What country, such and her DOS attacks

Every week at least at least one socio-political Internet resource states about the DOS-attack, which he experienced. The problem of DDOS varies from site to site. Some "fight off" their efforts, others - attract providers, others - "lie down" and wait, "when it all ends."
But all unite one burning desire: to find a wicked one. And also - how to prevent DDOS next time? And even if the first desire subsequently loses relevance, then the task of "how to protect yourself from attack" is permanent.

"ProIT" asked for an answer to the deputy chairman of the board of InAU (Internet Association of Ukraine), Alexander Olshansky. Moreover, he can consider this problem from different sides - as the president of the largest hosting provider in Ukraine MiroHost.net and as a member of the board of InAU - the most authoritative organization that deals with resolving acute problems in Wanet.

Began no slack:

- Alexander, sorry for the primitive first question, but still: can it be possible with minimal losses to "fight off" the DOS attack?

- Can

- Only not everyone in Ukraine does it ...

- Why? Some of our clients "fought back", and not once. In Ukraine, there are no attacks with a capacity of more than a million packets per second. I did not see such a DDOS in Ukraine. For our country, the figures are usually about tens of thousands of packets per second.

- One million are some other-wordly things.

- No, not beyond. For Russia, for example, the characteristic value can be of the order of one megapacket per second (if it is a serious attack). If we talk about peace, then the power of attacks can be even greater. Therefore, in the world there are companies that protect against DOS-attacks. We had an idea to provide such a service in Ukraine. But the problem is that there is no effective demand yet. Most of the attacks we face are directed to sites that pay for virtual hosting for $ 8-10 per month. And our offer in connection with DDOS to switch at least to a dedicated server for $ 50-70 per month is categorically rejected. Accordingly, and to protect against DOS-attacks, such sites are not ready to spend at least any money.

- And if you provided a protection service against DDOS - would you have to host (Mirohost.net - ed.)?

-  No. It depends on the technology. But in general, this is a desirable, but not necessary, condition.

- And how many customers should there be for such a service to "work"? 10-100-1000?

- More than 100 at a service price of $ 200-300 per month. That is, the maintenance of the infrastructure to combat DDOS needs $ 20-30 thousand per month.

- In Russia, such companies work?

- Such companies work everywhere. You can buy this service abroad right now. Only it will cost not $ 300, but $ 3-5 thousand per month. But you will be closed from DDOS so that only atomic war will be scary.

- What is the logic of such protection? Is it clear?

- Absolutely understandable. This is a known method. Let's say there is a service provider. He has a set of IP addresses. This provider puts, for example, at 100 nodes around the world their routers and servers with a firewall. Accordingly, it tunnels its traffic with closed encrypted tunnels to these points. And it is announced from them to the outside world (we are talking about the announcements of BGP). That is, from a technical point of view, it looks like this provider is connected by wires to these 100 points directly. Let's say that each inclusion can process 10 gigabits of traffic, including "parasitic" traffic. Accordingly, the total capacity is one terabit. So, an attacker needs to develop one terabit stream (or about 100 megapackets) in order to "hammer" such a system. Next, firewalls at each point of the connection filter traffic, throwing out "garbage". And the traffic cleared from DDOS over the encrypted channel is delivered to the protected server. I describe rather simply, but the principle is clear. Similarly, in a somewhat modified form, for example, root DNSs are protected. They are regularly tried to attack, relatively speaking, in order to "train". I do not remember the exact data, but for 2007 the largest DOS-attack was about 40 megapacks per second. I think that now these values fluctuate around 100 megapacks.

DOS-attacks - this is a big criminal business. In fact, in most cases, it involves extortion. At us on a hosting there are sites from which, I precisely know, extorted money. Usually, "online shopping", online casinos, large information resources - projects for which the break of contact with users on the Internet threatens with quick and big losses are usually chosen as "targets". So, on the eve of March 8, most Ukrainian sites selling flowers "lay". (To the honor of our company, I note that at the same time we managed to maintain a similar resource in working order, hosted by MiroHost.net).

- For Ukraine, however, enough and a small attack.

-Looking for someone. But, it is clear that this is a question of money. The attacker needs to spend a considerable amount of money. The organization of a small attack is easy and cheap, for example, through a forum. But creating a really big and big attack is a very risky business. In the world, after all, there are many paid detective agencies that specialize in the Internet.

-Are they looking for an attacker? How?

- Yes, they are looking, but usually not in technical ways, but through agents or, for example, offering money for information about the organizer of the attack. And tomorrow the organizers give their own. Because it is impossible to organize it alone.

