Anti Serangan DoS
Setting Anti DoS
download Harden IT
Trus Buka Regedit
[HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\
SERVICES\TCPIP\PARAMETERS]
SYNATTACKPROTECT"=DWORD:00000002
TCPMAXDATARETRANSMISSIONS"=DWORD:3
TCPMAXHALFOPEN"=DWORD:64
TCPMAXHALFOPENRETRIED"=DWORD:50
TCPMAXPORTSEXHAUSTED"=DWORD:1
TCPMAXCONNECTRESPONERETRANSMISSIONS"=DWORD:2
ENABLEDEADGWDETECT"=DWORD:0
ENABLEPMTUDISCOVERY"=DWORD:0
KEEPALIVETIME"=DWORD:300000
ALLOWUNQUALIFIEDQUERY"=DWORD:0
DISABLEDYNAMICUPDATE"=DWORD:1
Setelah beres ngedit registri terusin ke penginsatallan, HardenIt
Setinggnya seperti ini
- Complete Setup
- Syn Flood/Attack Protection (Good)
- 100 (Recommended for Workstations)
- 80 (Recommended for Workstations)
- 0 (Recommended, protection enables immediately when all ports are exhausted.)
- 2 (Recommended)
- 3 (Recommended)
- Enabled (Recommended)
- Workstation (300000ms or 5 minutes)
- Enabled (Recommended)
- Disabled (Recommended)
- Disabled (Recommended)
- Disabled (Recommended)
- Enabled (Recommended)
-10 (Recommended)
- 10000 (!Workstations! - 64MB RAM)
- 10 (Recommended)
- Enabled (Recommended)
- 1 (Recommended - do not forward Sorce Routed packets)
- Enabled (Recommended)
- Disabled (Recommended)
- Disabled (Recommended)
- Enabled (Recommended)
- Restrict Anonymous (Level 1 - Recommended)
Does not allow anonymous numeration of SAM accounts and shares.
- Enable SAM restriction (Recommended)
Does not allow anonymous numeration of SAM accounts and shares.
- Disable Everyone Includes Anonymous (Recommended)
Null-session users won’t have any rights.
- Retry Count 1 (Recommended)
- Smooth (90 seconds - Recommended)
- Enabled (Recommended)
Setelah Selesai installing HardenIt, Tidak akan ada perubahan
mencolok Tapi bisa menjaga dari serangan DoS
ga da salahnyaka sedia payung sebelum hujan
Klo ada setting yang lebih baik tolong post comment
January 4th, 2009 at 10:56 am
emo layouts for friendster…
Incoming Search Terms: myspace……