FAQ Database Discussion Community


can we configure mod_qos so, error logs related to mod_qos will be in a different file other than apache default error logs

php,apache,ddos
I have implemented anti-DOS modules (mod_qos) on my dedicated apache2 server. my site has a heavy traffic and my error log filled in seconds with the following error mod_qos(034): access denied, QS_SrvMinDataRate rule (in): min=120, this connection=0, c=xxxxxx mod_qos(031): access denied, QS_SrvMaxConnPerIP rule: max=50, concurrent connections=51, c=xxxxxx which will make...

How to block unexpected request from multiple ip adddress in linux server?

php,linux,wordpress,brute-force,ddos
I am getting some unexpected request from multiple ip address at a time from last few day. I installed a wordpress site on my server and they people hitting on my wp-login.php page, In log file I saw something like... Blo [05/Jun/2015:06:19:14 +0200] "POST /wp-login.php HTTP/1.0" 503 2966 "-" "hjelp.tips-info.com"...

What is the best way to ban DDOS attacks for Apache, on a shared hosting platform?

apache,googlebot,ddos
We have Ubuntu 14.04 Apache servers that host thousands of websites in a shared hosting environment, and occasionally one or another websites get the attention of DDOS attackers. Question: What is the best apache module or method for detecting and banning IP addresses that are too active? Requirements: Do not...

codeigniter - block ip if it exceeds x tries per y time

mysql,apache,codeigniter,security,ddos
Is there any "smart" way to block an IP if it accesses my project more than X times in Y time? I know the proposed way would be to block such cases from apache level but the client asks for extra precautions in application level. Any suggestions? I was thinking...

How can I stop a wireless access point from transmitting a signal

ddos,penetration-testing,kali-linux,wireless-connection
My router is protected with WPA2-PSK and I have been trying to send a ping flood / DOS attack to it in attempts to bring the network offline; so far I have been unsuccessful. I am acting as if I'm an outsider with no access to the network. I am...

IPTables hex string match to mitigate dos attack

debian,dos,iptables,ddos
A server of mine has been under dos attacks for the past few weeks. They've just now starting randomizing the source so I can't simply drop the packets by source IP anymore. Here are a few of the packets from tcpdump: 23:58:32.229878 IP (tos 0x0, ttl 242, id 21915, offset...

How to handle bots attack on Amazon EC2

apache,amazon-ec2,bots,cloudflare,ddos
I'm experiencing the following problem: we host an ecommerce on an Amazon EC2 medium instance with an RDS db instance, that normally run great, but because we work with product timed "releases" some users are using bots to automatic add items to basket and checkout them, causing the website to...