Go Back   vb.org Archive > Community Discussions > Forum and Server Management
FAQ Community Calendar Today's Posts Search

Reply
 
Thread Tools Display Modes
  #1  
Old 11-15-2008, 08:01 AM
Nassou Nassou is offline
 
Join Date: Mar 2007
Location: PHP
Posts: 42
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default DDOS protection

Hi all ;

somebody know how to protect my apache webserver ?

because i receive an attack from different IP
Reply With Quote
  #2  
Old 11-15-2008, 09:14 AM
Dismounted's Avatar
Dismounted Dismounted is offline
 
Join Date: Jun 2005
Location: Melbourne, Australia
Posts: 15,047
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

DDoS protection should be done at the router point, if it reaches your server, it's already probably too far. Talk to your host.
Reply With Quote
  #3  
Old 11-17-2008, 01:14 AM
Angel-Wings's Avatar
Angel-Wings Angel-Wings is offline
 
Join Date: Sep 2007
Posts: 206
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Short answer - no.

dDoS attacks just overflood your servers with thousands or even more requests at the same time and there's no protection against that - except maybe taking down the server but the result would be the same.

Load balancing might help - until a special point but generally there's not much you can do.
Reply With Quote
  #4  
Old 11-29-2008, 04:55 PM
Brandon Sheley's Avatar
Brandon Sheley Brandon Sheley is offline
 
Join Date: Mar 2005
Location: Google Kansas
Posts: 4,678
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Here is a hack you might want to check out
https://vborg.vbsupport.ru/showthread.php?t=196791
Reply With Quote
  #5  
Old 11-29-2008, 04:58 PM
codershark codershark is offline
 
Join Date: Feb 2008
Location: Germany
Posts: 208
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by Loco.M View Post
Here is a hack you might want to check out
https://vborg.vbsupport.ru/showthread.php?t=196791
this hack isnt against ddos
Reply With Quote
  #6  
Old 11-29-2008, 05:42 PM
Brandon Sheley's Avatar
Brandon Sheley Brandon Sheley is offline
 
Join Date: Mar 2005
Location: Google Kansas
Posts: 4,678
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

ya, but I think it might be the best "mod" out right now for attacks
you can always pass protect your root url, and post the user and pass on the popup
but it will block the search engine spiders as well
Reply With Quote
  #7  
Old 11-30-2008, 01:56 AM
Angel-Wings's Avatar
Angel-Wings Angel-Wings is offline
 
Join Date: Sep 2007
Posts: 206
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Quote:
Originally Posted by Loco.M View Post
you can always pass protect your root url, and post the user and pass on the popup
but it will block the search engine spiders as well
Not if the dDoS overfloods the TCP Stack - then it doesn't matter if there's a 401 / 200 or whatelse reply - as long as the Webserver replies with something.

About pass protection the forum URL - you can still let some Useragents (Search Engine Bots) bypass the protection with LimitExcept / Limit directives still everyone who knows how to fake a Useragent can bypass the protection as well.
Reply With Quote
  #8  
Old 11-30-2008, 02:39 AM
Brandon Sheley's Avatar
Brandon Sheley Brandon Sheley is offline
 
Join Date: Mar 2005
Location: Google Kansas
Posts: 4,678
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

well, it's what I did when I was getting ddos'd for days at a time and the forum ran great after you entered the login for the popup
maybe things have changed since then, it was 5 years ago.
Reply With Quote
  #9  
Old 12-01-2008, 11:36 AM
Marco van Herwaarden Marco van Herwaarden is offline
 
Join Date: Jul 2004
Posts: 25,415
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

If the DDOS attacks the TCP stack, then no software solution will help. This would be best mitigaed by the host/datacenter at their outer border routers.

Most DDOS attacks i encounter are however attacking the web service. This kind of attack migth be stopped by an extra login.
Reply With Quote
  #10  
Old 12-11-2008, 02:48 AM
azn_romeo_4u azn_romeo_4u is offline
 
Join Date: Feb 2006
Posts: 227
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Most DDOS protection is unprotectable at the software level. Massive DDOS protections are unprotecable by software or hardware. If it was just a regular DOS attack you could probably minimize the damage with stuff like apf firewall or mod_deflate.

I use for my apache server http://www.configserver.com/cp/csf.html Also I use www.litespeed.com that helps with DOS. Litepseed also speeds up my server way way way way faster than apache.

If you ever get DDOS just have your host null route for a few hours, but that's only if it's extremely severe. If not, you can block the IP with iptables or the CSF firewall. It has a nice UI for WHM.
Reply With Quote
Reply


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 01:31 PM.


Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.12046 seconds
  • Memory Usage 2,254KB
  • Queries Executed 13 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)ad_showthread_firstpost
  • (1)ad_showthread_firstpost_sig
  • (1)ad_showthread_firstpost_start
  • (2)bbcode_quote
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)navbar
  • (3)navbar_link
  • (120)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (1)pagenav_pagelink
  • (10)post_thanks_box
  • (10)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (10)post_thanks_postbit_info
  • (10)postbit
  • (10)postbit_onlinestatus
  • (10)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 

Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_postinfo_query
  • fetch_postinfo
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • pagenav_page
  • pagenav_complete
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete