I`am starting a irc company and i need help on some things:
1 - How can i prevent my clients to send DDOS on my server?
2 - How can i increase security ?
3 - Some one have a good firewall or iptables rule for ddos protection (software)
4 - Some one have the scripts like `getegg` `getpsybnc` ?
from 2 days ago until now my server be ddos and i stay in my computer and block ip but it is not finish is a program to do block ip automatic?
View 2 Replies View RelatedMy site was recently under a DDoS attack and was down for a few days, the attack came from Russia i believe.
The people who did it asked for $800, but of course i didnt pay. My hosting company did the best they could in order to stop the attack but it still lasted a few days and badly hurt my rankings.
I moved my site to a dedicated server, but i dont know what kind of software/hardware i need to install on it in order to prevent more future attacks, the hosting company suggested a few things but i dont know if they are just trying to get more money out of me.
I believe that my site is being DDoSed against, and I'm wondering how I can prevent this from happening.
I'm running CentOS 5.3.
Are there any server side scripts of PHP scripts that could be used to dynamically block out IP's that are consuming too many resources on the VPS?
While working with different issues, I have seen that many clients complaining about ddos attack on their server. So, I am posting here some useful commands to check and prevent ddos attack.
First of all when you see that your site's or server speed is very slow even though there is not much load on your server, you can guess it might be ddos. Then run 'top' command and see which processes is more, if those are httpd then fire following command
which will show how many active connections your server is currently processing.
netstat -n | grep :80 | wc -l
netstat -n | grep :80 | grep SYN |wc -l
The first command will show the number of active connections that are open to your server. The number of active connections from the first command is going to vary widely but if you are much above 500 you are probably having problems.If the second command is over 100 you are having trouble with a syn attack.
netstat -anp |grep ‘tcp|udp’ | awk ‘{print $5}’ | cut -d: -f1 | sort | uniq -c | sort -n
That will list the IPs taking the most amounts of connections to a server.
use follwoing command to block a ip with iptables on server
iptables -A INPUT 1 -s IPADRESS -j DROP/REJECT
service iptables restart
service iptables save
--------OR---------------
You can place ip's which you want to block in hosts.deny
vi /etc/hosts.deny
httpd: IP
write and quit
---------------------------
Then KILL all httpd connection and restarted httpd service by using following command
killall -KILL httpd
service httpd startssl
-----------------------------------
This are all the step to check and prevent ddos on your server.
Can you restart the httpd to get the server online again while you are under an DDoS attack?
The reason for asking is that I was told that when restarting the httpd it should start to work again instantly, and so it seems.
But why? doesnt the attack "continue" after the restart?
We will buy litespeed enterprise for our web server. I read from their features page at [url] LiteSpeed enterprise has a very good (D)DoS protection.
- After bought Litespeed, do we still need to purchase Gigenet Proxyshield (or BlackLotus)?
- What's the difference (in DDoS protection) between LiteSpeed and Gigenet/BlackLotus?
- Which one do most people need to protect their server from DDoS?
If a website i host is under DDOS attack and i get the raw log from apache can i report it? and if i can report it and send off the log where do i report it?
View 8 Replies View RelatedI need a server dedicated just to emailing prospected clients.
Can anyone turn me onto a decent provider who does not mind excessive mail?
I am a host reseller and the parent company is upgrading their servers to PHP5. This may break some of my clients' sites (OSCommerce, Zen). Should we fix those sites for free or should my clients pay for the upgrade?
View 24 Replies View RelatedI had been rebuild apache, change value MaxClients in httpd.conf to 1500 and restart the server, but problem still the same
Quote:
Originally Posted by httpd.conf
MaxClients 1500
Quote:
Originally Posted by ssh
# /usr/local/apache/bin/apachectl configtest
Syntax OK
Quote:
Originally Posted by email
httpd failed @ Fri Jul 6 21:35:08 2007. A restart was attempted automagicly.
Quote:
Originally Posted by Server Status
Server Load 1.23 (2 cpus)
Memory Used 7.8 %
So my the other day one of my clients rented a Windows 2003 server. Has no idea on how to run DNS server on it and demanded us to do something about it. Since he had no management plan, we let him know that if he got himself a management plan we could help him out - but looks as though he was on a tight budget and couldn't opt in for it. Same thing happened last week and again one yesterday!
To help these customers out I was wondering if I could start a DNS service. Each client would get access to it for free regardless of their operating system or management plan. They could point their domains to the nameservers and use the DNS service to point the domain's A records to their servers.
