In the world of Information Security, especially DDoS, Barrett Lyon is no stranger. Barrett was one of the co-founders of Prolexic (a company that specializes in DDoS Protection).  Barrett recently launched a new venture, called 3Crowd.

What intrigued me – is how I could possibly overlook a post by Barrett on his blog regarding DDoS. Albeit, he writes a lot of stuff concerning security, this mini-tutorial is worth looking into.

• Using Squid proxy to Fight DDoS
• and also this article “The Top 10 Things to Do While Under DDoS“

The latter is okay, but the Squid Proxy tutorial is something worthy for newbies to look into. How a Squid Proxy can really deflate a lot of the attack traffic, not to mention that most providers such as Prolexic, Gigenet, Staminus, etc. use SNORT and FreeBSD based boxes running PF (Packet Filter). A FreeBSD Box running PF can scale quite well and is very good an thwarting traffic. A lot of new small service providers are propping up – using a distributed FBSD setup, they are able to break up the incoming traffic and filter it – to quite a significant extent, and then parsing the traffic onto a secure (read: optimized for Anti-DDoS efforts) squid box and it deflate the incoming DDoS attack to a very large extent.

However, as with everything else in life, no one will provide you with the complete recipe that works for DDoS protection.

More of this can be read at Help Net Security.

The notion is that since web servers have high-speed connectivity to the Internet vs. your average home PC, better to compromise a single web server for a DoS attack rather than 50 PCs.

More can be read on this here on CNet: New DoS attack uses Web Servers as Zombies

Read the complete article here.

Bots that can be used for stealing passwords, spamware, adware, ddos attacks, etc. are now available for sale if you know where to look.

Read more here.