[123783] in North American Network Operators' Group
Re: OBESEUS - A new type of DDOS protector
daemon@ATHENA.MIT.EDU (Christopher Morrow)
Mon Mar 15 22:06:00 2010
In-Reply-To: <bb0e440a1003151902m530d7332jdac2d77e96b191ff@mail.gmail.com>
Date: Mon, 15 Mar 2010 22:05:28 -0400
From: Christopher Morrow <morrowc.lists@gmail.com>
To: Suresh Ramasubramanian <ops.lists@gmail.com>
Cc: "nanog@nanog.org" <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Mon, Mar 15, 2010 at 10:02 PM, Suresh Ramasubramanian
<ops.lists@gmail.com> wrote:
> That's right M.Fortaine .. and your model does not, as yet, appear to
> address what you term as EDoS and what the general security community
> calls "DDoS"
eh.. I guess I'm splitting hairs. the goal of 100k bots sending 1
query per second to a service that you know can only sustain 50k
queries/second is.. not to economically Dos someone, it's to
obliterate their service infrastructure.
Sure, you could ALSO target something hosted (for instance) at
Amazon-AWS and increase costs by making lots and lots and lots of
queries, but that wasn't the point of what Deepak wrote, nor what i
corrected.
-chris
> On Tue, Mar 16, 2010 at 7:29 AM, Guillaume FORTAINE <gfortaine@live.com> =
wrote:
>> From my point of view, it seems similar to the EDoS concept :
>>
>> http://www.rationalsurvivability.com/blog/?s=3DEDos
>>
>> "EDoS attacks, however, are death by a thousand cuts. EDoS can also util=
ize
>> distributed attack sources as well as single entities, but works by maki=
ng
>> legitimate web requests at volumes that may appear to be =93normal=94 bu=
t are
>> done so to drive compute, network, and storage utility billings in a clo=
ud
>> model abnormally high."
>
>
>
> --
> Suresh Ramasubramanian (ops.lists@gmail.com)
>
