OBTW, this is a pretty good article about defending against DOS/DDOS attacks:

Protecting against DDOS attacks

The author recommends you keep a current backup on AWS EC2/EBS (for example) and run it when you are a victim of an attack.

The reason is that it is too expensive to run full time on EC2 against a massive attack, but you can run it there to frustrate the attacker (and keep your customers happy), and maybe they will go away (and you can return to your cheaper configuration).

Cheers.

I find it difficult to take an article serious if the author thinks an ISP is the same as a host.

Well, good for you :-)

I think the article is well written and provides sound advice, and I have considerable experience in the security field.

In addition, I don't think the author thinks an "ISP is the same as a host" (as you said), he just did not choose his words carefully.

Obviously, the author is smarter than that.

--------------- Added [DATE]1249655031[/DATE] at [TIME]1249655031[/TIME] ---------------

Anyway, where in the article did the author say "An ISP is the same as a host"... I did not read that into anything written, and did a search, and did not read it either directly or indirectly :-)

When i posted my comment i had only read part of the article. The total article is usefull and does provide some tips on how to handle, or prepair for, a DDOS.

He nevers say "host = ISP", but he uses the terms in the document as indentical. 1 example:

He is clearly talking about his host providing the server, not about the provider of the internet connection.

Listen to some of the lil wayne songs, he has some weird, confusing lyerics.

Like " I got old money, it could have been a dinosaur"

HAHA

Hello
In stupid people terms, can someone briefly explain to me what all this attack stuff means? Is this something I have to worry about on my forums? I have tech support obviuosly but don't want to run into any overage problems which will cost me time and money.

Thanks

Gabby

DDos attacks are made my others who have nothing better to do than target a random site and harass it to the end, i have been targeted several timed due to the nature of my forum. anyway i use lunarpages hosting company and their servers are top notch, i have to be careful with my ftp clients or i get denied myself...lol . some hosts that are resellers can't do much, while others that have their own server farms can handle situations much better.

Basically i am saying if you become a victim of continued attacks, move your site to a very good host.

Are you on twitter? Yesterday twitter was brought down due to a ddos attack. Basically, several computers all try to hit the site at the same time and it stops 'real' users from trying to access the site.

lol.. i was about to mentioned that twitter was getting pounded. But they refused to say it, till later. facebook was also ddos a while back.There was a inside joke about myspace was doing the ddos...lol but here is the report

http://news.cnet.com/8301-13577_3-10...dStoriesArea.1

Ok everyone. Thank you so much for explaining this. I normally have about 50-70 posts a day so if I start to see very large numbers of people trying to post, this is a DDOS attack? DO people have to be logged into your forum to do this or do they just bring up your forum all at the same time?