it seems that a particular client of mine complains that each time he trys to update his WHMCS, he gets blocked halfway. i also got a log about his ip getting banned due to ddos attack. is there a way to fix this? is it only filezilla that does this?
View 6 RepliesWhat is the difference between FileZilla Client and FileZilla Server?
I'm using windows vista ultimate 32bit. What was written on the filezilla page is that FileZilla Client is for all platforms and FileZilla Server is for windows only.
recently I have an weird problem and I don't know what might be, I just suspect that this error appeared after we have enabled Keep Alive on apache
I have the same error with randomly Forbidden error. The most time I see it is on 2 websites that are build with Gallery 2 and very rarely on other website, on my end never happent on other websites but some people told me it did.
Bellow is a small part of cPanel's "Last 300 visits" it shows every request so you can see first request was a direct link , I have wrote the galery name .. and the others are aither requests to images either other files ....
I'm running FileZilla Server on Windows Server 2008 Web Edition SP2. Everything works fine but I need to figure out how to make FileZilla set permissions on a file after its uploaded.
What is happening when I upload a file to the web server using through FileZilla Server the only permissions set on the file are for
SYSTEM
admin
Administrators
So when I try to access the file through a website I get a 401 - Unauthorized error and I have to go through and manually set the permissions every time on the server.
I need to find out how to make FileZilla setup the correct permissions on the file for the IIS user. Any help would be appreciated.
My Sever setup
DotNetPanel
IIS 7.0
Windows Server 2008 Web Edition
FileZilla Server
8GB Ram
Timezone on server is set to GMT -5 EDT
My timezone is GMT -5 EDT
Yet filezilla 3.x ftp client connected to my server's pure-ftpd server offsets time on transferred files by an hour, saying now at 8:52 that the file was uploaded to the server at 9:52.
WHM and uptime, etc. at the SSH prompt show server time correct, matching my own time.
But connecting via filezilla 3 I get:
Status: Calculating timezone offset of server...
Command:MDTM .htaccess
Response:213 20080208013750
Status:Timezone offsets: Server: -18000 seconds. Local: -14400 seconds. Difference: 3600 seconds.
Status: Directory listing successful
If I connect locally to pure-ftp via the server shell ftp, I get
Connected to localhost.
220---------- Welcome to Pure-FTPd [TLS] ----------
220-You are user number 1 of 50 allowed.
220-Local time is now 20:52. Server port: 21.
which matches
$ uptime
20:52:28
The filezilla forums however indicate the problem is due to some "non-standards compliant setup" of my ftp server.
[url]
Quote:
As required in RFC 3659 [url]FileZilla assumed MDTM returns timestamps in UTC. Based on the timestamp return in the LIST reply and the corresponding MDTM reply, it calculates the timezone offset of the server.
Obviously this fails on broken or misconfigured servers.
I can assure you that it works fine on all standards-compliant servers.
Is there something I can tweak with pure-ftpd, or is this a Filezilla 3 bug?
I have setup a new CentOS 6.6 server with Plesk version 12.0.18 and everything works as it should apart from the fact that in Filezilla the connection for domain1.com points to the httpdocs directory for domain2.com and vice versa. In the plesk filemanager and in a web browser the domains point to the right directory.
View 4 Replies View RelatedI have received notices from several customers with this error and I checked myself. When trying to connect to a ftp hosted on my server with Plesk gives an error expired certificate, a certificate of Parallels. The solution I've found is to configure access without TLS but says it is unsafe and customers are not satisfied.
View 1 Replies View RelatedI have a Cloud VPS with 1and1 and Plesk is installed on it. I happen to have a VPS view that doesn't include DNS functionality for the domains.
So, i have added domain to the system, create an email address... because i dont see on how i can manage DNS settings I have set up cloudflare and pointed domain to the cloudflare and cloudflare is pointing to server.
so I have email: me@domain.com
on cloudflare i have:
A domain @ IP
A www @ IP
CNAME mail @ domain
MX 10 mail.domain
In plesk i have set up an alias, mail.domain for domain, that has access to email.
I go to the network-tools.com to look up me@domain.com:
[Resolving mail.domain...]
[Contacting mail.domain [IP]...]
[Timed out]
Want to activate webDAV in a specific domain with a v_host conf file, but do not have a /conf directory in the domain path. How can I manage the this?
View 2 Replies View Relatedit's come under my attention that dragonara.net has been ddosing me today since morning from the ip:
194.8.75.229
What's so ironic about it is that the ip is from a UK DDOS protection site so i'm expecting some email with their services in the next hour or so. Stay clear of them they are fakes and e-terrorists.
I am looking for some good ddos protection providers, via protected dns. I've searched on internet, but most of them are really expensive.
Please tell me some ddos protection providers what could help me.(gige is too expensive btw).
And I found some ddos protection scripts. How can a script protected a server from ddos? A sript like CSF or DDoS deflate?
I've been getting VERY high packet loss to my VPS for around 10-15 minute periods over the past month or so (No patterns or specific times, totally random when it occurs) with my provider's Parallels Business Automation control panel reporting "Server is down" along with the VZCP on the node being inaccessible. I opened a ticket with my provider and they told me that they experienced a DDoS attack on the node my VPS was hosted on.
However, I get the feeling that they are giving me some crap to stop my pestering them about the packet loss all the time (I mainly use my VPS for providing VoIP services which use UDP so the packet loss is devastating).
