+- nixers (https://nixers.net)
+-- Forum: Development & Graphics (https://nixers.net/Forum-Development-Graphics)
+--- Forum: Programming On Unix (https://nixers.net/Forum-Programming-On-Unix)
+--- Thread: ANTI Ddos (/Thread-ANTI-Ddos)
ANTI Ddos - TheHotBot - 05-10-2012
Hello fellow *nixers!
My servers where on heavy load last night and it turned out it was a denial of service attack.
Do you have any suggestions on a script that can make the attack less succesful?
This is my script: http://paste.unixhub.net/dRn2b9kC
I'm not that good at this, but of you can help me it would be nice.
/NeverW8
RE: ANTI Ddos - Mafia - 05-10-2012
Have you written any firewall policies yet?
RE: ANTI Ddos - Mafia - 05-10-2012
In my opinion policies will save you. Learn how to recognize packets and unnatural traffic and write policies to block them. For reference there is a book from 2004 I believe that shows some very basic triggers, it's called Hacking Exposed 3rd edition (I think). It's a great take on older malware and the thought processes.
RE: ANTI Ddos - TheHotBot - 08-10-2012
(05-10-2012, 03:13 PM)Mafia Wrote: Have you written any firewall policies yet?
Yes some, but i will look more into it!
Thanks anyway.
RE: ANTI Ddos - zygotb - 12-10-2012
Also might consider limiting max_connections and implementing fail2ban, as the more layers of security the better.
I've also noticed that the free VPS from host1free are hot targets for the HF skiddies.
My paid VPS (not host1) is way obscured though, we'll see ...
RE: ANTI Ddos - TheHotBot - 14-10-2012
(12-10-2012, 03:07 PM)29a Wrote: Also might consider limiting max_connections and implementing fail2ban, as the more layers of security the better.
I've also noticed that the free VPS from host1free are hot targets for the HF skiddies.
My paid VPS (not host1) is way obscured though, we'll see ...
Thanks for helping.
I will try it!