: How would I tell if a prospective client website is under DDoS attack? I have a person asking me whether the DDoS Mitigation Service they're using is worth it. This is out of my expertise,
I have a person asking me whether the DDoS Mitigation Service they're using is worth it. This is out of my expertise, but clearly at some point someone sold this service to the client.
Assuming I don't have anything but a domain name, what information can I gather about whether they are indeed under attack and/or how well the DDoS Mitigation Service is working?
Assume I don't have any administrative access to the site/server(s) in question.
More posts by @Dunderdale272
2 Comments
Sorted by latest first Latest Oldest Best
You should ask your client have they ever experienced down time in the past which their provider could not explain? And if their provider said a server was DDoSed, where they the intended target or was another server or router attacked which affected them indirectly?
I think people are overly worried about getting DDoS with all the hacking incidents in the news. It's rare for most companies to be randomly targeted. If they are a big corporation who have reason to believe they will be targeted, they should discuss that with their hosting provider first before relying on some third party application which i'm sure they are paying for that may not be very helpful in the event of a massive DDoS.
If they've never had any down time they shouldn't need to pay extra. There are plenty of applications for windows and linux to monitor for port scans, DDoS, tutorials on setting up good IPTables/IPChains rules to limit types of packets to ports etc.
IMHO the mitigation service is just playing on companies fears of a future DDoS attack.
Download the LOIC tool, grab some friends and mount and attack, see what gives and what doesn't!
Terms of Use Create Support ticket Your support tickets Stock Market News! © vmapp.org2024 All Rights reserved.