Re: [Hampshire] DDoS survival strategies

Hello,

On Mon, Sep 05, 2011 at 04:11:39PM +0100, Damian L Brasher wrote:
> What general growing problems do systems engineers face in the future?

I think that there are a lot more options for scaling these days,
but the challenges are also different. As ever we must do more with
less, which means actively working with other disciplines instead of
treating it as an "us and them" situation. So that would be the
"devops" movement - developers and operators need to understand each
other and work together better if decent scaling is to be achieved, as it
has to be done at both the application and system layer.

"Cloud" is not something to be afraid of, but not something to be
complacent about either. There is going to be a balance between
owning your own hardware platform versus renting bits of someone
else's platform as a service.

> Will IPv6reduce DDoS attack success or enhance the attacker's tool kits?

There are a couple of new abuse angles with IPv6 but I expect that
the old favourite of massive amounts of small UDP packets from a
botnet will remain the big killer for many years to come, whether
over IPv4 or v6.

> Can we reassure customers that they will not lose business to DDoS
> without investing large amounts capital in security technologies?

No.

If someone wants to DDoS you out of existence, you better have a lot
of money to mitigate it.

It doesn't have to be capital expenditure since there are plenty of
"DDoS mitigation as a service" providers out there, but I don't
think you intended to make the distinction between capex and revex.
It's really expensive either way.

> What do you think? - is DDoS a global or local problem; or both?

It is local to this Internet (I don't understand the question).

Cheers,
Andy

--
http://bitfolk.com/ -- No-nonsense VPS hosting