Questions tagged [ddos]
A distributed denial of service attack (DDoS) occurs when multiple systems flood the bandwidth or resources of a targeted system, usually one or more web servers. These systems are compromised by attackers using a variety of methods.
630
questions
0
votes
1
answer
98
views
Apache HTTP server under DDoS attack [closed]
One of the servers has been under attack for four weeks. First the attack was weak, but now it is aggressive after I started fighting him.
It consumes CPU resources to keep starting the Apache server ...
0
votes
0
answers
73
views
Apache crashes causing 504s
I have a Centos 7 server on which I installed apache 2.4.58, it has been crashing for 2 days after a short time that it is online, I keep stopping the apache service (systemctl stop httpd.service) and ...
0
votes
0
answers
74
views
Testing anti-ddos iptables rules on loopback address
I am setting up anti-ddos iptables rules on a kali linux vm for a class. I have tried two methods, one being just the iptables -A INPUT -p tcp --syn -m limit --limit 1/s --limit-burst 3 -j RETURN rule ...
0
votes
1
answer
111
views
What are the options for Layer 7 DDoS protection of AWS resources
The following are my assumptions based on AWS docs. It's only because the docs do not precisely address my questions that I'm here asking.
AWS WAF (whether used directly or via Shield Advanced) is ...
- 129
0
votes
0
answers
41
views
Navigating Hetzner Server Security: Looking for Answers [duplicate]
We are managing a dedicated server with Hetzner. Our setup includes a public server (Nginx reverse proxy) connected to around 10 upstream servers.
Recently, our server was compromised through an ...
0
votes
1
answer
298
views
Can't stop attack on nginx server
I'm currently struggling with my Digitalocean droplet (Ubuntu 22.10) which is under some sort of attack (maybe DDOS). The server hosts a containerized application that runs on nginx.
Every time I ...
0
votes
1
answer
53
views
I keep receiving login attempt to my server until it gets down
I have a Centos7 server and after years of correctly working, yesterday it started to being unreachable (The server apps I have there were not rechable, the SSH connection gave timeout, etc but the ...
- 103
0
votes
2
answers
239
views
What do these logs mean? Is someone attempting to hack into my server via ssh?
Today I woke up to a a very large number of logs for ssh, and I can only assume someone is trying to gain access to my linux server.
Here are the logs
-- Logs begin at Wed 2023-08-02 08:59:10 EEST, ...
- 111
1
vote
5
answers
248
views
Tips for coping with a surprisingly high rate of "botnet" sshd login failures?
I just set up 2 new Debian 12 VPS's at once.
One of them worked fine; the other, I appeared to have intermittent connectivity to. I even got as far as writing half of a support ticket, thinking it ...
- 125
0
votes
2
answers
473
views
Mitigation of a Slow Loris Attack (slow HTTP request DDoS)
I am being targeted by a slow loris attack for several weeks now (during the worst period of the year [black friday / cyber monday]).
This is an advanced DDoS attack where I get a lot of slow HTTP ...
0
votes
0
answers
74
views
How can nft block excessive 443 access?
I'm having a hard time configuring nft to fight floods on 443/TCP.
I gave up on iptables and module recent, and now I'm testing nft with its man page sample code, as a lab.
So, I'm sending all source ...
0
votes
0
answers
49
views
necesito configurar una regla de firewall en pfsense
chicos estoy haciendo una simulación de ataque DDoS utilizando máquinas virtuales (virtual box) ya logré hacer el ataque, sin embargo, necesito configurar pfsense para poder proteger mi servidor web ...
1
vote
1
answer
413
views
Is Apache mod_evasive really worthful
I read an article saying that apache mod_evasive is an old outdated module and does not real protection against Dos attack. After testing a scenario of load requests to a apache webpage it seems like ...
- 11
2
votes
0
answers
829
views
Can any help me to understand HAProxy DDoS attack protection configuration?
I'm using HAP on and off for a bit now and now I'm trying confgure DDoS protection per frontend, to block a connection for 5 mints, if it receives more than 200 requests per second from the same ...
- 479
0
votes
0
answers
34
views
Detect website attack by using azure sentinel serviceazure
I have a website which builds on AKS. I'm getting DDoS and other kind of attacks in website. In order to take prevention against such attacks, I'm planning to use the tool Azure Sentinel service.
...
