> The thing I am concerned about is, what if someone decides to do this because they > want to bring the server down? This seems like a trivial way to execute a DOS. > > So my question really is how do I prevent un-polite people from bringing the > server down? httpd appears to be consuming all of the available memory when this > occurs. If I increase the max https processes will that not aggrivate the > situation? If I need to add more memory I can do that but I am trying to understand > exactly what is going on here. > More memory will not help. You want to restrict the max number of concurrent http connections from each IP. This will not prevent a full-scale DOS attack, which could potentially involve tens of thousands of zombie machines attacking your server. _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Re: centos and apache DOS question
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: CentOS mailing list <centos@xxxxxxxxxx>
- Subject: Re: [CentOS] Re: centos and apache DOS question
- From: DamianS <clovis@xxxxxxxxxxxx>
- Date: Sun, 22 Oct 2006 13:35:58 +1100
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <Pine.LNX.4.64.0610211406430.4284@xxxxxxxxxxxxxxxxxx>
- References: <OFC67A608F.A81C5884-ON8625720E.00495006@xxxxxxxxxxxxxxx> <Pine.LNX.4.64.0610211406430.4284@xxxxxxxxxxxxxxxxxx>
- Follow-Ups:
- [CentOS] Re: centos and apache DOS question
- From: Tom Diehl
- [CentOS] Re: centos and apache DOS question
- References:
- RE: [CentOS] centos and apache DOS question
- From: Robert Becker Cope
- [CentOS] Re: centos and apache DOS question
- From: Tom Diehl
- RE: [CentOS] centos and apache DOS question
- Prev by Date: Re: [CentOS] Web site development and security
- Next by Date: [CentOS] Re: centos and apache DOS question
- Previous by thread: [CentOS] Re: centos and apache DOS question
- Next by thread: [CentOS] Re: centos and apache DOS question
- Index(es):
 |