On Mon, Jul 29, 2013 at 11:25:26PM -0700, Grant wrote: > ModSecurity looks good and I think it works with nginx as well as > apache. Is everyone who isn't running OSSEC HIDS or ModSecurity > vulnerable to a single client requesting too many pages and > interrupting the service?
Not everyone, no. There are other alternatives such as mod_limitipconn and mod_reqtimeout to help with such problems as well. Pete -- Openstrike - improving business through open source http://www.openstrike.co.uk/ or call 01722 770036 / 07092 020107
pgpHpyNWw3F78.pgp
Description: PGP signature
