Prevent Ddos

Sep 11, 2007

from 2 days ago until now my server be ddos and i stay in my computer and block ip but it is not finish is a program to do block ip automatic?

View 2 Replies


ADVERTISEMENT

What Can I Do To Prevent DDoS Attack

Aug 4, 2008

My site was recently under a DDoS attack and was down for a few days, the attack came from Russia i believe.

The people who did it asked for $800, but of course i didnt pay. My hosting company did the best they could in order to stop the attack but it still lasted a few days and badly hurt my rankings.

I moved my site to a dedicated server, but i dont know what kind of software/hardware i need to install on it in order to prevent more future attacks, the hosting company suggested a few things but i dont know if they are just trying to get more money out of me.

View 3 Replies View Related

How To Prevent DDoS Attacks CentOS

Jul 23, 2009

I believe that my site is being DDoSed against, and I'm wondering how I can prevent this from happening.

I'm running CentOS 5.3.

Are there any server side scripts of PHP scripts that could be used to dynamically block out IP's that are consuming too many resources on the VPS?

View 14 Replies View Related

Check And Prevent Ddos Attack

May 25, 2009

While working with different issues, I have seen that many clients complaining about ddos attack on their server. So, I am posting here some useful commands to check and prevent ddos attack.

First of all when you see that your site's or server speed is very slow even though there is not much load on your server, you can guess it might be ddos. Then run 'top' command and see which processes is more, if those are httpd then fire following command
which will show how many active connections your server is currently processing.
netstat -n | grep :80 | wc -l
netstat -n | grep :80 | grep SYN |wc -l

The first command will show the number of active connections that are open to your server. The number of active connections from the first command is going to vary widely but if you are much above 500 you are probably having problems.If the second command is over 100 you are having trouble with a syn attack.

netstat -anp |grep ‘tcp|udp’ | awk ‘{print $5}’ | cut -d: -f1 | sort | uniq -c | sort -n

That will list the IPs taking the most amounts of connections to a server.

use follwoing command to block a ip with iptables on server

iptables -A INPUT 1 -s IPADRESS -j DROP/REJECT

service iptables restart

service iptables save

--------OR---------------
You can place ip's which you want to block in hosts.deny

vi /etc/hosts.deny

httpd: IP

write and quit

---------------------------

Then KILL all httpd connection and restarted httpd service by using following command

killall -KILL httpd

service httpd startssl

-----------------------------------

This are all the step to check and prevent ddos on your server.

View 4 Replies View Related

Q: Prevent DDoS Attacks With Restarting Httpd?

Jan 12, 2008

Can you restart the httpd to get the server online again while you are under an DDoS attack?

The reason for asking is that I was told that when restarting the httpd it should start to work again instantly, and so it seems.

But why? doesnt the attack "continue" after the restart?

View 14 Replies View Related

Irc :: Prevent My Clients To Send DDOS On My Server?

Jun 15, 2009

I`am starting a irc company and i need help on some things:

1 - How can i prevent my clients to send DDOS on my server?

2 - How can i increase security ?

3 - Some one have a good firewall or iptables rule for ddos protection (software)

4 - Some one have the scripts like `getegg` `getpsybnc` ?

View 9 Replies View Related

Will Buy LiteSpeed. Does Proxyshield (or BlackLotus) Still Needed To Prevent DDoS

Dec 26, 2007

We will buy litespeed enterprise for our web server. I read from their features page at [url] LiteSpeed enterprise has a very good (D)DoS protection.

- After bought Litespeed, do we still need to purchase Gigenet Proxyshield (or BlackLotus)?

- What's the difference (in DDoS protection) between LiteSpeed and Gigenet/BlackLotus?

- Which one do most people need to protect their server from DDoS?

View 9 Replies View Related

Being Ddos'd By A U.K Ddos Protection Company - Dragonara.net

Nov 7, 2008

it's come under my attention that dragonara.net has been ddosing me today since morning from the ip:
194.8.75.229

What's so ironic about it is that the ip is from a UK DDOS protection site so i'm expecting some email with their services in the next hour or so. Stay clear of them they are fakes and e-terrorists.

View 14 Replies View Related

DDoS Protection Providers Vs DDoS Protection Scripts

Oct 8, 2009

I am looking for some good ddos protection providers, via protected dns. I've searched on internet, but most of them are really expensive.

Please tell me some ddos protection providers what could help me.(gige is too expensive btw).

And I found some ddos protection scripts. How can a script protected a server from ddos? A sript like CSF or DDoS deflate?

