bill's blog

Just another WordPress weblog

Browsing Posts tagged denial of service

There are many ways to create a DoS (Denial of Service) attack. The basics of a DoS attack is to overwehlm the resources of a host making it next to impossible to deal with legitimate service requests.

These attacks could be something as benign as downloading a youtube video on a network that doesn’t have the bandwidth to support such a download. To something a bit more devious such as a SYN flood attack where the attacker manipulates the way TCP setup and tears down its connection.

DoS attacks could take advantage of hardware (or lack there of)… software bugs… holes in the way some services work.

ETHERAPE is an excellent “real-time” network-monitoring tool. It allows you the ability to see how your network is being utilized! The first time you start up Etherape you’ll know immediately what you are looking at. The larger the line the more traffic you’re seeing. Etherape separates out different types of traffic by color making it very easy to see which services of traffic are used the most relative to one another. Lastly, you can see which host is send verses, which is receiving the data. This is very important information. It will allow you to see whether the traffic is normal or not. For instance… Normally with http traffic, the server should be sending the vast majority of traffic out onto the wire. HTTP requests are far smaller then the actual content the server is putting out. However, if this is reversed and you see huge amounts of traffic coming in… and people are complaining they can’t get to the site… you may be the target of a Denial of Service attack! Simple yes BUT it does take a lot of the guesswork out of the troubleshooting process.

One nice feature to Etherape is that it has the ability to play back dump files. This comes in handy when you’re trying to analyze something that is happening when you’re not there to watch it. The down side to this is that there is no control over the speed of playback (therefore you’re watching packets fly by in real time). Ouch! Etherape doesn’t do much but what it does do it does nicely!

In very simple terms jurisdiction deals with the where, what and who of law. It is who has authority over a particular area. Many people equate jurisdiction to a specific locality such that a police officer can’t arrest someone outside of his/her jurisdiction. While this is one of its meanings it is also true that the authority can be with regard to a subject matter or a specific person/s.

Jurisprudence is more nebulous in nature. It deals of the why and how of law. It is the studying/theory of law.  It is determination of whether or not laws are needed in the first place. Are the laws that are created morally sound? In which circumstances laws need to be applied. What kinds of punishment if any need to be apply in those circumstances?

Unfortunately, law and cyberlaw in particular isn’t simple.

With the increase of usage and the daily dependence on the Internet, laws need to be created to deal with the types of crime that can be committed via this new medium. The media seems focused on the really big issues such as virus outbreaks and identity theft but there are less spectacular issues to deal with such as e-commerce, denial of service attacks and corporate espionage.

Laws protect a citizen’s rights. Cyberlaw is extensions of the laws that already exist and protect citizens in the physical world. Additionally, new laws need to be enacted that deal with the technology driven aspects of the Internet.

One of the main problems when dealing with cyberlaw is that different countries have different options on what is right and what is wrong. Many people the world over have a very basic sense of right and wrong. Deciding that every question is where jurisprudence comes into play. Jurisdiction needs to be established. One example that is often citied is the United State’s First Amendment rights to free speech. Many countries do not have this right and have laws that restrict what can be said/published.

Should Americans be able to publish information that is restricted in other parts of the world? Jurisprudence.
Should Americans be put on trail because they published “restricted” information on their web site? Jurisdiction.
What about their First amendment rights? Jurisprudence.
Who considers the information restricted? Jurisdiction.

Complicated? To say the least!