-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Jaaz,
On 11/30/16 1:41 PM, Jaaz Portal wrote: > no it looks like dos, its dos > > i told you they dosed before bind server until we changed it to > other vendor, and later was scanning my host for apache > vulnerabilities Okay, let's just end this because obviously we've never going to get to the bottom of it. $ sudo iptables -A INPUT -s evil.host.pl -p tcp -m tcp -j DROP If they start coming at you from multiple IPs, use CIDR notation to block a whole subnet or whatever. Then when these "attacks" keep happening, you can block-out the whole world and you're application will never seize-up again. Review your configuration as Mark has suggested. If things are still not working, re-post with some actual data instead of just continuously posting "we are under attack, they dos bind, they dos mod_jk, they dos mod_proxy, what can we do?". Post. Logs. A single log line saying "server reached MaxRequestWorkers setting, consider raising the MaxRequestWorkers setting" is not an indication of any problem at all other than (lack of) accurate capacity planning. - -chris -----BEGIN PGP SIGNATURE----- Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQIcBAEBCAAGBQJYP4D1AAoJEBzwKT+lPKRYM6AP/2H+NEy27YU92ccllLOcnBsA V8RW+lGUjI/nxYqODw2B1cjE8zhnvtPRokdWIkLu0rQA4mg7p/3iLcBvdkZXMAkc k16aZZk+wbtTgsqK/2ORQ+5lfn3nd4QTk2tzB/z/jJnb+7vp6/qa7ESpZLXi7p3U TniCZz0gVrykF7NVS1Ospvw/JcEuuFeo4gMnXIupYOqF9jlI1y0HydVreIOCwgq6 fn/4UA9Ku6iGYuPE+k8AQvgbQ3ILaODVanUPTtLQstjfXpHUVGerakclUoxIOawH ZkzKledtsFzLByPFdI6/Y9+WXDAVtwCKVEFNWc2lHbogy6FC+5ozubRwC5MP8CO4 vicaCl7X+hDwDfxAZEZp1pbGrAd0G7YGgzTSKz5r61t9opv8k5HjWqGFiB2MFob1 jedbWvE40w/d54kuy+1MUAqjH5wM1Rw4hY7glALHiNVs1z5m83YFPYQhcbGdsi31 PxAA5OTVU8hggsbVcq9P5qjYOIQlLH+b2//K2eZK/4QV6u9u0jMuhMq/eeEy93JW HPb0Uri/TK+LajrJ3fsMTKhWZDS4VkCB+kkJ3BedKDnq1yQMqckJW5WKx4wgaZHA lxnDbxPjq4nZLI3odsG1eiU7/7yl32tPTy3b038iTacihl5hMdIFZXM5VkoKvdi8 AGidy4ZhsZ920ZAZQqJS =dqVz -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
