Hello.
My webserver uses a second server (non-apache) to deliver certain
content, say xml files. This server runs on the same machine, on a
different port. In my httpd.conf I have the following line
RewriteRule ^(.*\.xml)$ http://localhost:8000/$1 [P]
which, indeed, successfully lets the secon
Hi,
I've just become involved with a system running apache2.0.55 on ubuntu
with linux 2.6.17.
The system is currently unable to run due to repeated downloads of a
large number of pdfs by systems located in China. These are hogging all
sockets and eventually causing apache to die (I'm appendi
This is not an "Apache answer", but it may help you.
Do the IPs vary too much, or can you set up a firewall rule to block
incoming requests (any requests) from those IP ?
Sort of your own very personal "black list"?
Of course, should that address decide to post a legitimate request, it would
get b
On 6/21/07, Martijn <[EMAIL PROTECTED]> wrote:
Hello.
My webserver uses a second server (non-apache) to deliver certain
content, say xml files. This server runs on the same machine, on a
different port. In my httpd.conf I have the following line
RewriteRule ^(.*\.xml)$ http://localhost:8000/$
You can try to use iptables, to limit the number of TCP connections
$IPTABLES -A INPUT -p TCP -i $WAN -s 0/0 --syn --dport 80 -m connlimit
--connlimit-above 10 -j logdropdos
Or implement a Freebsd firewall with QoS, applying shapes to parallel TCP
connections.
I hope this help.
On Thu, 21
On 6/21/07, Luis Moreira (ESI-GSQP) <[EMAIL PROTECTED]> wrote:
This is not an "Apache answer", but it may help you.
Do the IPs vary too much, or can you set up a firewall rule to block
incoming requests (any requests) from those IP ?
Sort of your own very personal "black list"?
Of course, should
Luis Moreira (ESI-GSQP) wrote:
This is not an "Apache answer", but it may help you.
Do the IPs vary too much, or can you set up a firewall rule to block
incoming requests (any requests) from those IP ?
No, the ip addresses vary too much. I just started apache again, and the
new batch of ip ad
Hamilton Vera wrote:
You can try to use iptables, to limit the number of TCP connections
$IPTABLES -A INPUT -p TCP -i $WAN -s 0/0 --syn --dport 80 -m connlimit
--connlimit-above 10 -j logdropdos
Sounds good. What's the 'logdropdos'? I don't seem to have it, and
google gives me nothing. Is
I, for one, don't , either.
The thing is, if the IP changes too much, blocking on an IP-to-know basis
can generate too many rules.
Blocking the subnet is easier, but tougher on the innocent.
In this case, what DNSSTUFF says is that the IP is the range 88 to 95, which
means that you can block
218
It is just a target name
$IPTABLES -N logdropdos
$IPTABLES -A logdropdos -j LOG --log-level INFO --log-prefix "[logdropdos]"
$IPTABLES -A logdropdos -j DROP
Just to make easier the log analisys, you can also use
"-j DROP" instead.
Hamilton Vera
int Administrator (char Network[],char Comput
On 6/21/07, Joshua Slive <[EMAIL PROTECTED]> wrote:
I don't know much about mod_perl, but this depends on a couple factors:
1. If you are using .htaccess files rather than httpd.conf for
applying RewriteRules, then you are more likely to get per-directory
configuration applied, including auth.
Unfortunately connlimit is missing from both debian and ubuntu at the
moment:
https://bugs.launchpad.net/ubuntu/+source/linux-source-2.6.20/+bug/60439/+activity
Shame, it looked like that was going to be such a neat way to fix the
problem...
Graham
Hamilton Vera wrote:
It is just a target
Is there a valid reason based on your web server content that people from
China would be accessing your site? If not then just deny packets from the
complete range of IP address allocated to China??? Many email servers do
that to cut off spam from China. Maybe what you are seeing is China search
en
Bob wrote:
Is there a valid reason based on your web server content that people from
China would be accessing your site?
Yes, we have a very large quantity of pdfs in Chinese. Converting them
to html would presumably reduce the load but I don't think the manpower
to do that is there.
If n
I have been running a QPQ server for over 10 years and yesterday, for the
first time, I had something similar. The 'status' window was blacked out
with activity - never had anything like this before. However checks showed
that it did not slow requests from elsewhere. After a while I denied all
acce
Hi all,
I am on Apache 2.0.59 and the following form is hosted on the apache server
at htdocs. Users do a GET and get the form on the browser.
