How would I go about installing mod_dosevasive ? when I searched and tried to install it, it did not work. could you guys tell me how to do it step by step?
I have apache 1.3.29
Printable View
How would I go about installing mod_dosevasive ? when I searched and tried to install it, it did not work. could you guys tell me how to do it step by step?
I have apache 1.3.29
As far as I remember it was just a case of decompressing the tarball and running:
/usr/local/apache/bin/apxs -iac mod_dosevasive.c
This is on a cpanel server. Also, I assume you checked the README file in the archive (it contains detailed installation instructions)?
where can I download mod_security from, it is saying
gcc: mod_dosevasive.c: No such file or directory
Top result on google: http://www.nuclearelephant.com/projects/dosevasive/ ;)
I did wget and got that file. Then I tried what you said, and I got this
gcc -DLINUX=22 -I/usr/include/gdbm -DMOD_SSL=208116 -DUSE_HSREGEX -DEAPI -fpic -DSHARED_MODULE -I/usr/local/apache/include -c mod_dosevasive.c
gcc: mod_dosevasive.c: No such file or directory
gcc: no input files
apxs:Break: Command failed with rc=1
that should get u startedQuote:
http://www.nuclearelephant.com/proje...ive.1.8.tar.gz
tar -zxvf mod_dosevasive.1.8.tar.gz
cd mod_dosevasive*
/usr/local/apache/bin/apxs -iac mod_dosevasive.c
I have not installed this yet as I read on the readme file that this has conflicts with FrontPage Extensions.
Check this thread...
http://www.webhostingtalk.com/showth...hreadid=232311
is it possible to uninstall? and if so how?( just incase I run into the front page problem)
like some modules, you would need to edit your httpd.conf, removing references to it then restart apache
I installed it, now none of my sites are showing :(
how can I restore it to my httpd.conf.default ?
to remove it from your httpd.conf
su -
to root in SSH and
pico -w /etc/httpd/conf/httpd.conf
Then find all lines that have mod_dosevasive and delete them
Also fine the <if module> section for dos_evasive and delete that as well.
You will then have to restarts the httpd
service httpd restart
should work.
I think that's it and your FP sites should show again.
here is my how-to
http://forums.servermatrix.com/viewtopic.html?t=4330
i dont think this mod_dosevasive work with a strong flood . mod_dosevasive work in apache , but a strong flood in port 80 will make apache die before mod_dosevasive can detect it was a flood . :)
For anti dos or flood , the best way i think is stop them from a "gate of computer " , use some iptables script to limit packer per second and auto drop which ip send lots of packet to port 80 before it can effect to apache .
Last time i got a heavy syn flood , from over 30 ips adress and apache + mod_dosevasive died in 1 minute after a flood started .