Another busy month of attacks in January, this time it is about High Orbit Ion Canon (HOIC) which is an application to facilitate DDoS attacks on web servers. See below for the latest analysis blog about it. He linked both HOIC and LOIC (Low Orbit Ion Canon) with details of the various attacks approaches such LOIC using an integrated JavaScript in a web page, the binary version or versions UDP or TCP then HOIC is all about Dos HTTP.
There are many different options that customers have to protect against attacks such as LOIC or HOIC. Some customers start protecting their infrastructure design. Some evolutionary design with NetScaler horizontal level of one or more service providers where they could clear the buffer and the attack traffic before connecting back to the original to the company servers.
There are a few other customers who have more structured strategy in layers with each layer by specific actions, trying to stop as much as possible before it is on Web servers as well (ie starting upstream to their Internet service providers and working down). In this scenario, customers may have specific anti-DDoS and deep inspection features of traffic on the perimeter, then use NetScaler for specific needs. An example of a specific need is like the search for the presence of some cookies with the NetScaler functionality policy cookie encryption for specific and essential sections of the client's website. If requests are not cookies, NetScaler generally file the application or to redirect some occasions. There are also specific NetScaler features customers have used these types of attacks such as the following:
Access Control Lists
HTTP DoS Protection
Rate Limiting
Removing invalid HTTP requests
Application Firewall
SYN cookies
This Citrix Knowledge is a very complete basic internal doc that describes this attack L7 protection further, writing our own super-technical Relationship Manager (Mark Hillick) supporting many impressive customers in Europe. Citrix Sales / SEs should have access to this document, but all the features described above can also be found in citrix.com download page for all NetScaler docs.
0 Komentar