DIYのLinux DoSの刻み目-あなたのHOWTOの限界あなたのWebサーバへのTCPの関係の最大数!
私は呼ばれるずっと次の本を読んでいる Linuxサーバーは切り刻む、多くの方法を示すあなたのLinuxサーバーを切り刻むことができる従ってあなたのサーバーは死なない。
これは実際に私達が前にちょうどDoSの攻撃を約5分有したので働く。 (それは私達がDoSの攻撃をこのごろますます得ているようにようである。 参照できる DDOSは原稿のまた空気を抜く)
私が本からの私の浴室部屋の先週について読んだ私はDoSの攻撃者が私の貴重なクォードCPUに専用サーバを低下させることを防ぐのにちょうどそれを使用した刻み目#47はここにあり。
次の命令を入れれば24の関係が見られた後毎秒12の関係にあなたのサーバーへのTCPの関係の数を限る。 (It means that no matter what, your server will not try to serve more than 12 visitors during one second of period when your server gets digged, farked, stumbled, or whatever)
iptables -t nat -N syn-flood
iptables -t nat -A syn-flood -m limit ―limit 12/s ―limit-burst 24 -j RETURN
iptables -t nat -A syn-flood -j DROP
iptables -t nat -A PREROUTING -i $EXT_IFACE -d $DEST_IP -p tcp –syn -j syn-flood
I think you can increase the values steadily if your server can handle more. But it seems to have brought our server load from 33.00 somethin’ to under 1.0. Yey!
If you are a hacker, sorry dude. You are gonna have to try a little harder hacking Zedomax since we are hackers too.
P.S. You know what I try to do when I find out where the hackers are coming from, I do a DoS attack back on them. This usually pisses them off enough to DoS me more but I kinda enjoy the battle so bring it on! :p
(No Ratings Yet)
Loading ...If you like this post then please subscribe to my full feed RSS. You can also subscribe by Email.
Got a new hack, DIY, howto, or gadget? Tip us here.
Search for a Hack:
Bookmark It!
|Digg it |SiteHoppin |Wagg It |
Related Posts
- Hacking and Network Security
- DIY HACK - HOWTO Make Windows XP Look Like Fedora Linux!
- DIY - Linux FTP how-to
- list of Linux HOWTOs
- PS3 SIXAXIS HACK - HOWTO use your SixAxis Controller with Linux!
TrackBack
Email this to a Friend
Email This Post
Wow! What an attitude! I would love to shake hands with you. Fix the cockroaches. Guys like me depend on fellows like you to do such things. All the best. I hope that you wipe them out completely!
yes, i can’t wipe them out completely but i can limit their strategies to bring sites down… :p
Hi, any idea why Im getting this error message when I try your approach:
srv098:~$ iptables -t nat -A syn-flood -m limit -limit 12/s -limit-burst 24 -j RETURN
iptables v1.3.6: Unknown arg `limit’
Try `iptables -h’ or ‘iptables –help’ for more information.
THANKS in advance !!!
Try this instead, my blog post looks like it won’t let you copy two dashes:
iptables -t nat -A syn-flood -m limit –limit 12/s –limit-burst 24 -j RETURN
and you can see the instructions better on our wiki:
http://zedomax.com/wiki/index.php/Linux/Unix_HOWTOs#HOWTO_Limit_number_of_connections_to_your_server_to_fight_Denial_of_Service_attacks
THANKS for the fast reply. However, now I got:
srv098:~$ iptables -t nat -A syn-flood -m limit –limit 12/s –limit-burst 24 -j RETURN
iptables: Invalid argument
Hey there,
Try entering the first line first:
iptables -t nat -N syn-flood
You have enter all the lines one at a time and it will work~
Let me know if you need more help.
I did the first one before the problematic one ofcourse. However, not Im getting:
srv098:~$ iptables -t nat -N syn-flood
iptables: Chain already exists
No matter what I do Im either getting:
iptables: Invalid argument
or
iptables: Chain already exists
:(((
Oh you know what, I think it’s already working then, it means you already set it.
That would be awesome!
Is there a way to check it or undo it? (just to know)
THANKS!
I think when you reboot your server, this setting gets resetted. You can put it in a file somewhere so it starts when your server reboots, I forgot how to do this…
That is some crazy stuf and could be useful. I have yet to need such information though. knock on wood.