- Well, why: launched the Trojans, produced "robots" and attacked ...

- But someone wrote this Trojan? And someone wrote a library, and someone wrote a compiler, and someone contains a forum through which the customer communicated with the organizer.

The stories that the attacker is not revealing are untrue. Yes, it's expensive, but possible. If it is a question of serious world Internet resources, then the consequences are also very serious. For example, an accusation in a given crime can be brought to the customer in a country where 25 years of imprisonment are provided for this crime.

- When the next DOS attack begins on us, the first thought: to find the one who ordered ... well, further down the list ...

- If we are talking about small DOS-attacks, then, as experience shows, often as an organizer is a child of 15 years, who decided to "be pampered." Although from this the appearance does not become less dangerous.

- We will put the question in a different way. If we simulate such a situation: the state machine has strained, a technician and a policeman comes to the infected computers. They find out where the computer got infected, further down the chain ....

- Will not help

- In connection with the stupidity of the state machine or from the fact that it is impossible in principle?

- We need a very specialized tool. That is why there are companies in the world that specialize in this. Walking with a policeman is also worth the money. And for this attack they paid $ 50.

- Well, $ 500 is still more common.

- $ 500 - this is not an expensive attack. And if you go by standard methods, then it may turn out that you need to spend $ 500 thousand on searches. There are two ways how to find a customer: you can arrange all this investigation for $ 500 thousand. And it is possible on the same forum where these DDOS are selling, to promise $ 5 thousand for information about the organizer.

In fact - this is one of the most effective methods. People who sold or rented to the customer bot-no (a network of computers infected with the virus-ed ed), the customer himself and "surrendered." Since in addition to money, they are not interested in anything. Nothing personal.

- In the same context, but somewhat different. How does the hosting provider feel when attacking?

- Feels bad. The hosting provider has the following alternatives. And - turn off the site that is finished. В - to protect the site, which is finished for free. And C - protect him for money. In most cases, option A is accepted, since B is unprofitable, and the customer is not ready to pay for C. In turn, MiroHost.net tries to minimize the impact of DDOS on its customers, as far as our infrastructure allows. And in many cases we succeed. However, to protect against large DOS-attacks, a specialized service is required at a price much higher than the price that customers are willing to pay today.

- A hosting provider can join the protection scheme for $ 5000 and protect all of their sites?

- For $ 5 thousand can not, but for $ 50 thousand or $ 500 thousand - it is possible. I have already said that the maintenance of the minimal DDOS protection infrastructure costs tens of thousands of dollars a month. And if you buy this service from a third-party provider, then it will cost even more. For example, for a hosting company of our level for Western commercial rates such a service will cost more than $ 200,000 per month. Again, there is no point in this, since most customers are not ready to pay for it. Well, let's say, why do DDOS protection for the site "About my favorite cat"? If someone wants to spend $ 50 and "turn off" it for 2 hours, then there's no point in hindering it.

- That is, usually disconnect sites?

- Once again I repeat: it all depends on the resource itself. In the West, hosters refer to this as follows: if you have an Internet business, pay for anti-DOS protection. In fact, this is insurance. After all, there is no company that can protect you from the fact that a brick will fall on your head. But there is a company that offers you insurance. Here is the same scheme. If you have a website and you consider it important to protect yourself from attacks, then you pay specialized companies, just as you pay for an antivirus.

Hosting providers, as a rule, have nothing to do with this. Some hosters, however, provide such a service in a hosting package. But actually these are two different services. And since the price of anti-DOS protection, as a rule, is much higher, it can be assumed that hosting this service is free of charge. So creating secure networks is a big fast growing business in the world. We also explored in Ukraine the possibility of providing such a service, but, as I said, the market is not yet available.

- Because in Ukraine there was no superatak?

-Speaking, because there is not enough money in Uanet. The cost of security is proportional to the amount of money that turns into the Internet. As soon as your site starts to earn $ 300 thousand a month, I'm sure that those who want to "milk you" will be found. I believe that in Ukraine there are not more than 50 50% of really profitable Internet projects (on the phone), but perhaps even less. But when such projects become 500 or 5000 - then the market will appear. But it will not be tomorrow. Maybe in three or even five years.

- Maybe high-flown ... but still about information security. After all, for small money you can put all the state bodies. And maybe the whole country.