From the start, I have been using EditDNS and still using it. But coming to think of it, its getting more unstable day by day even though they have 5 servers spread across the globe. I am planning on to move to EveryDNS. With this move, I'd like to use their services for my clients too. Rather than running my own DNS servers - I feel this could work out more efficient and reliable.
So what I am planning on doing here is more like creating private namesevers to mask EveryDNS's nameservers. Then have a custom script site built to interact with EveryDNS's APIs. Sounds like a good idea? Then my customer uses the script's interface to create/delete/edit records, etc.
Anyway I need some advice, suggestion or help in this matter. Has anyone tried this stunt out before? If so, how successful were they/you? How are your customer's reaction towards this (satisfied or not?). Does it stay efficient? (both in terms of money, time and energy spent).
Also, if anyone could suggest me any programmer who could do this for me (someone well versed with DNS/EveryDNS on PHP/MySQL) it would be nice.
Edit: I guess ServerBeach/Peer 1 already has implement this. If anyone really knows whats going on there - please share.
in getting a full list of server addons that clients generally require. i know i few, like:
Zend optimizer
Curl
Ioncube
GD
Imagemagiac
etc... but i want to know others which i dont know and which most of the clients want to have already installed on their hosts server.
I want to buy a billing software, but I am a bit scared about having all my clients in mysql on the server. How safe is it? Can hackers steal my data? Till now I had clients data stored on my PC.
View 2 Replies View Relatedi have my own box for my forum .. now i shared my box with friend's , but in reall they a freak friend's , just to be in safe brother, am looking to know what function i can disable in php.ini or any problem/tool to prevent anybody / attacker * nobody* permission to move in the server via his shell script..
as we know some attacker's use them own php-shell to hack site's * shared hosting *, so they can move to any account after they know the user account name * /etc/passwd * .. so as i say before is there any good functions to prevent these attacker to move in the server? so i can disable it .. or install any good tool * else modsecurity * in the system to prevent them *nobody* of that?
My server was recently hacked and I'm looking ways to secure it in the future. I use the server to host my own websites.
It was hacked to be a spam server. I traced the new files the hackers added to my "upload" directory, which is where my site members upload pics. I had set the directory to chmod 777. Could someone hack that directory solely from it being its rights being 777?
The site was custom developed in PHP, and looking through it myself, I couldn't find any security issues. But then again, I may not know what exactly to look up.
I would appreciate any general tips to protecting a server, as well as general tactics hackers use to hack a server and PHP site.
Is there a way to use ns1/ns2.yourhostdomain.com for not only your shared hosting clients but also for your linux AND windows 2003 dedicated server clients (or vps)?
View 1 Replies View RelatedI administer an Apache server under unix environment SunOS 5.10,I want to know the number of clients connected to my apache server
View 7 Replies View Relatedis there any way to prevent users to run phpproxy or any proxy script on server (server is Linux / whm )?
View 2 Replies View RelatedAlright, so I apparently messed up my email. I downloaded my email folders from my previous host's mail folder through FTP and then uploaded them to my new server's mail folder thinking it'd be an easy transfer. Yeh... didn't work, now I can't get my email through Outlook 2003 or ThunderBird. Any ideas on how to reset my mail server? I don't know if it's just the mail folder that's messed up or what.
View 9 Replies View Relatedhow can I restrict how many emails can be send per domain base? I know hostgator and hostmonster can restrict their email per hour base on their domain name...
View 2 Replies View RelatedI have noticed in a few Windows server tha the server gets hacked and there are tons of files which are mostly DVD rips and games being transferred away which results in huge amount of data transferred and bandwidth consumption increasing to as far as 29 Mbps. On further investigation, I find that all the files get stored in either the Recycler directory or the System Volume Information directories in any of the drives. Now these two directories are protected operating system files. Even if there is a windows firewall installed, there is no difference. I have even noticed that in some servers there is an automatic exception rule added in the windows firewall enabling the torrent client to communicate outside the server. This seems to be a common problem with Windows 2003 server and seems to be some backdoor of Windows allowing hackers to use the server for seeding. Has anybody come across such a problem or know the solution? Kindly help me with this.
View 14 Replies View Relatedhow to prevent full backup to generated in cpanel server
iam seen this in few host what we cant able to generate the fullback if the size of the amount is more than 1-2GB
What scripts/tools or configurations on a CPanel/WHM (Centos) server can you make to prevent spam from getting sent out by "clients" you may be hosting or just spam in general.
As, in the hosting industry, you are always going to have a client or two successfully send out spam, as some spam may not look like spam, but if you do not follow all the guildlines, I know regular newsletters can be consider spam.
Does the use of partitions prevent hackers from getting access to the entire Unix server?
View 2 Replies View Related