Anyone got any views on this?
Also they keep offering to move me to a diffrent node but they say they can only do that by giving me a new IP address and I would have to backup all the data and restore it manually, myself. Any views on this as well?
I'm experiencing a significant UDP DDoS at the moment which is aimed at port 80 on my server, it's currently crippling Apache, but only on port 80, https (443) is fine. I've told iptables it drop UDP packets sent to port 80 and have also completely blocked most of the attacking IPs, this has helped, but the webserver is still periodically unresponsive.
View 11 Replies View RelatedWe are getting ddosed badly.. Last night httpd reached max clients and httpd wasnt able to start up.
View 3 Replies View Relatedwe had a bad ddos to on of the sites we were hosting, the ip of the ddos was blocked in apf and iptables, but for some reason it still got through we had to have it blocked in the router, we installed CSF into our server hoping for a better firewall does anybody know why apf could not hold back the ip im open to suggestions,
View 2 Replies View RelatedI have got pretty big problems with my VPS, some of my sites getting DDoS'd a log. I have no idea why and who DDoSing them
I have csf, apf and DDoS Delfate installed but it seems they can't take those attacks down. I know for mod_evasive but it works only on small attacks, I getting pretty strong attacks
I need some way to configure csf better, what I need to edit in /etc/csf.conf to block IPs if the same IP trying to connect to server more that 10 times. I need everything what I could edit for csf to block IPs faster
About DDoS Deflate, he is configured to works with apf, can I configure it to works with csf and how? How to configure DDoS Deflate better, to block IPs faster
Also, another problem with csf is that when I restart csf(service csf restart) he unblock all blocked IPs and I have to block them again
How to see blocked IPs by iptables?
I running lighttpd at the moment but I thinking to change it with Litespeed(free edition), what do you think about it?
I hope I will get some help here. Aslo,would be interesting to hear how do you guys protecting your servers from DDoS(if you getting DDoSed
we have a 100mbut connection and with a normal traffic we use about 40-50mbit but from friday seem that we are under attack this is the stats from the fastethernet
inbound 20427 ucast pkts/s
outbound 5547.5 ucast pkts/s
inbound 85793.9 Kbit/s
outbound 8211.98 Kbit/s
we have reach also for 4 hours 100mbit and all the server was offline, we have contact the datacenter and they say that not is a ddos attack because the traffic come fom our server and not from outside the net, so look as we have a hacked server that is making all this traffic, how can w found the problem? we have about 130 server on this connection
If you were under a DDos attack, what commands would you execute to confirm this?
Is it normal for high traffic sites with 3,000 concurrent apache connections from running this command?
netstat -n | grep :80 |wc -l
what would happen if you changed the server IP to 127.0.0.1?
View 4 Replies View RelatedMy server is using too many httpd process..I think iam under DDOs attack..I executed the following command..
netstat -an | grep :80 | sort
and the result is this
tcp 0 1491 ::ffff:95.211.10.169:80 ::ffff:213.215.100.110:2263 LAST_ACK
tcp 0 1493 ::ffff:95.211.10.169:80 ::ffff:85.207.126.231:52694 LAST_ACK
tcp ....
The DC installed Squid. It manages the load fine but the php code on my page is cached and doesn't work.
Is there a way to get squid to not cache php? in that httpd can directly call php while squid does everything else?
Hey guys If there was a way to have the ips of the dedi change constantly would this help prevent ddos attacks or would there be no difference if the domain was being attacked.
View 2 Replies View RelatedOK well today I found out my server was being DDOS'ed
And I know which domain is being attacked with hundreds of IP's. I am running Cpanel / WHM but I have no idea how I can stop this?
Any ideas or suggestions? Maybe redirect the DNS? to a invalid ip? But I'm not sure how i can go about doing that?
I have a problem with a customer. For the last 48 hours he has been receiving a massive DDoS at his server. I tried blocking the darn IPs but they keep coming and with several hundreds of connections each:
104 78.157.168.98
125 83.226.157.91
126 89.103.109.65
131 89.12.150.23
135 84.251.196.78
135 86.122.0.135
135 91.127.235.86
154 84.24.14.41
160 193.216.140.101
331 89.151.8.78
419 78.0.103.64
Apache has over 14000 connections. I tried using mod_evasive but didn't do anything and the server has been out without httpd for hours now. Any advices? This is a Hsphere server (I hate it personally) with 4GB RAM and a dual optero 246. I have the mexclients setting at 550.
I have a windows server, and today it has a large inbound traffic, so I tried to disable all web service, and after that, the result of netstat -an shows no connection at all, but the server still has large inbound traffic,
Do you have any idea about this?
What should I do now?
Our server is in attack since 4 days. Http port busy all the time.
When I type :
netstat -na | grep ":80" | awk '{print $5}' | cut -d. -f1-4 | cut -d: -f1 | sort -n| uniq -c | sort -n | tail -5
It shows :
[root@ ~]# netstat -na | grep ":80" | awk '{print $5}' | cut -d. -f1-4 | cut
-d: -f1 | sort -n| uniq -c | sort -n | tail -5
2 65.19.130.24
2 83.149.120.9
4 204.15.73.243
35 222.254.103.142
5128
[root@ ~]#
I wonder the hidden IP of 5128 ??? How to know it?