IM about tired of spam and hackers putting phishing items on my server.
My question is.
How can I block the whole world expect for US, CA and UK?
I've added several countrys to csf's csf.deny list but half of them keep disappearing.
i want to limit all of the world to access my server for example port 80 25 22 an .... instead of two ip.
View 9 Replies View RelatedJust moved to a 1and1 managed server in which FastCGI is enabled.
But I'm having problems getting Movable Type to run under fastcgi - which has never been a problem before, even on shared hosts.
Is there a 'hello world'-type test for fastcgi - so I can check if it is enabled?
As you all know about hostingspeeds.com, offering you a list of world's fastest host. Is there any other sites doing such things?
And, be helpful to say me the hosting company whith PHP, MySQL support, that offer fastest speed on page load, accepting LibertyReserve as way of payment for their services.
I have a website that can be seen in a part of the world but not on the other. How can I troubleshoot this issue. Is there a web utility that can help me figure out what is the problem?
View 1 Replies View RelatedI have been running a dedicated server for years, first with Carolina Online, who then sold it to HostOnce.
Today at around 6PM my server, that was working fine and I was actively working on all day, suddenly disappears off the Internet.
I go to Host Once's ticket system, and they have a message up that they moved their servers from NC to NJ, that all the servers were upgraded to Windows 2003, and that they would be very busy with the migration, don't submit multiple tickets. (Host Once seems to mostly have reseller hosting accounts, not many dedicated servers.)
I start pinging IP addresses and everything in my server's IP block is gone (the furthest a tracert goes is 64.70.48.3 - everything under that is gone.)
This is bad.
I'm worried that they may have bought new boxes in NJ for their reseller accounts, transferred up the data, and abandoned the old boxes in NC ... is this something they might do?
Also worried that the block of IPs their old servers were on may have somehow been reassigned... can this happen?
In any case, waiting to hear back on my ticket but looking for advice. Does anyone know the datacenter Carolina Online / Host Once used in Lumberton, NC? Want to start tracking it down if my box may have been left behind.... Any other insight on what in the world they might be doing / what happenned here?
I am trying to debug a dns problem.
What I need is for you to do a dns lookup and report:
1) the address that was returned, the last octect will do.
2) the area of the world you queried from
The answers *will* vary because the dns server is geolocation enabled. Or, at least they *should* vary. But, someone claims its buggered.
The host name to lookup is:
ssl.dnsmasq.com
Does anyone have any idea or estimation about cPanel Licences all over the world? How many servers are licenced and running cPanel at the moment? Has cPanel ever had any official word regarding this?
View 3 Replies View RelatedI remember using a few years ago a site where you could plugin a domain name and a report will run showing if the site was vieable or accessible from all different parts of the worls, I forgot the URL does anyone know abou something like this?
View 8 Replies View RelatedCan someone give me a good list of providers like fdc, ovh, etc.
Bandwidth quality not much of an issue, quantity means more than quality to us, cogent only networks are even acceptable
We need more than one, as we need servers all over the world.
Edit: 100Mbit with unlimited or VERY high bandwith limits minimum.
Edit 2: Looking for something similar to fdc and ovh in price if possible. Going over 500/mo is pushing the budget on these, although specs do need to be taken into consideration.
We have recently moved to a new datacenter and I was wondering if anyone on these forums could provide their experiences with "real-world" testing.
Upon move-in, we had a few issues. Obviously now the executives in the organization I work for are looking for justification for moving to the new colo.
software, or an online service that will stress test our current setup? Obviously I have MRTG, Awstats, and a few other of the most well known polling packages installed and working correctly, but what does everyone else use for stress testing?
I have a local network with modem, router, and several computers either Cat5 to router or via wireless. Router is Cisco Linksys E4200. The internal IP for this router would be 192.168.1.1.One of the computers has Ubuntu Server 14.04 (32-bit) and Apache 2 installed, and this is hardwired (Cat5) to the router. This computer also has a STATIC IP address that we will call 192.168.1.100. my Windows 7 Ultimate computer, I can open a browser and type "192.168.1.100" and the Apache 2 Ubuntu Default Page will pop up telling me that "It works!".