The simple HTML form looks like the following. It has 3 fields where users
enter data - data, phone and email. I want to write a HTTP (input?) filter
whic
-Original Message-
Bob wrote:
> Is there a valid reason based on your web server content that people from
> China would be accessing your site?
Yes, we have a very large quantity of pdfs in Chinese. Converting them
to html would presumably reduce the load but I don't think the manpower
t
Ambarish Mitra wrote:
Hi all,
I am on Apache 2.0.59 and the following form is hosted on the apache server
at htdocs. Users do a GET and get the form on the browser.
The simple HTML form looks like the following. It has 3 fields where users
enter data - data, phone and email. I want to write a H
Bob wrote:
If this activity continues for more that 10 days then it's not normal search
engine indexing but really a attack designed to generate a denial of service
situation for your server to stop the Chinese public from accessing you. The
Chinese government is known to do this sort of thing t
Hi,
I need help on configuring reverse proxy for RPC over HTTPS .. Iam
sending my present configuration. This configuration is working fine for
Outlook Web access , but RPC over HTTPS is not working . Please let me
know any changes required on configuration.
ServerName exchange.my
SETUP: I am running Windows XP home SP2. I downloaded Apache 2.0.59 and
then 2.2.4 (both using the windows32 bin with msi) to try to solve this
problem but it exists in both versions.
PROBLEM: In trying to enable the modules (specifically one dealing with
enabling PHP) I found that, instead of re
Don Denton wrote:
SETUP: I am running Windows XP home SP2. I downloaded Apache 2.0.59 and
then 2.2.4 (both using the windows32 bin with msi) to try to solve this
problem but it exists in both versions.
PROBLEM: In trying to enable the modules (specifically one dealing with
enabling PHP) I found
My PhP installation put the following into my httpd.conf file and it works for
me
#BEGIN PHP INSTALLER EDITS - REMOVE ONLY ON UNINSTALL
PHPIniDir "C:\\Program Files\\PHP\\"
LoadModule php5_module "C:\\Program Files\\PHP\\php5apache2_2.dll"
#END PHP INSTALLER EDITS - REMOVE ONLY ON UNINSTALL
#
Thanks Charles. It still isn't working, but I am going to go back and
double check all my paths. And in response to Dragon, If I need any other
help, I'll be sure to go to the PHP mail lists, but I thought that this was
a problem with apache sending out the wrong file types or something along
tho
On 6/21/07, Lokesh K B Reddy <[EMAIL PROTECTED]> wrote:
Hi,
I need help on configuring reverse proxy for RPC over HTTPS .. Iam sending
my present configuration. This configuration is working fine for Outlook Web
access , but RPC over HTTPS is not working . Please let me know any chang
Don Denton wrote:
Thanks Charles. It still isn't working, but I am going to go back
and double check all my paths. And in response to Dragon, If I need
any other help, I'll be sure to go to the PHP mail lists, but I
thought that this was a problem with apache sending out the wrong
file types
Hi,
Thanks for reply..
>>Firstly a remark about your config. You're having a virtual host proxy
to itself, or did you go to far in anonymizing >>>your config before you
posted it?
Same Apache server is serving lot of websites, I created virtual
host for lauching website..One mo
Bob wrote:
>
> If this is a real attack then you were found by rolling through a whole
> block of ip address looking for a open port 80.
> Change your apache server to use different port say 7788 instead of port 80
> and then use the free www.zoneedit.com dns service to redirect all FQDN to
> your
Don Denton wrote:
> SETUP: I am running Windows XP home SP2. I downloaded Apache 2.0.59 and
> then 2.2.4 (both using the windows32 bin with msi) to try to solve this
> problem but it exists in both versions.
>
> PROBLEM: In trying to enable the modules (specifically one dealing with
> enabling PH
I've got an oracle connect string that I need to pass to a
mod_python module. Currently I'm storing in httpd.conf, but
I'm not crazy about that coz I'm storing the password in the
connect string (format: name/[EMAIL PROTECTED]).
Is there a general way to hide the password, or another place
to pu
I prefer (if you start httpd as root)...
create httpd-private.conf as root, add the more confidental directives,
and in httpd.conf, simply
Include httpd-private.conf
Finally
$ chmod 600 httpd-private.conf
and all is well.
Mark Harrison wrote:
> I've got an oracle connect string that I need to
31 matches
Mail list logo
