On Mon, 19 Nov 2007 09:59:20 -0500 "Greg Boyington" <greg@xxxxxxxx> wrote: > On Nov 19, 2007 3:21 AM, Christian Folini <christian.folini@xxxxxxx> > wrote: > > Hey Greg, > > > > could you elaborate on this? How would you prevent this > > attack with mod_access? > > In one case where an attack was under way but I didn't have access to > the firewall, I added something like: > > Order Deny,Allow > # offending requests coming from this class C > Deny from 192.168.123 "This class C" is in 192.168, which means it's your organisation's internal network! > Allow from all > > to the docroot's .htaccess file. Then you just played quite a big part in DOSing yourself. Enabling .htaccess is a BIG performance hit, affecting all HTTP traffic - including what you subsequently allow. -- Nick Kew Application Development with Apache - the Apache Modules Book http://www.apachetutor.org/ --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|