View 12 Replies View Related

How To Prevent Rm -rf /

Jul 4, 2009

Does anyone know anyway that "rm -rf /" can be disabled? OR any selinux rule or something to prevent this?

Or if I wanted to prevent a certain directory from being deleted like backups but something unlike chattr that someone can figure out quickly.

Im sure LOTS of people would like to know about this. Ive searched around and only somewhat useful thing I have found is an rm wrapper that sends everything to a trash file in the root of the mount point.

View 14 Replies View Related

How To Prevent DNS Flood

May 28, 2008

Can anyone share tips how to prevent DNS flood on a cPanel and Directadmin server platform on Centos?

View 7 Replies View Related

Prevent Phishing

Jun 1, 2008

I'm not that techy I'd like to ask why this person downloaded the file below before uploading some phishing webpages on my account ? I've changed my password numerious times from different computers and even from mobile phone just to check if the person can still get in. But again it is no use the person were able to upload phishing pages.

logs:

May 25 21:50:42 server100 pure-ftpd: (weblogin100@62.56.133.36) [NOTICE] /home/weblogin100//.htpasswds/update/Login.php downloaded (21251 bytes, 755.78KB/sec)

Right now I deleted all other scripts on the account and remain some htmls. Folder were also set to 644 no 777, while waiting if the person can still upload his phishing pages please help me why he downloaded the file above. I've check the file on my account and I cannot see Login.php. By the way I have a root login and only two accounts were a constant phishing victims.

View 1 Replies View Related

How Prevent Hackers Away

Feb 21, 2007

I am giving few tips on securing your server against hack attempts. You must check these inspite of other securities like firewall, rootkits detectors etc.

1. Most Important, do not disable safe_mode under php.ini. If any customer asks to disable it, turn it off on his account only, not on whole server.

As most of the time attack is done using shellc99 (phpshell) script. In case safe_mode is off on server and there are public dirs with 777 permission, he can easily hack through.

2. Compile apache with safe mode as well.

3. In cpanel under tweek settings, turn on base_dir, if someone requests to turn off, turn it off on his/her account only. As using phpshell one can easily move to main server dirs like /etc, /home.

4. Do not allow Anonymous Ftp on your server. You can turn it off from ftp config under WHM Service Configuration. If its allowed, one can easily bind port using nc tool with your server and gain root access. Always keep it disabled.

5. Make sure /tmp is secured. You can easily do that by running this command /scripts/securetmp using ssh. But do make sure, /tmp is secured. Else one can upload some kind of perl script in /tmp dir and can deface or damage all data on the few/all accounts on your server.

keeping your server secure from hack attempts.

View 7 Replies View Related

Prevent Php Script Run As .gif Or .jpg

Oct 28, 2007

Does anyone know how to prevent some shell, php script change file name from file.php to file.jpg or file.gif and upload to server and run it to attack server?

View 14 Replies View Related

Prevent IPs Unallocated IPs Being Used

Sep 13, 2007

We have been using our L2 switches functionality to only allow IPs that are assigned to a particular server to be accessed for sometime. However, the latest version of this particular switch no longer includes this feature. Moreoever, it is quite a labor intensive task which is not good for "budget" servers.

I am considering moving the rules to the main router, but am afraid of the scalability of this. Will it hold up with a few 1000 servers?

How are other hosties going about this? I have heard that some just don't bother at all, which leaves their clients open to having their IPs duplicated by others on the same subnet. This can't be good....

View 1 Replies View Related

Prevent Mass Download

Sep 21, 2006

i need any thing to prevent mass download

my server is cost a huge bandwidht monthly . because mass downloading?

View 1 Replies View Related

Prevent From Iframe Virus

May 24, 2008

I need to know so idea, how to prevent iframe virus injection into the server,also is there is any mod which help in protection for iframe virus.

View 14 Replies View Related

How To Prevent Nobody To Move In Server

Jun 13, 2009

i have my own box for my forum .. now i shared my box with friend's , but in reall they a freak friend's , just to be in safe brother, am looking to know what function i can disable in php.ini or any problem/tool to prevent anybody / attacker * nobody* permission to move in the server via his shell script..

as we know some attacker's use them own php-shell to hack site's * shared hosting *, so they can move to any account after they know the user account name * /etc/passwd * .. so as i say before is there any good functions to prevent these attacker to move in the server? so i can disable it .. or install any good tool * else modsecurity * in the system to prevent them *nobody* of that?

View 7 Replies View Related

Mod_security To Prevent Some Script

Jul 30, 2009

I try to use mod_security to prevent some script in some files,

imagine I want to block all scripts includes "test" in the body

so if code of script.php is:

HTML Code:
<html>
<p>test</p>
</html>

and someone run script.php , I want block running and show 406 error

now can you tell me how can I write this rule in mod_security 2 with apache 2?

