13 Nov 11:27
Re: Re: HTTPD Dos
Zach Roberts <admin <at> lifelesspeople.com>
2004-11-13 10:27:03 GMT
2004-11-13 10:27:03 GMT
David Fletcher wrote: > > On Fri, 12 Nov 2004 20:23:12 -0800 > mod-security-users-request <at> lists.sourceforge.net wrote: > > >>Subject: [mod-security-users] HTTPD Dos >> >>Hello there, >> >>One of our servers is being ddossed (httpd based), 100ths of clients are >>trying to download 1 certain file. My question, is it possible >>to filter on the download and put the the ip in an iptables rule? >> >>Regards, >>Gerwin > > > Hi, > > I have been getting attacks with over 1000 per second requests like this: > > default.domain 141.150.49.213 - - [04/Nov/2004:09:30:52 +0000] "OPTIONS / > HTTP/1.1" 403 266 "-" "Microsoft-WebDAV-MiniRedir/5.1.2600" (-) > > They seem to have stopped before I did anything about them, but I was > looking at mod_dosevasive available here: > > http://www.nuclearelephant.com/projects/dosevasive/ >(Continue reading)
RSS Feed