Solved

stop floading http request

Posted on 2008-10-05
11
337 Views
Last Modified: 2013-12-13
since 5 weeks now ,some one is sending 100s of http request per second and caused the shut down of my forum several times.

is there a way to automaticaly stop this type of attacks?
or a php page that can blcok the ip?
any solution ...
0
Comment
Question by:uk1900
  • 4
  • 4
  • 2
  • +1
11 Comments
 
LVL 5

Expert Comment

by:chops_uk
ID: 22645837
You're experiencing DOS (Denial Of Service) . This should be stopped by a firewall configured to drop DOS packets.
What's the forum platform? there's code written for PHPBB which blocks spambots registering.. so doing this may help.. as it could block the IP addresses of other miscreants.. assuming you can't get the host to implement DOS protection for you...
0
 
LVL 5

Assisted Solution

by:chops_uk
chops_uk earned 150 total points
ID: 22645842
I should have mentioned that the DoS attack is *probably* quite low level.. so it's actually stopping your hardware responding, rather than stopping the forum software working, hence the need for DoS firewall hardware service in front of the Forum machine.
0
 
LVL 5

Expert Comment

by:chops_uk
ID: 22645846
0
 
LVL 17

Assisted Solution

by:houssam_ballout
houssam_ballout earned 100 total points
ID: 22645866
Well I agree with chops_uk , since the firewall helps you with that better than the code,
anyway , take a look at this page:
http://forums.digitalpoint.com/showthread.php?t=67344

0
 

Author Comment

by:uk1900
ID: 22645891
hi guys,
I have vbulletin forum running  in VPS. virtuozzo with plesk
about the  Firewall Setup:
---------------------
Firewall is not active now. To activate firewall choose one of firewall operation modes.
Select firewall mode
Normal firewall mode
Advanced firewall mode with default policy Accept
Advanced firewall mode with default policy Drop
----------------------
 
?
0
What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

 
LVL 5

Expert Comment

by:chops_uk
ID: 22645914
I'm not sure what the firewall's like..
as you currently have no firewall, you can use either option:
1) activate the firewall and choose default accept .. then implement the DoS prevention
2) activate the firewall and choose default drop.. then open the ports which vbulletin needs (probably 80 for http and maybe ftp).. then then implement the DoS prevention.

2 would be more secure, but more work.. but at least you'd be more secure :)
0
 
LVL 9

Accepted Solution

by:
khaledf earned 250 total points
ID: 22645966
I would recommend requesting from you hosting company to install and configure mod_evasive for this kind of attack.
it will block that ip when it accedes the minimum requests per second.
0
 
LVL 9

Expert Comment

by:khaledf
ID: 22645970
0
 

Author Comment

by:uk1900
ID: 22645989

I have no idea how I can implement the DoS prevention!
I clicked on add rule: I got what u see in the: Snippet u can see what
Add Rule   

 
 

General Settings 

Name*  

Policy Accept Drop Reject 

Protocol tcp udp 

Source Address and Netmask  

Source Port or Port Range  

Destination Address and Netmask  

Destination Port or Port Range  

Enable  

Chain Input Output Forward 

The rule's position in the chain 

 

Open in new window

0
 

Author Comment

by:uk1900
ID: 22646171
thank you khaledf,
I will check that
0
 

Author Comment

by:uk1900
ID: 22650605
any one know how to install mod_evasive ?
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Introduction and Prerequisites This article describes methods for detecting whether a client browser accepts and returns HTTP cookies and whether the client browser runs JavaScript.  Most client browsers will, by default, be configured to use cooki…
This article discusses how to create an extensible mechanism for linked drop downs.
The viewer will learn how to create and use a small PHP class to apply a watermark to an image. This video shows the viewer the setup for the PHP watermark as well as important coding language. Continue to Part 2 to learn the core code used in creat…
The viewer will learn how to create a basic form using some HTML5 and PHP for later processing. Set up your basic HTML file. Open your form tag and set the method and action attributes.: (CODE) Set up your first few inputs one for the name and …

932 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now