hello ,
can any body provide me details on , how to stop "attacks of denial of serivce & death of ping" on solaris OS.
any commands to know such attacks , and of course remedies?
thanx in advance
raju
by installing the latest solaris recomended, security pathes will fix and prevent future attacks.
you can get the latest security patches for sun on http://sunsolve.sun.com
here is a site that could be of more help
in stoping attacks
Keeping the server daemons and OS tcp/ip stack patched cannot be stressed enough, the most effective DOS attacks are those which cause much system resource to be consumed for little traffic (such as a buffer overflow crashing an apache process, the request is small but the recovery uses resource, If I can send 100 requests a second to a vulnerable box then it has to spawn 100 processes a second and still serve other clients, this scales rather badly).
There are two other things you can do:
1.) Look at your gateway routers and be certain these too are patched. You may like to look at some of the advanced traffic queueing options which may be there.
2.) A proactive monitoring system so you can detect abnomally high loads on a machine,strange traffic patterns in your network , alalyse events and then block the source IP addresses as far out as possible (preferably at your ISP, otherwise he who has the greated bandwidth will win).