| Version 7 (modified by jazz, 15 years ago) (diff) |
|---|
2010-02-26
- 遇到沒品的 426 .... 沒事同時發起個 176 個 web 連線到 trac ....
jazz@drbl:~$ cat 10-02-26_trac_down_reason.log | grep ":" | awk '{ print $5 }' | sed 's#\:.*##' | sort -n | uniq -c | sort -n ... 略 .... 3 114.25.224.118 176 124.254.15.50- 設了好幾個做法都很難阻擋,包括 /etc/hosts.deny ... 乾脆來一招狠的: 所有來自這個 IP 的封包全部 DROP 掉,北京使用這個 IP 的朋友....我也沒辦法了....你們有害群之馬
iptables -A INPUT -s 124.254.15.50 -j DROP
- 設了好幾個做法都很難阻擋,包括 /etc/hosts.deny ... 乾脆來一招狠的: 所有來自這個 IP 的封包全部 DROP 掉,北京使用這個 IP 的朋友....我也沒辦法了....你們有害群之馬
System Security
Apache / Lighttp Security
- 為了預防同一個 IP 同時間佔據太多連線,過去大家好像都用 !LimitIPConn 這個模組,不過 Apache 2.1
- 官方網站: http://dominia.org/djao/limitipconn.html - Apache 1.3 版本 - 有 debian etch 套件, 不過到了 lenny 就沒了(因為是 Apache 1.3)
- 官方網站: http://dominia.org/djao/limitipconn2.html - Apache 2.x 版本 - 非官方 Debian 套件
- <Ubuntu> Apache 2.x 安裝 limitipconn 模組防多線下載
- [參考] 那如果用 Lighttpd 呢?? 從 "lighty > limit amount of concurrent connections by client?", 寫到: In your configuration add "mod_evasive" to server.modules, e.g.:
server.modules = ( "mod_rewrite", "mod_access", "mod_auth", "mod_status", "mod_fastcgi", "mod_compress", "mod_rrdtool", "mod_accesslog", "mod_evasive" ); - Then configure the maximum number of connections per IP like this:
evasive.max-conns-per-ip = 10
Attachments (4)
- 10-02-26_trac_down_reason.log (18.0 KB) - added by jazz 15 years ago.
- 10-02-26_abuse_ip.txt (15.3 KB) - added by jazz 15 years ago.
- 10-02-26-apache_processes-day.png (16.8 KB) - added by jazz 15 years ago.
- 10-02-26-apache_processes-week.png (20.2 KB) - added by jazz 15 years ago.
Download all attachments as: .zip
