Close
  • Latest News
  • Artificial Intelligence
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Logo
Logo
  • Latest News
  • Artificial Intelligence
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Cybersecurity
    • Cybersecurity

    Internet Survives Massive DDoS Attack

    By
    Dennis Fisher
    -
    October 23, 2002
    Share
    Facebook
    Twitter
    Linkedin

      A massive DDoS attack against most of the root DNS servers on the Internet Monday afternoon failed to cripple the global network, or even noticeably disturb traffic.

      The attack, which began around 4 p.m. Monday and lasted for approximately two hours, reportedly took offline as many as seven of the 13 root servers that contain the master domain list for the DNS (domain name system) for the Internet. However, security watchdog groups and Internet performance authorities say there was little or no noticeable change in the way the Internet performed for most users.

      The attack was apparently an ICMP (Internet control message protocol) flood—also known as a ping flood—which sends a blizzard of status requests to servers, sources familiar with the incident said. Such attacks are among the most basic and therefore easiest to defend against, a factor that likely contributed greatly to the service providers ability to handle Mondays attack.

      “With a little bit of work, you can trace that back through the network and install a filter to take care of it,” said Ted Julian, chief strategist at Arbor Networks Inc., a Waltham, Mass., company that sells anti-DDoS (distributed-denial-of-service) solutions. “They got lucky this time. But its just a matter of time before someone tries a more sophisticated attack against this system. If it was just generic Web traffic directed at these servers, that would be much harder to deal with.”

      The 13 servers that make up the core of the DNS system are located in several countries around the world, although the majority of them are in the United States. WorldCom Inc.s UUNet subsidiary maintains two of the machines and VeriSign Inc. has the contract to operate the “A” root server, which periodically sends out a list of updated DNS information to the other 12 root boxes.

      Like TCP/IP and many other protocols on which the Internet relies, the DNS system was designed years ago and has some inherent weaknesses that are well-known in the security underground.

      “If the Internet is going to work, it needs to be open, but that openness leads to problems,” said Julian. “The Internet is based on protocols that were designed a long time ago, and whether its a compromise of the protocol itself or a compromise of the design of the system, these [DDoS] attacks represent the greatest threat we have.”

      The Internet Storm Center maintained at Incidents.org had already returned its alert status to green—or all clear—late Tuesday.

      This is not the first time a large-scale DDoS attack has hit the Internet. In early 2000, a coordinated series of attacks crippled numerous high-traffic sites, including Yahoo, CNN.com, ZDNet and Amazon.com. And since then, such attacks have become the tool of choice for script kiddies as well as more sophisticated attackers looking to cause the maximum amount of havoc with the least amount of effort.

      DDoS attacks come in several flavors, but the most common send massive amounts of data to selected servers, effectively flooding them with requests for service. As the servers become overwhelmed, they begin to deny all incoming service requests, which cuts off all activity.

      However, this seems to be the first such attack to target the root servers at the heart of the Internet. Security experts have long warned that such an attack was likely, but it appears that the system did its job. The DNS system is designed in such a way that about 75 percent of the root name servers must fail before there is any real drop-off in Internet performance.

      (Editors Note: This story has been updated since its original posting to include additional information about the attack and comments from Arbor Networks Ted Julian.)

      Dennis Fisher
      Get the Free Newsletter!
      Subscribe to Daily Tech Insider for top news, trends & analysis
      This email address is invalid.
      Get the Free Newsletter!
      Subscribe to Daily Tech Insider for top news, trends & analysis
      This email address is invalid.

      MOST POPULAR ARTICLES

      Latest News

      Zeus Kerravala on Networking: Multicloud, 5G, and...

      James Maguire - December 16, 2022 0
      I spoke with Zeus Kerravala, industry analyst at ZK Research, about the rapid changes in enterprise networking, as tech advances and digital transformation prompt...
      Read more
      Applications

      Datadog President Amit Agarwal on Trends in...

      James Maguire - November 11, 2022 0
      I spoke with Amit Agarwal, President of Datadog, about infrastructure observability, from current trends to key challenges to the future of this rapidly growing...
      Read more
      IT Management

      Intuit’s Nhung Ho on AI for the...

      James Maguire - May 13, 2022 0
      I spoke with Nhung Ho, Vice President of AI at Intuit, about adoption of AI in the small and medium-sized business market, and how...
      Read more
      Applications

      Kyndryl’s Nicolas Sekkaki on Handling AI and...

      James Maguire - November 9, 2022 0
      I spoke with Nicolas Sekkaki, Group Practice Leader for Applications, Data and AI at Kyndryl, about how companies can boost both their AI and...
      Read more
      Cloud

      IGEL CEO Jed Ayres on Edge and...

      James Maguire - June 14, 2022 0
      I spoke with Jed Ayres, CEO of IGEL, about the endpoint sector, and an open source OS for the cloud; we also spoke about...
      Read more
      Logo

      eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site’s focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Advertisers

      Advertise with TechnologyAdvice on eWeek and our other IT-focused platforms.

      Advertise with Us

      Menu

      • About eWeek
      • Subscribe to our Newsletter
      • Latest News

      Our Brands

      • Privacy Policy
      • Terms
      • About
      • Contact
      • Advertise
      • Sitemap
      • California – Do Not Sell My Information

      Property of TechnologyAdvice.
      © 2022 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×