Date: Sun, 5 Jan 2003 17:28:59 -0600 From: Anti <fearow@attbi.com> To: "Michael" <mike@unixhideout.com> Cc: freebsd-questions@freebsd.org Subject: Re: DOS ATTACK. Any Suggestions? Message-ID: <20030105172859.099b3a34.fearow@attbi.com> In-Reply-To: <2720.192.168.1.10.1041807203.squirrel@email.unixhideout.com> References: <2720.192.168.1.10.1041807203.squirrel@email.unixhideout.com>
next in thread | previous in thread | raw e-mail | index | archive | help
more an issue with apache than freebsd i think... perhaps mod_dosevasive (http://www.networkdweebs.com/stuff/security.html) could be of use? `Anti` On Sun, 5 Jan 2003 17:53:23 -0500 (EST) "Michael" <mike@unixhideout.com> wrote: > Sigh. I have had my website for well over a few years now. I am very upset > with the internet and where it is going due to the fact that their is so > many children on it whose parents dont know how to do their jobs and they > allow their children to perform dos attacks and god only knows what else > on daddys fast connection. The internet falls the perfect place for every > child/grownup who was/is pushed around in school, the unpopular kids no > one likes, the fat kid in class and the guys that cant even get laid to go > online and be "the man" behind the monitor. It is the only place they can > go and be "something in power" As lame as that is this must be how they > look at it in their sick mind. I have been dossed many times. Heres the > latest. I go to > > http://www.unixhideout.com/server-status which you can also look at if it > actually loads for you.. and i see around 80-100 of these 24/7 > > 1-0 50860 1/4/4 K 0.40 10 1134 0.0 0.00 0.00 24.67.253.203 > www.unixhideout.com GET / HTTP/1.1 > > all from different (at least 100 ips) over and over again bringing my > server to its knees. As i said previously i have been dossed by the > nobodys many times and it usually just goes away. This has been going on > since january first. I am running IPFW with very strict rules, on FreeBSD > 4.7 IPFW does me no good because i am allowing the port they are abusing > (80) due to the last DOS attack and my few hours research i have the > following options already in my rc.conf > > tcp_extensions="NO" > tcp_keepalive="YES" > tcp_restrict_rst="YES" > icmp_bmcastecho="NO" > icmp_drop_redirect="YES" > firewall_enable="YES" > firewall_script="/etc/rc.firewall" > firewall_type="custom" > firewall_quiet="NO" > firewall_logging_enable="YES" > log_in_vain="YES" > > Im sure you can notice some mistakes. I try to keep the research on this > lame shit to a minumum as it does not interest me to learn how to hurt > other people. Please help me get the best out of this immature child and > continue my website which is a complete gift to FreeBSD and its community, > not that you owe me a god damn thing but you understand what i mean.. I > have dealt with this many times. As soon as my site gets big and i have a > lot of users in irc, some little jealous network comes along and destroys > what i worked on. The last time this happened my ISP shut ME off because > it took out one of their facilities. > -- > Mike > mike@unixhideout.com > The unixhideout network, > http://www.unixhideout.com > need to get ahold of me? > finger mike@unixhideout.com > > > ----------------------------------------- > Free, secure and stable email from UnixHideout > "The UnixHideout network" > http://www.unixhideout.com/ > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030105172859.099b3a34.fearow>