httpd-modules-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Elison Smith <elison.sm...@gmail.com>
Subject Re: [Slightly OT] How good is the mod_dosevasive default
Date Fri, 12 Jun 2009 17:11:04 GMT
I am also curious how mod_dosevasive will perform when multiple users from
behind a NAT box access the web application at the same time. From the
perspective of the mod - they will all look as coming from the same IP. That
sounds risky.

Any help is appreciated.

Thanks.


On Fri, Jun 12, 2009 at 10:00 AM, Elison Smith <elison.smith@gmail.com>wrote:

>
> I am planning to put up a website which, like any other website, may get
> DoS attacked. I have installed mod_dosevasive to protect against some degree
> of application-layer DoS.
>
> I understand that here are the default settings of mod_dosevasive -
> (
> http://www.theserverpages.com/articles/servers/linux/apache/mod_dosevasive_Apache_Module_How-To.html
> )
>
> <IfModule mod_dosevasive20.c>
>     DOSHashTableSize    3097
>     DOSPageCount        2
>     DOSSiteCount        50
>     DOSPageInterval     1
>     DOSSiteInterval     1
>
>     DOSBlockingPeriod   10
> </IfModule>
>
>
> Any experience how good this default works for the average website? I would
> prefer to not spend time making changes to this default.
>
> Thanks!
>
>

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message