TSMDude wrote...
Quilver wrote...
DDoS does indeed require many, many attackers. To bring down a standard game server would take a minimum of 50 different network connections sending pings. You certainly can't do it with one person, or even 10. If it's one person, then it's not DDoS. Then again, TSMDude tells us that it is not hard to do. Got something to confess?
Unture again Quill...man you must get tired of being wrong. With one computer you can easily do it.
This technically wouldnt eat up much bandwidth of a targetted victim.
Because the 'Multiple' machines are on the local side of the internet connection, you are still only using a single machine/ISP External IP Address, and limited to the bandwidth of a single host.
The more effective DDOS which are harder to trace too, are when you have multiple external IP's converging on a single internet node or server.
eg
PC -> Internet ->
PC -> Internet -> Target
PC -> Internet ->
eg - 3 Internet Connections draining the bandwidth of a single Internet Connection.
The Diagram posted earlier, sort of implies that the Compromized machines are all on a local network, behind an internet connection/firewall.
(Most Single People, can do DDOS, all it requires is more than one computer, but ideally, more than one Connection)
Also - it should be noted, that DDOS' definition in the legal sense was redefined a few years ago to include any form of attack that intentionally brings down a server.
It came after a court case where someone bought down a company server by sending Millions of e-mails to the mail server.
He got off scott free, because at the time, the law said
"It was an e-mail server, it was designed to accept e-mails, all he did, was send e-mails...."
Also - in terms of DDOS,
Most modern routers can block the common forms of TCP DDOS - TCP is a connection requiring socket type, without an accepting host on the destination side, the DDOS wont send.
UDP on the otherhand, is a Connectionless Socket Type, allowing you to broadcast raw data at any destination you want.... the data either gets there or it doesnt, in either case, it will travel as far as it can, and congest networks along the way.
UDP is limited in packet size though, making it not very feasible for DOS attacks.
