Security Basics mailing list archives
RE: blocking multiple hosts at once (hosts from an apache log)
From: "Jurriaans, Marco" <M.Jurriaans () imd nl>
Date: Thu, 10 Dec 2009 21:52:58 +0100
Hello Emmanuel, If you don't want or expect any genuine traffic from china perhapse you can block the entire Apnic ip-space? http://www.iana.org/assignments/ipv4-address-space/ Regrds,Marco -----Oorspronkelijk bericht----- Van: listbounce () securityfocus com [mailto:listbounce () securityfocus com] Namens Emmanuel Oga Verzonden: zondag 6 december 2009 8:28 Aan: security-basics () securityfocus com Onderwerp: blocking multiple hosts at once (hosts from an apache log) I have a problem I don't even know how to google for with the proper terms. I'm using a VPS to host some http pages, my bandwith per month is fixed at about 2gb total. I leaved apache running, without anything but the hello world page, for about 15 days. When I came back, I learned 1.5GB or so of my bandwith was drained by requests from a lot of different hosts (most of them from china). All the bandwith was sucked by serving 404 pages, and this was only from the apache log, I'm not sure about the connections to other ports My question is, how can I block these and other potential sources of "bad traffic" ? (or even all connections from china) Is there any tool to automate this? Which firewall should I be using on my server? Googling around I found these dnsbl black lists, these are supposed to be for spam filtering, but would it make sense to use them to block hosts trying to connect to my server? Thanks ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------ ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
Current thread:
- blocking multiple hosts at once (hosts from an apache log) Emmanuel Oga (Dec 10)
- Re: blocking multiple hosts at once (hosts from an apache log) Pascal Heraud (Dec 11)
- RE: blocking multiple hosts at once (hosts from an apache log) Jurriaans, Marco (Dec 11)