detecting a DDOS attack
From: Bill Tangren (bjt_at_aa.usno.navy.mil)
Date: 10/31/03
- Previous message: Ed Wilts: "Re: Installing ES 7.2 with SATA drives"
- Next in thread: Jason Dixon: "Re: detecting a DDOS attack"
- Reply: Jason Dixon: "Re: detecting a DDOS attack"
- Reply: Ed Wilts: "Re: detecting a DDOS attack"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
To: redhat-list@redhat.com Date: Fri, 31 Oct 2003 09:38:35 -0500
Hello all,
Our network had been VERY slow in the last two weeks. We have a T3 line,
but sftp transfer rates are down around 10kB/sec now. I suspect some
type of attack on our firewalls, though I've never heard of an attack
being sustained for so long.
Could someone tell me what to look for? My logs ( I run several servers
behind the firewall, but I don't administer the firewall itself) don't
show anything unusual that I can find. I have been examining web server
logs, and mail logs, and I scrutinize the output from LogWatch.
Where else should I look?
TIA,
Bill Tangren
-- redhat-list mailing list unsubscribe mailto:redhat-list-request@redhat.com?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
- Previous message: Ed Wilts: "Re: Installing ES 7.2 with SATA drives"
- Next in thread: Jason Dixon: "Re: detecting a DDOS attack"
- Reply: Jason Dixon: "Re: detecting a DDOS attack"
- Reply: Ed Wilts: "Re: detecting a DDOS attack"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
