From owner-freebsd-security Mon Jul 29 2: 4:34 2002 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4AD2F37B400 for ; Mon, 29 Jul 2002 02:04:33 -0700 (PDT) Received: from odsource.com (12-220-120-77.client.insightBB.com [12.220.120.77]) by mx1.FreeBSD.org (Postfix) with ESMTP id A54C043E31 for ; Mon, 29 Jul 2002 02:04:32 -0700 (PDT) (envelope-from cyrus@odsource.com) Received: from odsource.com (localhost.odsource.com [127.0.0.1]) by odsource.com (8.12.5/8.11.6) with ESMTP id g6T94PcM047624 for ; Mon, 29 Jul 2002 05:04:26 -0400 (EDT) (envelope-from cyrus@odsource.com) Received: from localhost (cyrus@localhost) by odsource.com (8.12.5/8.12.5/Submit) with ESMTP id g6T94O7s047621 for ; Mon, 29 Jul 2002 05:04:25 -0400 (EDT) (envelope-from cyrus@odsource.com) Date: Mon, 29 Jul 2002 05:04:24 -0400 (EDT) From: Cyrus To: security@freebsd.org Subject: counter apache DoS attacks? Message-ID: <20020729050402.Q47608-100000@odsource.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Several people get their jollies off by having differnet servers infinitely request my main page thousands of times each therefore shooting my memory to poo and a lot of bandwidth. But my problem is the memory, not the bandwidth. I've looked through mod_throttle and such, not for me. Is there anything out there that can automatically detect and take an action for this type of attack? I dunno...like use route on the offenders IP and such. But for it to do this automatically. Anyone have any suggestions? Thanks in advance. -Cyrus To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message