How to Prevent DOS attacks on web applications?
What is the best way to prevent DOS attacks on web applications?
One thing related to all denial of service (DOS) attacks is that they cannot avoid them. The best way is to focus on reducing the impact of DOS attacks. If you have a network, hackers want to play with it (in the best case) and attack (in the worst case ).
One of the most forward-looking things you can do is not to provide anyone with a method that can be easily found on web servers and applications and is easy to exploit DOS defects. Recently I was in charge of a project involving a website page and was considered vulnerable to anonymous HTTP proxy requests.
This page has been removed in the past few years, but still a bunch of crazy agents and hateful hackers are using it. This causes the Web server to receive tens of thousands of requests per minute, because this fragile page no longer exists.
At least this is an evil DOS attack. This situation can be avoided if a vulnerable page is checked and repaired in the early stage. This is why security assessment for public network systems is executed and key findings are quickly solved.
In addition to prevention, cloud-based web application firewalls, such as CloudFlare and Incapsula, are also effective in reducing the impact of DoS attacks. That is to say, I know that these services can be used for rescue within a short period of time after the DoS attack starts.
Plan the most important thing to reduce the impact of DoS attacks. Consider how to manage cost security vulnerabilities in advance. Once an attack occurs, you can automatically handle the issue.