httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "J. Bakshi" <joyd...@infoservices.in>
Subject Re: [users@httpd] Re: How to protect apache againg bench marking attack ?
Date Tue, 12 Jan 2010 10:49:23 GMT
Nicholas Sherlock wrote:
> On 12/01/2010 10:04 p.m., J. Bakshi wrote:
>> Hello all,
>>
>> I am dared to see what "ab" (apache benchmarking too) can do  against an
>> apache server.  I have used the following against my server to check
>> call handling
>>
>> ` ` `
>> ab -n 1000 -c 20 http://<site-name>/index.php?no_cache=1
>> ` ` `
>>
>>
>> and it simply bottle neck the target apache server.  the target server
>> is also  over loaded with huge cpu load.  Is there any  precaution to
>> prevent this ?  the target  system is already  protected with
>> mod_security.
>
> A quick Google turned this up:
>
> http://www.commandlineisking.com/2009/05/rate-limiting-and-dos-protection-in-mod.html
>
>
> Sounds very promising.
>
> Cheers,
> Nicholas Sherlock
>
>
> -

Thanks Nicholas,

I am trying to do the same with iptables only.  Now a days iptables has
become very matured ; unfortunately have not got success yet  .
I am trying to use hashlimit module to do the job.

regards

-- 
জয়দীপ বক্সী


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message