wow. Sounds REALLY hard to defend against! Thanks.
“...Someone has to explain this whole thing to me one day...”
OK, a DDOS attack explained using plain, real world analogies...
So, say there is a local pizza shop in town. You try them, and for whatever reason, you have a bad experience with them. You come to HATE them. DESPISE them. You want to drive them out of business.
Well, how do you go about that?
You get an evil idea... Since most of their business comes in thru phone orders, you decide to repeatedly call their phone, and when they answer, you just hang up. Every time you do this and get connected, you are preventing a LEGITIMATE customer from getting through. This is a “Denial of service” attack.
Well, you are only one person, with just one phone. As fast as you can dial and hang up, there will still be SOME customers that ring thru. You cannot stand the thought of this. You must CRUSH them, and reduce their actual customer traffic to near Zero! What to do?
You call up all your friends, and enlist them in your plan. You ask them to repeatedly call the Pizza shop. You ask them to each ask 5 of THEIR friends to do the same. Soon HUNDREDS of people are slamming the Pizza joint’s number, and no legitimate orders come thru. This is a “Distributed Denial of service” attack.
___________________________________________
Very good explanation!!
Basically, this is how my son, a Principal Computer Engineer working for a major tech firm in San Jose, described it to me.