You gots to read this story of grc ddos attack in 2001.

frekin awesome
http://www.grc.com/dos/grcdos.htm


So whats the latest in security in you area of werk?

im doing IPS/IDS and vuln testing. how bout j00?

I don't really work in information security - but I did just modify an application that is used to transfer very large files between computers to add encryption to the data streams. TLS FTW!

definitely,

working in intrusion analysis, i just hate seeing clear text sensitive information, passwords, flying all over the place

working in intrusion analysis, i just hate seeing clear text sensitive information, passwords, flying all over the place
Well, the control stream was via SSH, but the data streams (it spawns multiple threads to send chunks of data, which ends up being MUCH faster than SCP or rcp) were just raw TCP sockets. So I added a command line option to allow anonymous DH ciphers over a TLS socket layer. Easy peasy, lemon squeezy.

Actually, all of the web applications I run on my webserver at home that require login (or I wish to protect from general access) are on an HTTPS connection. I'm sure as hell not sending my login information for MythTV, SquirrelMail, or phpMyAdmin in the clear!

fo real!

once i move into this new house, i hope to setup my linux FW and start running a snort sensor to detect evil packets.

im too n00b for mythTV, I use BeyondTV, lol

I also need to setup spamassasin or some type of mail gateway, although I mostly use gmail and its spam killer does a good job.

I also need to setup spamassasin or some type of mail gateway
I run postfix with TLS, maildrop, ClamAV, spamassassin, Maia Mailguard, Courier IMAP, and SquirrelMail. And support for virtual domains. Setting up the mail system was one of the harder things I've done. Apache configuration is absolutely trivial in comparison.

Oh, and you can use fetchmail to grab your Gmail via POP and inject it into your local IMAP mail server. I kept hitting the one GB limit (back in the day), so since I had a TB of space (2 TB now), I just downloaded the stuff to store locally. Now I can use Thunderbird to check my Gmail, and since it's IMAP I can see the same mailbox on different computers (and via my own webmail server). And since it's stored locally, when people send me big 10MB emails, they open up lightning fast. The narrowness of my pipe is hidden from me, and felt by the two mail servers talking to each other instead. Score!