DDoS attack (http://en.wikipedia.org/wiki/Denial-of-service_attack) is all around the Internet and no one can escape from it. What we can do is trying to protect ourself whenever happened. On the other hand, DDoS attack to Apache is also very common so what can we do for it? Let's try mod_evasive (http://www.zdziarski.com/projects/mod_evasive/).
The installation of mod_evasive under Debian is very simple:
apt-get install libapache2-mod-evasiveAfter install try this command and you will find that Debian have already active mod_evasive for us by default:
find /etc/apache2/ | xargs fgrep -nH evasiveSo what we only need to do is restart the Apache and let mod_evasive active:
/etc/init.d/apache2 restartFor testing the effect of mod_evasive, you can try this command (you will have HTTP/1.1 302 Found at beginning but soon become HTTP/1.1 403 Forbidden):
perl /usr/share/doc/libapache2-mod-evasive/examples/test.pl
For me it keeps going on 200
For me it keeps going on 200 OK while mod-evasive is running...
Did you verify your setup
Did you verify your setup with
perl /usr/share/doc/libapache2-mod-evasive/examples/test.pl? What is the result?----------------------------------------
Edison Wong
Post new comment