I have the Apache server working since I can access from within my LAN.My problem is to get it to show me the same "It Works!" when I try to access from the Internet.I got my 'external IP' address by simply going to whatismyip.com, and I can also see it from within my router settings.
The next thing I did was to setup Port Forwarding inside the router, to point say 50505 to 192.168.1.100. I've tried lots of port numbers.I cannot see my Apache 2 Default page by typing in my browser "98.180.213.110:50505", for example. This assumes 98.180.213.110 is my external IP and 50505 is the port I am forwarding.
I've tried disabling the IP4 firewall within the router, and even the "anonymous" filter request setting.I can find my web-server via browser in-house, but I cannot access from my external IP as if I were at a different location.
I have been playing with the idea now for a while to create a site that will list all the data centres (datacenters for you americans) in the world.
Obviously I do not have the definitive list, so it would be community based, where users can add DC's and reviews can be written for it...
So....
1. Is there a website doing this already?
2. Would it be used...?
Notice: This is a discussion thread for comments about the SitePoint article, Learn Apache mod_rewrite: 13 Real-world Examples.
View 13 Replies View RelatedI did a quick search on this and could not see it as already being posted
It seems quite a clever but simple idea - remove a lot of the oxygen from the air to help reduce the risk of fire. What do those of you operating your own facilities make of this? Is anyone already doing this?
[url]
OpenVZ different gateways IP ranges, unpingable from outside world "feature" any fix?
The server main IP (eth0) is 200.44.32.42, the allocation is 200.44.32.40/29 - 200.44.32.41 being the GATEWAY.
The ADDITIONAL IP allocation is 200.44.32.96/28, 200.44.32.97 being the GATEWAY.
Now, if I be specific on /etc/sysconfig/network-scripts/ifcfg-eth0 and declare everything like so:
DEVICE=eth0
BOOTPROTO=none
BROADCAST=10.20.47.255
HWADDR=
IPADDR=10.20.42.198
NETMASK=255.255.248.0
NETWORK=10.20.40.0
ONBOOT=yes
GATEWAY=10.20.40.1
TYPE=Ethernet
Please ignore all the above IPs config.
Now, using that VE nodes on the 200.44.32.96/28 range are unpingable. How can I fix that?
Please take note that I remove all settings from ifcfg, and leave IPADDR and GATEWAY, the internet can ping the nodes. But within the 200.44.32.0/24 no-one can ping the nodes on the 200.44.32.96/28 range ( Which is my problem, that I came here to solve).
Here's the VE ...
i run one bad command :-(
chmod -R 644 /
and this command changes all permision in root server
have any away for fixed all permision in centos?
because all site take error
i use of cpanel
I am curious, what is the best way to ban certain IP from accessing server? I have software firewall (APF) and there is, of course, /etc/hosts.deny.
Which is the most efficient? I've read that software firewall becomes unstable after so many entries. Does the same apply to /etc/hosts.deny file?
Or is there a better way altogether?
some Chinese forums hotlinking images from my site and I even delete those images they keep sending me huge amount of http requests to my hosting server and eating 800mb of memory and upto 1GB cause server crash
I tried to block incoming referrer traffic from those sites using htaccess but it didn't work , I still see their http request on my server logs and memory keep goes high , am not sure my code is the right
how can I block these http request from these domains , what is the right htaccess code , I use DirectAdmin panel by the way
Can any one let me know how to block a range IP on SSH?
Eg: i'd like to block all IP: 67.63.123.xxx
I'm currently experiencing a lot of IP's starting with 200 and 201 (from Brazil) some IP’s have over 200 connections. I have APF installed and want to know how to block a block on ip's if this is possible.
IPS:
200.11.*******
201.*******
I have DDos Attack right now so I want to block all the IP from all over the world and just allow certain IP range.
How to do it using APF or any other way.
