What is Denial of Service Attack?
Your response to a denial of service attack will generally depend largely on how well you have prepared for it. If your defenses are in good order, it will be an irritation. If, however, they are not, it can cripple your business. Here is what you need to know to be prepared.
The basics of a denial of service attack
A denial of service attack is exactly what its name suggests. It’s a form of cyberattack which aims to cripple all or part of a website. Modern denial of service attacks are generally distributed denial of service attacks. This means that instead of just using a single compromised device, they use multiple compromised devices chained together into a botnet. This means that the attacks can have much more power.
DDoS attacks can be divided into two broad groups. These are infrastructure-level DDoS attacks and application-level DDoS attacks. Infrastructure level DDoS attacks are essentially a modern iteration of old-school DoS attacks. They are absolutely blatant, brute-force attacks with nothing in the way of subtlety about them. Infrastructure-level DDoS attacks can be devastating while they last, but it’s usually fairly easy to put a quick stop to them, precisely because they are so unsubtle.
Application-level DDoS attacks, by contrast, are much more sophisticated. They aim to cripple a high-value part of the website, such as the login page or the payment page. They don’t have to bring the page to its knees. In fact, they probably wouldn’t want to since this would draw attention to the attack.
They want to slow it down so that its response time becomes unacceptable to modern internet users who are used to having content delivered to them literally in fractions of a second. By taking a “low and slow” approach, attackers can inflict meaningful damage over an extended period. In fact, the damage they can cause may extend long beyond the period of the attack. In addition to customers giving up and going to the competition, search engines may penalize the slow load-time.
Preventing denial of service attacks
As previously mentioned, there is a lot you can do to protect yourself against denial of service attacks. Here are some tips.
Go for maximum bandwidth
Resist any temptation to try to economize on bandwidth. It will almost certainly prove a false economy. Bandwidth is more than “just” an insurance policy against DDoS attacks (although it’s often worth buying as much as you can afford for that reason alone). It’s the fuel that powers your website and makes it run more smoothly and pleasantly for anyone who visits it. Bluntly, if you want to impress your visitors, including those all-important search-engine bots, then you want as much bandwidth as possible.
Monitor your server’s response time
If your server has a problem, regardless of what it is, you want to be alerted as quickly as possible so you give yourself the best possible chance of fixing it before it goes critical. In the context of DDoS attacks, this means ping-testing your servers regularly instead of just when you know there is a problem you need to diagnose.
If you combine ping testing with a decent amount of bandwidth then you will put yourself in a very strong position to deal with DDoS attacks. Your ping testing will quickly let you know when your server begins to slow down and your bandwidth will buy you time to work out what, exactly, is going on and to deal with it.
Get a firewall and use it effectively
If you're running a business website, it makes a lot of sense to sign up for a website vulnerability scanner. These are available from different vendors and each vendor will have its own take on the concept. That said, an anti-malware scanner and a website applications firewall are both non-negotiable and hence should be included with any decent product.
Overall, you need both but in the context of DDoS, it's the firewall that matters. Firewalls not only monitor traffic (in both directions) but they can also be used to filter it. You can use this functionality to whitelist traffic you know to be safe and blacklist traffic you know to be malicious.
This in itself can go a long way to reducing DDoS attacks. It can also go a long way to resolving the ones which do occur. In other words, once you work out the characteristics of the attacking traffic, you can use your firewall to block it. You might also want to sign up for a DDoS mitigation service which can provide a lot of help with high-volume traffic filtering.
Please click here now to have your website scanned, for free, by cWatch from Comodo.