How to protect apache againg bench marking attack ?

How to protect apache againg bench marking attack ?

am 12.01.2010 10:04:16 von joydeep

Hello all,

I am dared to see what "ab" (apache benchmarking too) can do against an
apache server. I have used the following against my server to check
call handling

` ` `
ab -n 1000 -c 20 http:///index.php?no_cache=1
` ` `


and it simply bottle neck the target apache server. the target server
is also over loaded with huge cpu load. Is there any precaution to
prevent this ? the target system is already protected with
mod_security.

Thanks

--
জয়দীপ বক্সী


------------------------------------------------------------ ---------
The official User-To-User support forum of the Apache HTTP Server Project.
See for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: How to protect apache againg bench marking attack ?

am 12.01.2010 11:36:09 von Nicholas Sherlock

On 12/01/2010 10:04 p.m., J. Bakshi wrote:
> Hello all,
>
> I am dared to see what "ab" (apache benchmarking too) can do against an
> apache server. I have used the following against my server to check
> call handling
>
> ` ` `
> ab -n 1000 -c 20 http:///index.php?no_cache=1
> ` ` `
>
>
> and it simply bottle neck the target apache server. the target server
> is also over loaded with huge cpu load. Is there any precaution to
> prevent this ? the target system is already protected with
> mod_security.

A quick Google turned this up:

http://www.commandlineisking.com/2009/05/rate-limiting-and-d os-protection-in-mod.html

Sounds very promising.

Cheers,
Nicholas Sherlock


------------------------------------------------------------ ---------
The official User-To-User support forum of the Apache HTTP Server Project.
See for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: Re: How to protect apache againg bench markingattack ?

am 12.01.2010 11:49:23 von joydeep

Nicholas Sherlock wrote:
> On 12/01/2010 10:04 p.m., J. Bakshi wrote:
>> Hello all,
>>
>> I am dared to see what "ab" (apache benchmarking too) can do against an
>> apache server. I have used the following against my server to check
>> call handling
>>
>> ` ` `
>> ab -n 1000 -c 20 http:///index.php?no_cache=1
>> ` ` `
>>
>>
>> and it simply bottle neck the target apache server. the target server
>> is also over loaded with huge cpu load. Is there any precaution to
>> prevent this ? the target system is already protected with
>> mod_security.
>
> A quick Google turned this up:
>
> http://www.commandlineisking.com/2009/05/rate-limiting-and-d os-protection-in-mod.html
>
>
> Sounds very promising.
>
> Cheers,
> Nicholas Sherlock
>
>
> -

Thanks Nicholas,

I am trying to do the same with iptables only. Now a days iptables has
become very matured ; unfortunately have not got success yet .
I am trying to use hashlimit module to do the job.

regards

--
জয়দীপ বক্সী


------------------------------------------------------------ ---------
The official User-To-User support forum of the Apache HTTP Server Project.
See for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org