Web hosting reviews - 220 Part II . Running the Show subnet
220 Part II . Running the Show subnet instead of a single host. The return address is forged to be your machine s address instead of the actual sender. When the ICMP packet arrives at the unwitting relay s network, every host on that subnet replies to the ping! Furthermore, they reply to your computer instead of to the actual sender. If the relay s network has hundreds of computers, your Internet connection can be quickly flooded. The best fix is to contact the organization being used as a relay and inform them of the abuse. Usually, they need only to reconfigure their Internet router to stop any future attacks. If the organization is uncooperative, you can minimize the effect of the attack by blocking the ICMP protocol on your router. This will at least keep the traffic off your internal network. If you can convince your ISP to block ICMP packets aimed at your network, it will help even more. (Note that there is some debate about whether or not blocking ICMP packets is a good idea, since ICMP services can be useful for various administrative purposes.) Protecting Against Distributed DOS Attacks DDOS attacks are much harder to initiate and extremely difficult to stop. A DDOS attack begins with the penetration of hundreds or even thousands of weakly secured machines. These machines can then be directed to attack a single host based on the whims of the attacker. With the advent of DSL and cable modem, millions of people are enjoying Internet access with virtually no speed restrictions. In their rush to get online, many of those people neglect even the most basic security. Since the vast majority of these people run Microsoft operating systems, they tend to get hit with worms and viruses rather quickly. After the machine has been infiltrated, quite often the worm or virus installs a program on the victim s machine that instructs it to quietly call home and announce that it is now ready to do the master s bidding. At the whim of the master, the infected machines can now be used to focus a concentrated stream of garbage data at a selected host. In concert with thousands of other infected machines, a script kiddie now has the power to take down nearly any site on the Internet. Detecting a DDOS is similar to detecting a DOS attack. One or more of the following signs are likely to be present: . Sustained saturated data link . No reduction in link saturation during off-peak hours . Hundreds or even thousands of simultaneous network connections . Extremely slow system performance To determine if your data link is saturated, the act of pinging an outside host can tell much of the story. Much higher than usual latency is a dead giveaway. Normal ping latency (that is, the time it takes for a ping response to come back from a remote host) looks like the following:
You want to have a cheap webhost for your apache application, then check apache web hosting services.