Denial of Service, normally called the DDoS attack, is one among the largest threats for your servers security. in a DoS attack, attackers with destructive intentions attempt overloading the server with requests more than the server will handle. The attacker is ready to seek out holes within the security of the server and exploit it to hold out the attack. Please check the subsequent to understand more about DoS Attack .Throughout the initial stages of the attack, the attacker try infecting computing machines with malware or botnets, once a adequate range of machines get infected, a co-ordinated attack is launched automatically over your Web Hosting server, wherein, simultaneous requests are sent to your server. These requests are often within the multiples of thousand.<\/p>\n
How to avoid DoS attacks Using mod_evasive ?
\nmod_evasive are often associate efficient methodology of avoiding a DoS attack. it’s one among the modules available for an Apache HTTP server, that comes at no cost.<\/p>\n
Note:\u00a0<\/strong>Before proceeding with the installation, it is important that the server is running Apache.<\/p>\n Step i<\/strong>\u00a0: You are required to login to the server via SSH as root<\/p>\n Step ii<\/strong>\u00a0: Ensure that the Apache is updated with the latest development files. Use the below command to install http-devel package on your server<\/p>\n yum install httpd-devel<\/p><\/blockquote>\n Step iii<\/strong>\u00a0: Using the following command, you must download the updated version :<\/p>\n wget\u00a0http:\/\/www.zdziarski.com\/blog\/wp-content\/uploads\/2010\/02\/mod_evasive_1.10.1.tar.gz<\/p><\/blockquote>\n Step iv<\/strong>\u00a0: Then use the below command for extracting the archived files:<\/p>\n tar xvzf mod_evasive_1.10.1.tar.gz mod_evasive\/<\/p><\/blockquote>\n Step v<\/strong>\u00a0: Then compile the module using the following command :<\/p>\n \/usr\/sbin\/apxs -cia \/usr\/src\/mod_evasive\/mod_evasive20.c<\/p><\/blockquote>\n Step vi<\/strong>\u00a0: For activating the module, fire the below command<\/p>\n chmod 755 \/usr\/lib\/httpd\/modules\/mod_evasive20.so<\/p><\/blockquote>\n Step vii<\/strong>\u00a0: You must then restart Apache<\/p>\n \/etc\/init.d\/httpd restart<\/p><\/blockquote>\n Step viii<\/strong>\u00a0: Ensure that it has been loaded correctly<\/p>\n grep -i evasive \/etc\/httpd\/conf\/httpd.conf<\/p><\/blockquote>\n The result should be :\u00a0LoadModule evasive20_module \/usr\/lib\/httpd\/modules\/mod_evasive20.so<\/em><\/p>\n Run :\u00a0php -r \u2018phpinfo();\u2019 | grep -i evasive<\/em><\/p><\/blockquote>\n The mod_evasive should get listed<\/p>\n Step ix :<\/strong>\u00a0Now the Apache conf file:\u00a0\/etc\/httpd\/conf\/httpd.conf\u00a0<\/em>should be updated with adding configuration rules<\/em><\/p>\n <IfModule mod_evasive20.c><\/em> You can also go through the documentation for determining the best configuration settings for each. This should help you avoid a DoS attack on your server.<\/p>\n","protected":false},"excerpt":{"rendered":" Denial of Service, normally called the DDoS attack, is one among the largest threats for your servers security. in a DoS attack, attackers with destructive intentions attempt overloading the server with requests more than the server will handle. The attacker is ready to seek out holes within the security of the server and exploit it […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[22],"tags":[],"class_list":["post-2280","post","type-post","status-publish","format-standard","hentry","category-security"],"yoast_head":"\n
\nDOSHashTableSize 3097<\/em>
\nDOSPageCount 6<\/em>
\nDOSSiteCount 100<\/em>
\nDOSPageInterval 2<\/em>
\nDOSSiteInterval 2<\/em>
\nDOSBlockingPeriod 600<\/em>
\n<\/IfModule><\/em><\/p><\/blockquote>\n