For example I want to block everything but Germany IP
Code:
53.0.0.0/8
62.4.64.0/19
62.8.32.0/19
62.8.128.0/17
62.24.0.0/19
62.26.0.0/15
62.40.0.0/19
62.44.32.0/19
62.48.64.0/19
62.50.32.0/19
62.50.96.0/19
62.50.192.0/18
62.52.0.0/14
62.61.32.0/19
62.68.0.0/19
62.72.0.0/18
62.72.64.0/19
62.75.128.0/17
62.78.64.0/20
62.80.0.0/18
62.80.96.0/19
62.89.160.0/19
62.91.0.0/16
62.93.192.0/18
62.95.128.0/18
62.104.0.0/16
62.109.64.0/18
62.109.128.0/19
62.111.0.0/17
62.112.32.0/19
62.112.64.0/19
62.112.128.0/19
62.116.128.0/18
62.117.0.0/19
62.128.0.0/19
62.128.160.0/19
62.133.0.0/19
62.138.0.0/16
62.141.32.0/19
62.141.160.0/19
62.145.0.0/19
62.143.0.0/16
62.144.0.0/16
62.146.0.0/16
62.152.0.0/19
62.152.160.0/19
62.153.0.0/16
62.154.0.0/15
62.156.0.0/14
62.165.0.0/19
62.168.192.0/19
62.169.0.0/19
62.176.128.0/19
how can i block to access to some IP?
for examaple scripts in my hosts can not access to some IPs i want
Fortigate appliances blocking an IP that is not in RBLs I have a problem with the IP 66.187.108.157 of my VPS it seems to be blocked by Fortigate appliances, as you can see in this error message:
SMTP error from remote mail server after RCPT TO:[url] host mail.am.com.pe [200.62.221.107]: 554 5.7.1 This message has been
blocked because it is from a FortiGuard - AntiSpam black IP address.(connection black ip 66.187.108.157)
However I have searched in this URL [url]and it is clean.
Any ideas on how to have/force Fortigate databases to become updated.
I'm having difficulties with a whm running on centos dedicated server. The problem is that we receive too much of spam and junk emails. by too much I mean 2000 bulks per week. It's killing us.
how I can stop it.
Is there any way to block a particular ISP? Have a visitor that changes IP hourly, but the IP always resolves back to a hostname like dsl.yuns.sksk.uk .
I have CSF installed. Any way to block all visitors from dsl.yuns.sksk.uk?
in one of my servers i have this line in my ConfigServer Security & Firewall:
190.28.118.155 # lfd: 10 (suhosin) login failures from 190.28.118.155 - Mon Jun 16 23:27:50 2008
is this ok? i mean... its an attack of some sort? i know suhosin is meant to increase php security, so its blocking an attack right?
I have blocked this IP 125.115.144.28
/etc/apf/apf -d 125.115.144.28
But
netstat -anp|grep tcp|awk '{print $5}'| cut -d : -f1 | sort | uniq -c | sort -n
It still showing
202 125.115.144.28
Why?
Is it supposed to blocked right away, or need some time to get blocked.
When I checked /etc/apf/deny_hosts.rules
The IP is in the file.
I set up a forum for a small group of users, so I don't really wish to see spiders or bots on it, so I've put a robots.txt file there to prevent all of them from accessing the forum pages.
I know not all bots follow the robots.txt rule, and these days a really annoying bot called MUNAXNET or Munax AB with IP range 82.99.30.0 - 82.99.30.127 is causing the forum to have extra and unexpected loads.
I've tried to block this IP range with .htaccess and uploaded it to the root of the site a few days ago, here is the content:
<Limit GET HEAD POST>
order allow,deny
deny from 82.99.30.0-82.99.30.127
allow from all
</LIMIT>
However strangely it seems that all of these are not working for this bot, today I saw my forum had 80 users online and that army still keeps coming and browsing all pages of my forums...
I tested the .htaccess with blocking myself, and it actually worked for me, dunno why it's not working for that bot..
I was just researching my log analyzers to see whats happening... I noticed something new in the logs, a large number of unnamed robots or spiders... so I found the robot... it was this:
23310 7.99% 23303 9.48% 1159765 18.56% 22 0.12% 77.88.26.26
After some reading, sites say the ip belongs to spider26.yandex.ru
For simply security reasons, would it be in best interest to block the entire subnet? It seems that the same IP ending in .25 belongs to spider25.yandex.ru
Is anyone using snort?
Does it really block any web based attacks?
I know I can do port scans, and it can alert you to a whole bunch of false positvies, but is it blocking/detecting any serious attacks on your web server?
If so, which rules are the one is alerting on?