknologi MARA, 02600 Arau, Perlis
Room : B0-24 (HEA)
Phone : +604 9882896
Mobile :+6012 760 5169
To: "Open Chapter" <[email protected]>
From: "Fathi Kamil Zainuddin" <[email protected]>
Sent by: [email protected]
Date: 22-06-2011 12:41PM
Subject: Re: [OWASP-Malaysia] DDoS Defence Guide Released France CERT
Or we can hide the real ip using something like CloudFlare. Such as an example http://www.zonegeek.tk/ .Wallahualam.
Sent from my BlackBerry® smartphone
-----Original Message-----
From: Harisfazillah Jamel <[email protected]>
Sender: [email protected]
Date: Wed, 22 Jun 2011 12:07:23
To: Open Web Application Security Project (OWASP) Malaysia Local Chapter<[email protected]>
Reply-To: "Open Web Application Security Project \(OWASP\) Malaysia Local
Chapter" <[email protected]>
Subject: Re: [OWASP-Malaysia] DDoS Defence Guide Released France CERT
Team,
Immediate action that we can do is to lower the TTL of the DNS.
Under Preparation step
Confirm DNS time-to-live (TTL) settings for the systems that might be
attacked. Lower the TTLs, if necessary, to facilitate DNS redirection
if the original IP addresses get attacked. 600 is a good TTL value.
Why?
Cache for DNS (ISP level, users DNS cache level) can be expired much
more faster so any redirection that we do by using Domain name can be
done immediately.
On Wed, Jun 22, 2011 at 11:07 AM, Harisfazillah Jamel
<[email protected]> wrote:
> Republish for Operation Defence Malaysia.
>
> DDoS Defence Guide Released France CERT
>
> http://bit.ly/mcsrki
>
> The original page with others publication by French Cert.
>
> http://cert.societegenerale.com/fr/publications.html
>
_______________________________________________
OWASP-Malaysia mailing list
[email protected]
https://lists.owasp.org/mailman/listinfo/owasp-malaysia
OWASP Malaysia Wiki
http://www.owasp.my
OWASP Malaysia Facebook
http://www.facebook.com/OWASP.Malaysia
OWASP Malaysia Twitter #owaspmy
http://www.twitter.com/owaspmy
_______________________________________________
OWASP-Malaysia mailing list
[email protected]
https://lists.owasp.org/mailman/listinfo/owasp-malaysia
OWASP Malaysia Wiki
http://www.owasp.my
OWASP Malaysia Facebook
http://www.facebook.com/OWASP.Malaysia
OWASP Malaysia Twitter #owaspmy
http://www.twitter.com/owaspmy
_______________________________________________ OWASP-Malaysia mailing list [email protected] https://lists.owasp.org/mailman/listinfo/owasp-malaysia
OWASP Malaysia Wiki http://www.owasp.my OWASP Malaysia Facebook http://www.facebook.com/OWASP.Malaysia OWASP Malaysia Twitter #owaspmy http://www.twitter.com/owaspmy
