Comments on: Some more info on the bluehost.com DDos http://infosecplace.com/blog/2006/10/05/some-more-info-on-the-bluehostcom-ddos/ Commentary on the State of Information Security Thu, 02 Feb 2012 20:22:19 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: Christian J. Koch http://infosecplace.com/blog/2006/10/05/some-more-info-on-the-bluehostcom-ddos/comment-page-1/#comment-1102 Christian J. Koch Fri, 06 Oct 2006 03:35:18 +0000 http://infosecplace.com/blog/2006/10/05/some-more-info-on-the-bluehostcom-ddos/#comment-1102 Michael, I use BH too, I didnt notice if my site went down or not, but I dont remember If i even checked yesterday or not? lol Maybe they threw an acl on just blocking a block of their own ips to everyone? Who knows They should look into arbor peak flow or cisco anomaly guard / traffic anomaly detector, or enforce rate limiting/policing on their routers.. maybe even black hole filtering, but theyre probably too small for that stuff i dont believe any ddos mitigation actually works 100% but we use arbor and cisco traffic anomaly guard ..they are great pieces of gear..and they do the job if needed..not 100% but theyre pretty good.. Michael,

I use BH too, I didnt notice if my site went down or not, but I dont remember If i even checked yesterday or not? lol

Maybe they threw an acl on just blocking a block of their own ips to everyone? Who knows

They should look into arbor peak flow or cisco anomaly guard / traffic anomaly detector, or enforce rate limiting/policing on their routers.. maybe even black hole filtering, but theyre probably too small for that stuff

i dont believe any ddos mitigation actually works 100% but we use arbor and cisco traffic anomaly guard ..they are great pieces of gear..and they do the job if needed..not 100% but theyre pretty good..

]]>