Prevent and Stop DoS or DDoS Attacks on Web Server (D)DOS-Deflate预防和阻止DOS或DDoS攻击Web服务器(四) DOS的deflate
All web servers been connected to the Internet subjected to DoS (Denial of Service) or DDoS (Distrubuted Denial of Service) attacks in some kind or another, where hackers or attackers launch large amount connections consistently and persistently to the server, and in advanced stage, distributed from multiple IP addresses or sources, in the hope to bring down the server or use up all network bandwidth and system resources to deny web pages serving or website not responding to legitimate visitors.所有Web服务器被连接到互联网受到DOS的(拒绝服务)或分布式拒绝服务攻击(分布式拒绝服务)攻击,在一些这样或那样的,如果黑客或攻击者发射了大量的联系,始终坚持到服务器,并在高级阶段,分布在多个IP地址或来源,在希望把服务器或使用所有的网络带宽和系统资源,以否认网页服务或网站没有回应的合法旅客。
There are plenty of ways to prevent, stop, fight and kill off DDoS attack, such as using firewall.有很多途径来预防,制止,打击和杀死DDoS攻击,例如使用防火墙。 A low cost, and probably free method is by using software based firewall or filtering service.一,成本低,可能和自由的方法是使用基于软件的防火墙或过滤服务。 (D)DoS-Deflate is a free open source Unix/Linux script by MediaLayer that automatically mitigate (D)DoS attacks. (四) DOS的deflate是一个自由开放源码的Unix / Linux脚本medialayer自动减轻(四) DoS攻击。 It claims to be the best, free, open source solution to protect servers against some of the most excruciating DDoS attacks.它声称是最好的,免费,自由,开放原始码解决方案来保护服务器免遭一些最痛苦的DDoS攻击。
(D)DoS-Deflate (四) DOS的deflate script basically monitors and tracks the IP addresses are sending and establishing large amount of TCP network connections such as mass emailing, DoS pings, HTTP requests) by using “netstat” command, which is the symptom of a denial of service attack.脚本基本上是监测和跟踪IP地址发送和建立大量的TCP网络连接,如大规模电子邮件,多坪, HTTP请求)用“ netstat ”命令,这是症状的拒绝服务攻击。 When it detects number of connections from a single node that exceeds certain preset limit, the script will automatically uses APF or IPTABLES to ban and block the IPs.当它侦测到的连接数从一个单一的节点超过一定的预设上限,该脚本将自动使用的APF或iptables的禁止和阻挠的IPS 。 Depending on the configuration, the banned IP addresses would be unbanned using APF or IPTABLES (only works on APF v 0.96 or better).视乎有关的配置,禁止IP地址将unbanned使用的APF或iptables的(只适用于武装警察部队v 0.96或更高) 。
Installation and setup of (D)DOS-Deflate on the server is extremely easy.安装和设置的(四) DOS的deflate在服务器上是非常容易的。 Simply login as root by open SSH secure shell access to the server, and run the the following commands one by one:简单地以root登入,透过公开的SSH安全shell访问服务器,并运行以下命令,一个又一个:
wget http://www.inetbase.com/scripts/ddos/install.sh wget http://www.inetbase.com/scripts/ddos/install.sh
chmod 0700 install.sh chmod 0700 install.sh
./install.sh 。 / install.sh
To uninstall the (D)DOS-Deflate, run the following commands one by one instead:卸载(四) DOS的deflate ,运行下面的命令了一个又一个,而是:
wget http://www.inetbase.com/scripts/ddos/uninstall.ddos wget http://www.inetbase.com/scripts/ddos/uninstall.ddos
chmod 0700 uninstall.ddos chmod 0700 uninstall.ddos
./uninstall.ddos 。 / uninstall.ddos
The configuration file for (D)DOS-Deflate is ddos.conf , and by default it will have the following values:配置文件(四) DOS的deflate是ddos.conf ,默认情况下,将会有以下值:
FREQ=1频率= 1
NO_OF_CONNECTIONS=50 no_of_connections = 50
APF_BAN=1 apf_ban = 1
KILL=1杀人= 1
EMAIL_TO=”root” email_to = “根”
BAN_PERIOD=600 ban_period = 600
Users can change any of these settings to suit the different need or usage pattern of different servers.用户可以更改这些设置,以适应不同的需要或使用模式不同的服务器。 It’s also possible to whitelist and permanently unblock (never ban) IP addresses by listing them in /usr/local/ddos/ignore.ip.list file.它也可能白名单和永久解除封锁(从来没有禁止)的IP地址列出他们在/ usr / local /的DDoS / ignore.ip.list档案。 If you plan to execute and run the script interactively, users can set KILL=0 so that any bad IPs detected are not banned.如果您计划执行和运行该脚本交互方式,用户可以设置杀= 0 ,使任何坏的IPS检测所不禁止的。
IMPORTANT : This is a machine translated page which is provided "as is" without warranty. 重要说明 :这是一个机器翻译网页是“按原样”提供的担保。 Machine translation may be difficult to understand.机器翻译可能很难理解。 Please refer to请参阅 original English article原来的英语文章 whenever possible.只要有可能。
Share and contribute or get technical support and help at分享和贡献,或取得技术的支持和帮助,在 My Digital Life Forums 我的数字生活论坛 . 。
Related Articles相关文章
- Install mod_evasive for Apache to Prevent DDOS Attacks安装mod_evasive的Apache ,以防止DDoS攻击
- Limit Maximum TCP Connections to Web Servers限制的最大TCP连接到Web服务器
- How to Find and Check Number of Connections to a Server如何查找和支票号码连接到服务器
- Acunetix Web Vulnerability Scanner Reviews acunetix网络漏洞扫描器评语
- Reduce Server Load Using Akismet to Automatically Discard Spam Comments on Posts Older than A Month减少服务器负载使用akismet自动丢弃垃圾邮件的评论对职位的老年人超过1个月
- How to Check if Telnet Is Running on a Server如何检查,如果Telnet是运行在服务器上
- Best and Worst Microsoft Products最佳和最差的Microsoft产品
- Reset the Root Password of MySQL Server重置root密码的MySQL服务器
- TCP/IP Has Reached the Security Limit Imposed on the Number of Concurrent TCP Connect Attempts Error on Windows Vista TCP / IP协议已达到了安全限制加诸于大量并行的TCP连接尝试错误的Windows Vista
- Installing Web Server in FreeBSD 6.0 with Apache 2.2, MySQL 5.0 and PHP 5 - Part 4安装Web服务器在FreeBSD的6.0与2.2的Apache , MySQL 5.0的和PHP 5 -第4部分
