Home > Cloud Computing > Cloud Security

Proxy Server Security: defends against DoS and Other Attacks

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

Q: I am very interested in proxy server security. How can we defend against Proxy Server attacks?

A: The proxy server security measures should be determined based on specific types of proxy server attacks. Attacks on proxy servers can be DoS attacks, unauthorized access attacks, or attacks on proxy server software. A DoS attack on the proxy server is a situation where an attacker attempts to send network traffic exceeding the system's processing capability to the proxy software. Unauthorized access attacks are used by attackers to shield their connections when they attack different websites using traditional open-source proxies without authorization. Attacks against proxy software can be used to obtain unauthorized access and make configuration changes to the software or server.

You can block unauthenticated data packets or use Server Load balancer to increase the security of the proxy server and defend against DoS attacks, because these actions can help mitigate the impact of attacks on the server.

Unauthorized access attacks can be prevented by ensuring that the appropriate authorization type is used to access the service) and by allowing some customers to access the proxy Based on IP addresses. You can also authorize the proxy user. Based on group members, you can grant them different permissions to access different types of websites or access various types.

You can use good management policies to defend against attacks against proxy server software, such as regular software updates. You can also make sure that the access with management functions is limited to some networks and use strong access control.

Many attacks use proxy servers on the Internet as a transit device to hide attack sources on your website. Blocking open-source or malicious proxy servers from accessing networks or servers is a way to successfully block such attacks. Many companies keep a list that can be used for blocking, but you need to fully understand what to block and how to maintain the list. For example, the commercial block list is a list saved by URLblacklist.com.

  1. About DoS attacks and DDoS attacks
  2. Distributed Denial of Service Attack and Prevention Measures

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More