Upgrade to Pro — share decks privately, control downloads, hide ads and more …

OMG DDoS - Drupal lessons learned the hard way

David Stoline
July 28, 2012
Technology
3
740

OMG DDoS - Drupal lessons learned the hard way

A distributed denial of service attack can be a painful and costly thing these days. With #hacktivism on the rise who knows when and if your Drupal site could soon be a target.

This talk was given at Capital Camp July 28, 1:00 - 1:45 PM in room 310 of the Marvin Center at George Washington University.

See full video at http://www.youtube.com/watch?v=qGdtF7zvLaM

David Stoline

July 28, 2012
Tweet

More Decks by David Stoline

See All by David Stoline
Demystifying deployment workflows
dstol
0
30
Testing with Robots
dstol
0
65

Other Decks in Technology

See All in Technology
Is Go A Good Language to Build Compilers?
kennethanceyer
0
110
EventHub Startup CTO of the year 2024 ピッチ資料
eventhub
0
130
【Pycon mini 東海 2024】Google Colaboratoryで試すVLM
kazuhitotakahashi
2
680
Zennのパフォーマンスモニタリングでやっていること
ryosukeigarashi
0
640
Oracle Cloud Infrastructure データベース・クラウド:各バージョンのサポート期間
oracle4engineer
PRO
30
14k
Next.jsとNuxtが混在? iframeでなんとかする!
ypresto
2
1.9k
OCI Security サービス 概要
oracle4engineer
PRO
0
6.6k
SRE×AIOpsを始めよう!GuardDutyによるお手軽脅威検出
amixedcolor
1
270
Storybook との上手な向き合い方を考える
re_taro
5
3.8k
セキュリティベンダー/ユーザー双方の視点で語る、 Attack Surface Managementの実践 - Finatextパート / cloudnative-architecture-of-asm
stajima
0
1.2k
SDN の Hype Cycle を 一通り経験してみて思うこと / Going through the Hype Cycle of SDN
mshindo
3
290
TypeScript、上達の瞬間
sadnessojisan
49
14k

Featured

See All Featured
Building Adaptive Systems
keathley
38
2.3k
The Straight Up "How To Draw Better" Workshop
denniskardys
232
140k
A Modern Web Designer's Workflow
chriscoyier
693
190k
The Success of Rails: Ensuring Growth for the Next 100 Years
eileencodes
44
6.8k
Optimising Largest Contentful Paint
csswizardry
33
2.9k
Teambox: Starting and Learning
jrom
133
8.8k
Distributed Sagas: A Protocol for Coordinating Microservices
caitiem20
329
21k
Writing Fast Ruby
sferik
627
61k
No one is an island. Learnings from fostering a developers community.
thoeni
19
3k
Navigating Team Friction
lara
183
14k
The Illustrated Children's Guide to Kubernetes
chrisshort
48
48k
ReactJS: Keep Simple. Everything can be a component!
pedronauck
665
120k

Transcript

  1. DDoS OMG!

  2. David Stoline @unncola

  3. How many of you have experienced a DDoS?

  4. Assholes

  5. #opmegaupload #opsomething #opsomethingelse #hashtag! #opcannabis #opdefense

  6. Source: http://www.whatwouldmarksonnabaumdo.com/

  7. QUICKLY!

  8. But ideally,

  9. BEFOREHAND!

  10. Have a plan!

  11. Can we provision N more servers? Can we afford to

    be be down? How quickly can we block them? Should we even block them? Can we find the attack on Twitter, Facebook or IRC? What type of server do we need? Can the site be down for an hour? How do you even block an attack? Is the attack just an annoyance? Lurk in their chatrooms! Who do we notify when the site is under attack? Our bosses? Police, FBI, NSA, CIA?

  12. Log analysis

  13. Splunk * uber expensive** ** worth every penny *

  14. Logstash GreyLog2 DIY Google Analytics Real-time Hadoop beta Flume Loggly

  15. “Humans are notoriously bad at recognizing patterns” --me, just now

  16. None

  17. Patterns!

  18. None

  19. Tools of their trade

  20. Low Orbit Ion Cannon

  21. Low Orbit Ion Cannon Lite

  22. High Orbit Ion Cannon

  23. ab, curl, jmeter, seige...

  24. Tools of our trade

  25. mod_security

  26. mod_evasive

  27. Splunk or similar

  28. I really wish Nginx had these tools

  29. Drupal & you!

  30. None
  31. None

  32. Narrow ‘em down hook_form_alter();

  33. Better, but why?

  34. Your CDN

  35. You have one right?

  36. Offload, offload, offload!

  37. David Stoline @unncola Thanks! Questions?