ok introduction, my site has been aimed by one script kiddies that think it's fun to ddos my website. Good thing about it is that, they're aiming a page that doesn't do much to me. so i made a permanent redirect of that page onto the attacker isp site. What i would like to know is that, would i be held responsible for redirecting it tho them ? would i be accused as accomplish ?
LOL...good thinking. I'd have redirected to the ISP's terms page where they have put the policies against illegal activities. Add salt to injury...LOL
If they were DDOSing you, I expect your entire website would be down - I suspect they are simply doing a WGET bandwidth leeching attack or something similar? If this is the case, a 301 redirect (my assumption on your "redirect" comment) does not divert requests to the actual hosts, if they're using something like WGET - which doesn't follow header redirects. ^That's a bunch of assumptions. Can you elaborate more on the nature of the attack?
I would agree with you as well, but from what it seems, the attacker is not fully flooding the Vhost or port80. Therefore, the sites are not being affected
this is silly but would be fun. what you should do is have your server send an automated email to the abuse@ address at the ISP everytime they connect to your site containing the ip address browser types etc and a polite complaint message.
Are you absolutely positive about that? It is my understanding that wget does not follow redirects, however I'm using a Windows version whose functionality may differ from the real deal. I find it hard to believe that this is the default setup for UNIX wget.