- Yes, in the modern world, this weapon. For example, if you recall the war in Georgia .. In fact, for some time the Georgian sites were unavailable. If we talk about Ukraine, then it is impossible to "fill up" it as Georgia has "overwhelmed" or, in its time, Estonia. Ukraine is much better included in the global Internet, we have more channels, and they are more diverse. And Georgia was connected by only two channels. And then one of them was not very good.

Although the reasons to relax, I do not see. Given our size, such an attack will cost significantly more, and organize it more difficult. But here everything depends on who is "on the other side". If they are amateur amateurs, then, most likely, they can not cope with Ukraine. But if we consider this problem from the point of view of the security of the state, that is, to make the assumption that the attack will be organized by a probable external enemy, then Ukraine is today "naked". In fact, there are very few "bare" countries. It is clear that the Americans do something, and the British know something, and the Europeans, and perhaps the Russians. But it costs money, and big. At us for some reason safety on the Internet people perceive as something for granted. And this is not so. No one is surprised that you need to put an alarm on the car, and buy insurance. And insurance costs 5% of the cost of the car. And the alarm system is 1-2%. Here is the same. Over time, people realize that on the Internet they have to bear the same security costs as they do in real life. I think that in Ukraine this time will come in five years. By the way, this market is free. Any company can try its luck in this case. You can even not strongly rush. But I think that in five years this will be a big market. Today, the turnover of Unite is estimated at $ 10-20 million per year, that is, 1-2% will be $ 100-200 thousand - and this is all that the security market can claim. It's almost nothing. And it is impossible to build a company on this money. But if you take, for example, Russia, where market turnover is estimated at $ 1 billion, then 1-2% is already $ 10-20 million. So it is necessary to wait, while Уанет will grow at least once in 20.

Liked? Subscribe to RSS news!
You can also support shram.kiev.ua, press:

It will not be superfluous for your friends to learn this information, share their article with them!

Expand / Collapse

Comments

When commenting on, remember that the content and tone of your message can hurt the feelings of real people, show respect and tolerance to your interlocutors even if you do not share their opinion, your behavior in the conditions of freedom of expression and anonymity provided by the Internet, changes Not only virtual, but also the real world. All comments are hidden from the index, spam is controlled.

All news

Site
Forum

The relief of the bottom, the differences in depths, pits, whirlpools, shoals, the channel of the Dnieper River Photo 2017-03-11
What are the keys F1 to F12 on the keyboard for Photo 2017-03-11
Navigation maps of the Dnieper River in the vicinity of the city of Kiev and the Kiev region Photo 2017-03-11
Depths of the Dnieper in the Kiev region. 1989 The scale is 1 cm 250 m. Photo 2017-03-11
The work will not make you rich - unlike the five things Photo 2017-03-10
Representatives of which signs of the zodiac will be the best wives. Bachelors on a note! Photo 2017-03-10
Exercises for eye health Photo 2017-03-10
How our favorite products looked before they were collected Photo 2017-03-10
The Japanese "Virginity Killer" Photo 2017-03-10
How to choose the right wine for your dish Photo 2017-03-08
How to dress by age and not look stupid Photo 2017-03-08
Sexual variant "Follow me" Photo 2017-03-08
Plate of healthy food Photo 2017-03-08
NASA has opened free access to its software Photo 2017-03-08
Kate Moss, the main beauty of the generation, the femme fatale Photo 2017-03-08
101 Method of application of the paracord Photo 2017-03-05
Everything you wanted to know about tires. Marking, types, seasonality Photo 2017-03-05
How to choose quality natural spices and spices Photo 2017-03-04
Emma Watson (26 years) undressed for the March Vanity Fair Photo 2017-03-04
Emma Watson (Emma Watson) undressed for Natural Beauty Photo 2017-03-04
Tattoo with the image of famous heroes Photo 2017-03-03
Scheme of all municipal transport in Kiev Photo 2017-02-28
How often to have sex according to age Photo 2017-02-28
Fisherman's calendar and forecast of the biting of peaceful / predatory fish for 2017 Photo 2017-02-26
Fishing knots, how to tie a hook, prepare for summer Photo 2017-02-26
Euthanasia Coaster, a project of roller coasters designed for the death penalty Photo 2017-02-26
VEB Page can be evidence in court Photo 2017-02-26
In such a cosplay, you yourself will want to play Photo 2017-02-25
A smart selection of girls from Japan. Photo 2017-02-25
GOI paste (from GOI - State Optical Institute) Photo 2017-02-24
Unnecessary things, which you should quickly get rid of Photo 2017-02-24