I use SecRule RESPONSE_BODY "test" but its now working ...

View 8 Replies View Related

How To Prevent Perl From Working

Jan 12, 2008

I have a cPanel/Linux server, runing apache as a webserver.

i want to know how can i prevent perl/cgi files from working on all virtual hosts on both apache2/apache1.3!

View 14 Replies View Related

Prevent User Use Custom Php.ini

Apr 26, 2008

I have added some functions in php.ini for security.

But when user use their php.ini file located in their account, all functions enabled again.

How can i prevent user custom php.ini?

View 10 Replies View Related

How To Prevent OOM (Out Of Memory) Crashes

Aug 19, 2008

I have a colocated server with the following specs:

Intel Core 2 Quad Q6600 2.4Ghz
4GB RAM
400GB SATA Drive

I have a problem every few days, the server keeps hanging up and giving an "Out of Memory" message and SSH just hangs and doesn't connect. Every time i have to call out a tech to manually reboot it.

Is there a setting i can change to make SSH connect even when it is out of memory, or anything that can prevent it happening?

View 6 Replies View Related

Prevent Directory Listing

Apr 2, 2007

I've just made a transition from a VDS to a Dedicated and I'm having problems preventing directory contents from showing. In my previous server whenever I created a directory, it would automatically give a 403 when you tried to access the directory directly in your browser (which is what I want). Now when I set up directories in this new dedicated the contents of the directories display when there is either no index page or if I didn't have an htaccess file preventing it from listing the contents.

So what im asking is how did my previous server automatically set up the directories to not display the contents but use the contents and allow access to say for example pictures in the directory?

Is there a way I can have apache automatically do this for me or do I have to place a blank index page in every directory i create or have to place an htaccess file in every directory I create? How can I protect the contents with a 403 but still allow the contents to be accessed only through full path?

View 13 Replies View Related

My Server Was Hacked -- How To Prevent This

Oct 2, 2007

My server was recently hacked and I'm looking ways to secure it in the future. I use the server to host my own websites.

It was hacked to be a spam server. I traced the new files the hackers added to my "upload" directory, which is where my site members upload pics. I had set the directory to chmod 777. Could someone hack that directory solely from it being its rights being 777?

The site was custom developed in PHP, and looking through it myself, I couldn't find any security issues. But then again, I may not know what exactly to look up.

I would appreciate any general tips to protecting a server, as well as general tactics hackers use to hack a server and PHP site.

View 13 Replies View Related

To Prevent Local Hack

Nov 29, 2007

I try to enhance my server security and prevent local hack but it seem useless.

I tried to chmod home/user/public_html to 711; disable functions; enable php open_basedir.

I can stop some popular shell such as c99shell.php but server can be hacked local.

Anyway to prevent it completely?

View 5 Replies View Related

Way To Prevent Iframe Attack

Oct 31, 2007

some sites on my server is inserted iframe code to its homepage index.php and index.html
I found this topic is discussed on WHT for sometimes but no solution yet. I found a article help to solve this issue but i am lack of knowledge to understand the article.

[url]

View 4 Replies View Related

Prevent Download Manager

Jun 8, 2007

Download manager software usually split files to many parts than download them at the same time. Will it makes server load higher, if yes how to limit the parts of file they can split to?

View 3 Replies View Related

How To Prevent Customer From Using PHP Scripts

Mar 6, 2007

Is there a way that I can prevent certain customers from using PHP scripts with their account?

For example, I'm planning to offer some free hosting accounts (along with paid ones) but do not plan to allow PHP or Perl scripts with the free accounts as I'm worried about the server being exploited. (That could also happen with paid accounts but less likely.)

View 7 Replies View Related

Prevent Hacking/spamming

Jun 2, 2007

Will I depend on my hosting account(SSL) in preventing a hacking/spamming case scenario? What do I need to know to prevent hacking/spamming?

View 5 Replies View Related

How To Prevent Hacker Enter My Host

Jul 13, 2009

I want to ask about some tips to prevent my blog from hacker attack. My friends experience this and i dont want this happen to me. Is web hosting technical support can fix my host server if hacker break it out?

View 10 Replies View Related

Prevent PHP Files Used For File Uploading

Jul 3, 2009

It appears that some people like to take advantage of those files for online web applications such as Wordpress which have php files with permissions set to 777. They use those as a means of creating an upload file. The upload files that they create then have access to the whole server somehow... Is there anyway of preventing this from happening?

View 8 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved