Results 1 to 5 of 5
  1. #1

    Is this DOSEvasive Configuration Ok?

    Will this configuration protect effectively against DoS (not DDoS really I know), in that it'll block 'bad' people semi-reliably, but at the same time let legitimate users in (I know nothing is flawless).
    Code:
    <IfModule dosevasive22_module.so>
           DOSHashTableSize    1024
           DOSPageCount        2
           DOSSiteCount        20
           DOSPageInterval     1
           DOSSiteInterval     1
           DOSBlockingPeriod   500
    </IfModule>
    The site is http://silicoxvalley.com if it makes much difference by the way.

    Thanks, Ed
    My Site is Silicox Valley Technology
    Follow me on Twitter, @person287

  2. #2
    Anybody know?
    My Site is Silicox Valley Technology
    Follow me on Twitter, @person287

  3. #3
    Join Date
    Mar 2003
    Location
    Canada
    Posts
    9,072
    Truth be told, mod_evasive is very ineffective and doesn't seem to work with newer versions of Apache, or at least ones with FastCGI. In theory the software is supposed to stop a single user from flooding a website or an overly aggressive bot, but in reality, most REAL DoS attacks against a website will not be stopped.
    RACK911 Labs | Penetration Testing | https://www.RACK911Labs.ca

    www.HostingSecList.com - Security Notices for the Hosting Community.

  4. #4
    Do you know of any better ones, or is it really just the best of a bad bunch due to limitations of technology?
    My Site is Silicox Valley Technology
    Follow me on Twitter, @person287

  5. #5
    Join Date
    Mar 2003
    Location
    Canada
    Posts
    9,072
    Quote Originally Posted by person287 View Post
    Do you know of any better ones, or is it really just the best of a bad bunch due to limitations of technology?
    I've also been searching for something better that works with Apache to no avail. Some providers have switched to LiteSpeed and Nginx due to their smaller footprint; They tend to handle DoS attacks much, much better than Apache:

    http://litespeedtech.com/
    http://nginx.org/
    RACK911 Labs | Penetration Testing | https://www.RACK911Labs.ca

    www.HostingSecList.com - Security Notices for the Hosting Community.

Similar Threads

  1. What configuration is better
    By madrigueragdl in forum Dedicated Server
    Replies: 21
    Last Post: 08-02-2010, 02:49 PM
  2. I could use a little help with configuration
    By Tigiot in forum VPS Hosting
    Replies: 7
    Last Post: 08-15-2009, 12:05 AM
  3. Which configuration is better?
    By dotcomUNDERGROUND in forum Dedicated Server
    Replies: 7
    Last Post: 11-29-2006, 04:58 AM
  4. dosevasive- how to detect/ unblock certain IPs?
    By GeorgeC in forum Hosting Security and Technology
    Replies: 7
    Last Post: 02-17-2005, 11:04 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •