AdmiralB
Apr 9 2004, 08:51 AM
okay i heard alot of test for severs and i dunnoe how to begin
i used xscan for vul and stuff
and i set up retina for sniffing packets
but how do i doss it?
do i use a program or wad
allik
Apr 9 2004, 08:57 AM
i dont really understand your question but i think u want to know how to check for different vuln's?
first do a open port scan with scan1000.exe or some other! then use the scan.txt as hostfile for a scanner/bruter
AdmiralB
Apr 9 2004, 08:59 AM
not exactly
i am trying to say i set up my svr and checked for vulns
and
i also have set up svr defence
so now wads left is withstanding a d-o-s
so how do i dos my svr?
do i use a program to dos
i am A noob dun laugh :|
allik
Apr 9 2004, 09:23 AM
still didnt understand the whole thing :/
the servers is yours and u want to secure it now?
AdmiralB
Apr 9 2004, 10:48 AM
yeah do a stress test(defence test)
see how well it fairs
so how do i go about doing this?
Killaloop
Apr 9 2004, 11:11 AM
| QUOTE (AdmiralB @ Apr 9 2004, 10:48 AM) |
yeah do a stress test(defence test)
see how well it fairs
so how do i go about doing this? |
depends on your operating system and on the services you are running.
make a list and look for a corresponding DoS exploit.
or download nessus and let it do the job
AdmiralB
Apr 9 2004, 11:24 AM
okay some1 explain dos and how to do it and how to defend against it
Killaloop
Apr 9 2004, 11:36 AM
| QUOTE (AdmiralB @ Apr 9 2004, 11:24 AM) |
| okay some1 explain dos and how to do it and how to defend against it |
Dos = Denial of Service
a DoS is an attack against a certain service running on your system. this service has to be reachable from the internet and has (in most cases) to accept commands from a remote user.
One attack works the way that the attacker sends that many commands to that service that this service can no longer operate and will freeze or shutdown.
another way is that there is a bug (like most real dos exploits are targeting) within the way the request or the command from the attacker gets interpreted.
Some DoS exploits target buffer overflows sending too much data as a specific argument jumping to somewhere they shouldn't jump, cause a fault and the service crashes.
so basically you can say all the services you are running which have an open port allowing other users to connect to it is a possible target for getting attacked.
Solution: Always get the latest updates and only allow your needed services to be reached from outside
AdmiralB
Apr 10 2004, 04:33 AM
can u tell me how i can use these various dos methods on my svr?
Tyrano
Apr 10 2004, 05:24 AM
dude read first...
Denial of Service attacks are specific to whatever service your server is running. There is no real general DoS, unless you send millions or billions of packets to the server, because the router is not dropping them, and the server can not keep up with discarding packets and identifying which are proper. Personally it sounds like you're trying to DoS someone, but thats just me.
AdmiralB
Apr 10 2004, 06:34 AM
hmmmmmm
give me an example of attacking my svr wad do u use?
application?
and i heard alot about this rddos ddos and dos
wads the difference
and if so what program do i use to drop packets?
Psychotec
Apr 10 2004, 07:00 AM
why dont you download retina scanner....its scans for vuln. and then you can search them via google...
also look which port are open and serach with google for its vuln.
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please
click here.
