1010101010101010101010101010101010101010101010101010101 0101010101010101010101010101010101010101010101010101010 1010 0101 0101 OpticFiber's Denial Of Service Technique 1010 0101 0101 1010 Dated : 10/29/1999 1010 0101 0101 1010101010101010101010101010101010101010101010101010101 0101010101010101010101010101010101010101010101010101010 ::::Disclamer:::: This material should be used only as information to secure networks or servers.Anyone using this technique in an irresponsible manner is doing so at their own risk.Once this file is downloaded the author is not responsible nor will he accept responsibility for any action taken by anyone who uses this technique. ::::The Target:::: Target : Windows NT 4.0 server running IIS 4.0 System Config : 512Mb ram with 128 L2 cache supporting only one domain.FTP service not started. ::::The Technique:::: This technique may be used by malicious hacker as a denial of service attack on Windows NT server (I have tried this method on unix and mac servers without any success).The technique involves submitting the web site (eg. www.sitenme.com) hosted by the server to a large number of search engine simultaneously. These search engines must be of the type that spider the whole site. By doing so the server become over whelmed by the number of spiders trying to index the site at once and the server then crashes. In my test case the server dumped its whole memory contents. Anyone with malicious intent can take down a site if he chooses to do so.If a cracker or hacker use this technique there is no way to trace or identify the perpetrator.If the particular server hosts multiple sites then one can only imagine the concequences. ::::The Remedy:::: Use robot.txt where necessary to limit the robots and spiders from indexing your site fully.Also limit the number of connection to your site to that which your server can connect. This can be do in IIS properties. ::::HAVE A FUN:::: -=OpticFiber=-