When I was casually examining my server log few months back, I noticed
something was going off beam. To my horror, the primary server crashed,
unable to take the load. Usually, I don't get that much traffic. Months
later, I realized that I was the victim of a DDOS attack. Being a hacker type
myself, I tried to investigate where I failed in my system administration.
And I started learning Raw Socket programming, in an effort to understand how
powerful it is under Linux. To my surprise, I realized any lamer can build up
Raw Socket applications and can effectively misuse this wonderful trait . I'd
like to share some of the interesting Raw Socket exploits. Don't ever try
this!
All along I was wondering if I could spoof my IP address and perform a SYN
Flood attack on a serv... (more)
After setting up a LAN for your company, the next step is to build a secure
Internet gateway for sharing your Internet connection. Fortunately, you don't
have to be a geek to set up a gateway and build firewall rules, as it
involves minimal open-source software and minor kernel configurations. By
setting up a gateway, you allow all the nodes in the subnet to access the
Internet through a... (more)
Network systems based on service discovery can provide a consistent view of
their distributed components even during changing network conditions. The
ability of a system to heal itself during a network catastrophe, including
architectural change and system breakdown, will help the system to realign
its content traversal route intelligently and swiftly. This ability can be
obtained from v... (more)
(April 24, 2003) - While designing Enterprise frameworks, you ought to be
very cautious about exposing runtime instances of classes encompassing secure
transaction or management core, outlining Intellectual Property of the
enterprise. Often it is required to create a proxy wrapper around objects so
method-invoke requests can be pre-processed before being associated with the
original inst... (more)
(October 11, 2002) - Often it is necessary to encrypt confidential messages
and send them across a stream for better Data veracity. With JCE, you can
encrypt streams of data and decrypt them using public/private key pair or
using a single signature key file. The technique involves associating a
Cipher object to Input or Output Stream. Please note that JCE is different
from JSA and you ne... (more)
Frank Jennings works in the Communication Designs Group of Pramati Technologies
Vincent Kadar
Jill Starr
Christophe Dufourmantelle
Hovhannes Avoyan
Josh Powell
Pawel Plaszczak
Bob Little
Shai Quest
Bob Snyder
Jacques Durand
