Hello fellow *nixers!

My servers where on heavy load last night and it turned out it was a denial of service attack.

Do you have any suggestions on a script that can make the attack less succesful?

This is my script: http://paste.unixhub.net/dRn2b9kC
I'm not that good at this, but of you can help me it would be nice.

/NeverW8

Have you written any firewall policies yet?

In my opinion policies will save you. Learn how to recognize packets and unnatural traffic and write policies to block them. For reference there is a book from 2004 I believe that shows some very basic triggers, it's called Hacking Exposed 3rd edition (I think). It's a great take on older malware and the thought processes.

(05-10-2012, 03:13 PM)Mafia Wrote: Have you written any firewall policies yet?

Yes some, but i will look more into it!
Thanks anyway.

Also might consider limiting max_connections and implementing fail2ban, as the more layers of security the better.

I've also noticed that the free VPS from host1free are hot targets for the HF skiddies.
My paid VPS (not host1) is way obscured though, we'll see ...

(12-10-2012, 03:07 PM)29a Wrote: Also might consider limiting max_connections and implementing fail2ban, as the more layers of security the better.

I've also noticed that the free VPS from host1free are hot targets for the HF skiddies.
My paid VPS (not host1) is way obscured though, we'll see ...

Thanks for helping.
I will try it!