You could modify the RequestDumpFilter to only dump the request for that ip address.
Regards, Dave Sent from my iPhone On Nov 7, 2010, at 12:28 PM, Assaf <[email protected]> wrote: > A filter to block is good. But then I would not be able to see him doing it > again and then find out the issue. > > Assaf > > > ----- Original Message ---- > From: "Caldarale, Charles R" <[email protected]> > To: Tomcat Users List <[email protected]> > Sent: Sun, November 7, 2010 6:48:20 PM > Subject: RE: Malicious host is crashing my server > >> From: Assaf [mailto:[email protected]] >> Subject: Malicious host is crashing my server > >> what can I do to better protect? > > As a temporary preventive measure, you can disable access from this > particular > IP address by configuring the RemoteAddrValve in server.xml: > > <Valve className="org.apache.catalina.valves.RemoteAddrValve" > deny="79\.177\.23\.102"/> > > That should give you some time to work out the real fix. > > - Chuck > > > THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY > MATERIAL and is thus for use only by the intended recipient. If you received > this in error, please contact the sender and delete the e-mail and its > attachments from all computers. > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [email protected] > For additional commands, e-mail: [email protected] > > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [email protected] > For additional commands, e-mail: [email protected] > --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