The relief of the bottom, the drops of depths, pits, whirlpools, shoals, the fairway of the Dnieper River Before we begin to study the relief and structure of the bottom, we ... Photo 2017-03-11
What are the keys F1 to F12 for the keyboard We suggest that you learn all the available features of the function keys F1-F12 ... Photo 2017-03-11
Navigation maps of the Dnieper River near the city of Kiev and the Kiev region of the Dnipro River Lakes (Kiev) in paper form are made on the basis of materials ... Photo 2017-03-11
Depths of the Dnieper in the Kiev region. 1989. Scale 1 cm 250 m. Depths of the Dnieper from Vodnikov to Ukrainka in the Kiev area. ... Photo 2017-03-11
Work will not make you rich - unlike these five things All millionaires know about this. But silent.Charles Tips, a former scientist ... Photo 2017-03-10
Representatives of which signs of the zodiac will be the best wives. Bachelors on a note! In this material, we tried to project the behavior of those or ... Photo 2017-03-10
Exercises for eye health Shram.kiev.ua collected 10 simple exercises for the eyes that are easy to make ... Photo 2017-03-10
How our favorite products looked before they were collected We studied the fruits and vegetables that we buy in the supermarket, ... Photo 2017-03-10
Japanese "Virginity killer" In Japan, a new trend: a sweater called Virgin-Killing Sweater or ... Photo 2017-03-10
How to choose the right wine for your dish The rule "red for meat, white for fish" is valid ... Photo 2017-03-08
How to dress by age and not look stupid How long have you felt? Go, I suppose, like a pimple ... Photo 2017-03-08
Sexual version of "Follow Me" A few years ago, Russian photographers Murad and Natalia Osman created ... Photo 2017-03-08
A plate of healthy food Harvard University and modern science conducts numerous studies to optimize ... Photo 2017-03-08
NASA has opened free access to its software NASA has opened free access to the software catalog 2017-2018. How to ... Photo 2017-03-08
Kate Moss, the main beauty of the generation, the fatal woman Every generation has its own main beauty, a fatal woman, who ... Photo 2017-03-08
101 Paracord method of use For most people the paracord is known as a very convenient device with ... Photo 2017-03-05
Everything you wanted to know about tires. Marking, types, seasonality Tires are the main link between the car and the road. From the ... Photo 2017-03-05
How to choose quality natural spices and spices How to choose natural spices and spices in the market or in ... Photo 2017-03-04
Emma Watson (26 years old) undressed for the March Vanity Fair Emma undressed for the March Vanity Fair, true, on the cover ... Photo 2017-03-04
Emma Watson (Emma Watson) undressed for the book Natural Beauty Emma decided to do this for the book Natural Beauty! And she ... Photo 2017-03-04
A tattoo featuring famous heroes A bitane tattoo artist creates incredibly realistic tattoos with images of famous heroes ... Photo 2017-03-03

Cats. Artist Vladimir Rumyantsev. Photo 2017-02-23
Prometheus - Interesting Facts Photo 2017-02-23
Did you see the Lithuanian Cheerleaders? Worth Seeing! 2017-02-23
Olsen, Elizabeth / Elizabeth Olsen Photo 2017-02-23
She sat at the Window, And He Entered Her Car ... Photo 2017-02-23
Photo of Cats, Cats, Kitties Photo 2017-02-23
How the Turtle Can Run Photo 2017-02-23
Bengal Cat Talking With a Kitten 2017-02-23
National Bank Introduces New Coin to Circulation (Photo) Photo 2017-02-23
Protasov Yar 30 Years Ago Photo 2017-02-23
Photo of the Animals Photo 2017-02-23
Nasa Broadcast What's Reported At the Nasa Photo Conference 2017-02-23
Something, Size With Jupiter, Rushing "Through" the Sun Photo 2017-02-22
Central Streets of Kiev Will Be Blocked For Five Days Photo 2017-02-20
3 Folk Ways to Make the Vagina Narrow And Elastic Photo 2017-02-20
Monica Bellucci In The Magazine Gq Italy, February 2017 Photo 2017-02-20
The Serebro Group In Maxim Magazine, March 2017 Photo 2017-02-20
What to Do If You Have been Detained by Police - 146 Article Piracy Photo 2017-02-20
New Free Os has appeared Photo 2017-02-18
Wood Under the Electron Microscope Photo 2017-02-18
The Market of Payment Cards In 2016, Demonstrated a Significant Growth Photo 2017-02-18

Social

Your IP: 66.249.93.28
Your Country: European Union

Free 50 UAH for your Monobank card?