How to prevent DoS on PHP script?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



************************************************************************
*       Do not Cc: me, because I READ THIS LIST, if I write here       *
*    Keine Cc: am mich, ich LESE DIESE LISTE wenn ich hier schreibe    *
************************************************************************

Hello,

on my "devel" server I have a script, which allow me  to  upload  Debian
packages which then are included in my private Debian mirror.

Now I have gotten several 1000 hits in the last days.  I call it DoS.

There are idiots who have tried to upload shit on my Webspace but  since
I check it to be ONLY Debian files they where not successful.

My biggest problem is, that the "/fileupload.php" was always  references
from outside my webspace.  OK, I was thinking  this  can  be  solved  by
using HTTP_REFERER which has then worked for some  days  but  NOW  those
pigs are back and sending spoofed HTTP_REFERER.

Since I have only a VHost @ISP I can not  go  deeper  into  the  Apache2
config what I have done when I was running my own server.

Can anyone suggest me something, how to block requests from outside?

Size limitation is not possibel, since some of my upload files are  very
huge and I must be able to  upload  files  without  Laptop  and  FTP/SCP
access.

Thanks, Greetings and nice Day/Evening
    Michelle Konzack
    Systemadministrator
    24V Electronic Engineer
    Tamay Dogan Network
    Debian GNU/Linux Consultant


-- 
Linux-User #280138 with the Linux Counter, http://counter.li.org/
##################### Debian GNU/Linux Consultant #####################
Michelle Konzack   Apt. 917                  ICQ #328449886
+49/177/9351947    50, rue de Soultz         MSN LinuxMichi
+33/6/61925193     67100 Strasbourg/France   IRC #Debian (irc.icq.com)

<<attachment: signature.pgp>>


[Index of Archives]     [PHP Home]     [Apache Users]     [PHP on Windows]     [Kernel Newbies]     [PHP Install]     [PHP Classes]     [Pear]     [Postgresql]     [Postgresql PHP]     [PHP on Windows]     [PHP Database Programming]     [PHP SOAP]

  Powered by Linux