In a denial-of-service (DoS) attack, the perpetrator attempts to prevent legitimate users from accessing a service, usually by sending excessive messages to a service endpoint. DoS attacks may be distributed in nature, meaning that the excessive traffic is directed from multiple attack systems. While DoS attacks originating from a single source can be easier to mitigate because defenders can block network traffic from the offending source, attacks directed from multiple attacking systems are far more difficult to detect and defend against because it can be difficult to differentiate legitimate traffic from malicious traffic and filter malicious packets when they are sent from all over the internet.
Rate limiting ...