Hi Friends,

I saw one web site down several hours .
Later they claim that it was due to DDOS attack.

I have similar website like that one.

Thus I am worried mine too.

How can I protect my website from DDOS attack.

Thanks and Best Regards,
WO

There really is nothing you can do to prevent a DDoS attack. NO software or countermeasures can stand up to attacks from 100 servers at once. All you can do is take preventive measures, and respond quickly if an attack takes place.

1. Create and implement a good security policy
2. Set up a firewall which does ingress and egress filtering at the gateway
3. Use host-based intrusion detection on your gateway/hosts to alert you to port scans and break-in attempts

To prevent your network from being used as a slave follow these steps:
Conduct regular audits on each host on the network to find installed DDoS tools and vulnerable applications.
Use tools like Rkdet, Rootkit Hunter, or chkrootkit to find if a rootkit has been installed on your system.
Perform a general security audit on your systems on a regular basis
Keep your systems up to date to minimize software vulnerabilities
Check for rootkits
Check logs for evidence of port sniffing, etc.
Check for hidden processes by comparing the output of 'ps' and 'lsof'.
Check system binaries with, e.g., Tripwire to see if they've been changed since your last snapshot
Check for open email relays
Check for malicious cron entries
Check /dev /tmp /var directories for odd files (i.e., '...', wrong permissions/ownership on device files, etc.)
Check if your backups are maintained
Check for unwanted users and groups (examine /etc/passwd)
Check for and disable any unneeded services
Check for SUID, SGID, and 'nouser' files on your system with the 'find' command
Check the system performance (memory and CPU usage); note the average levels

__________________

Dear kelevraco,

Thanks for your reply with great information.
But it sounds like a heave and difficult task for me.
Some of the term you mentioned, I do not quite understand.
Consider me as fresh computer technaician, If you don't mind can you elaborate more for each of your suggestion in layman term.

And I am hosting one shared server.
Can I do all this on share server.

May I know the requirement for the hosting service to make it work all your suggestion.

Best Regards,
WO

Shared server meaning free or just two domains?
And let me know what you are refering to for needing more info. 99.9% of everything you can do is actually on your own PC. Your web host I'm sure has more then enough security in place to prevent this. However they still happen.

__________________

I am hosting my website at http://www.ipowerweb.com.
Can I still do all your suggestion ?

I think there is a miss communication going on here. There is very little you can do to protect your site from being hit with a ddos. About the only thing you can do to prevent one on your site is be aware when one is happening. and just start banning ips or even blocks of ips. most of this is for your home or office so that your pc does not get hijacked and used for one of these attacks.

__________________

You mean the your no.2 post is referring for home or office PC .
Not for a website.
Thanks for your info anyway.

__________________
Unlimited band width,Unlimited disk space
Free Domain,Top 10 Best Web Hosting
Price starting from as low as $3/month

Your website will have most of its protection from your hosting company. They are picky about what programs you add to their servers so blocking a attack on your webpage is up to your hosting company. As for your own personal computer is where you can prevent things from happening. Even if you are not being attacked there can be programs and scripts on your personal pc that allow it to be used to attack other computers and webpages. The way it seems prosecution works on these cases is it is up to you to prove you where hijacked and did not attack sites or personal computers. This is a better safe then sorry preventive measure. If you are using Microsofts fire wall you are at risk. Microsoft is the most hacked software on the internet.

__________________