Results 1 to 13 of 13
Thread: mod_dosevasive
-
10-21-2005, 04:27 AM #1Junior Guru
- Join Date
- Mar 2005
- Posts
- 196
mod_dosevasive
mod_dosevasive is blocking some gallery pictures loading, it gives sometimes 403 errors. How can that be fixed?
My current setting are:
<IfModule mod_dosevasive.c>
DOSHashTableSize 3097
DOSPageCount 5
DOSSiteCount 100
DOSPageInterval 2
DOSSiteInterval 2
DOSBlockingPeriod 600
</IfModule>
-
10-21-2005, 05:17 AM #2Web Hosting Master
- Join Date
- Apr 2004
- Location
- San Jose
- Posts
- 902
Can you show the log entry from /var/log/messages*
That should tell you why it's being blocked.
I just saw someone with vBulletin getting blocks when there are two redirects to the same page after a posting. That triggered mod_dosevasive when they come to the same child. (KeepAlive made sure of that.)Specializing in MySQL and website tuning for high traffic sites. cmwsci.com/
-
10-21-2005, 05:49 AM #3Junior Guru
- Join Date
- Mar 2005
- Posts
- 196
Originally posted by sailorFred
Can you show the log entry from /var/log/messages*
That should tell you why it's being blocked.
I just saw someone with vBulletin getting blocks when there are two redirects to the same page after a posting. That triggered mod_dosevasive when they come to the same child. (KeepAlive made sure of that.)
[Fri Oct 21 12:46:38 2005] [error] [client xxxxxxx] client denied by server configuration: /home/xxxxxx/public_html/xxxx/index.php
[Fri Oct 21 12:46:38 2005] [error] [client xxxxxxxx] File does not exist: /home/xxxxxx/public_html/403.shtml
-
10-21-2005, 05:51 AM #4Junior Guru
- Join Date
- Mar 2005
- Posts
- 196
By the way, always 20 first loaded pictures appear.
-
10-21-2005, 06:36 AM #5Web Hosting Master
- Join Date
- Apr 2004
- Location
- San Jose
- Posts
- 902
Here's a page describing what the settings mean:
http://www.theserverpages.com/20303/22/
If you're supplying pictures for galleries, you probably want to increase your DOSSiteCount to something that's reasonable for the number of pictures on a page. You're showing 100 already, which seems enough.
You have restarted Apache, I presume, to get the new values?Specializing in MySQL and website tuning for high traffic sites. cmwsci.com/
-
10-21-2005, 06:42 AM #6Junior Guru
- Join Date
- Mar 2005
- Posts
- 196
Originally posted by sailorFred
Here's a page describing what the settings mean:
http://www.theserverpages.com/20303/22/
If you're supplying pictures for galleries, you probably want to increase your DOSSiteCount to something that's reasonable for the number of pictures on a page. You're showing 100 already, which seems enough.
You have restarted Apache, I presume, to get the new values?
-
10-21-2005, 06:44 AM #7Web Hosting Master
- Join Date
- Apr 2004
- Location
- San Jose
- Posts
- 902
Try disabling mod_dosevasive to verify that this is problem. It might be the bandwidth limiter, or something similar.
Specializing in MySQL and website tuning for high traffic sites. cmwsci.com/
-
10-21-2005, 02:00 PM #8Web Hosting Master
- Join Date
- Jan 2005
- Posts
- 2,203
Same problem on my forums when the browsers opens many connections to download the images, mod_dosevasive was the culprit. After I removed, it no more 403 errors.
-
10-24-2005, 12:24 AM #9Junior Guru
- Join Date
- Mar 2005
- Posts
- 196
Originally posted by ANewDay
Same problem on my forums when the browsers opens many connections to download the images, mod_dosevasive was the culprit. After I removed, it no more 403 errors.
And how can it be removed safely?
-
10-25-2005, 03:42 AM #10Junior Guru Wannabe
- Join Date
- Apr 2004
- Posts
- 44
Originally posted by sailorFred
Can you show the log entry from /var/log/messages*
That should tell you why it's being blocked.
I just saw someone with vBulletin getting blocks when there are two redirects to the same page after a posting. That triggered mod_dosevasive when they come to the same child. (KeepAlive made sure of that.)
Any solutions?
For now, we've loosened dosevasive with:
<IfModule mod_dosevasive.c>
DOSHashTableSize 3097
DOSPageCount 15
DOSSiteCount 100
DOSPageInterval 1
DOSSiteInterval 1
DOSBlockingPeriod 2
</IfModule>
Don't know if that'll work yet, till we get complaints. Also don't know if that's enough protection against dos.
-
10-25-2005, 04:34 AM #11Web Hosting Master
- Join Date
- Apr 2004
- Location
- San Jose
- Posts
- 902
I upped the DOSPageCount to 4. No complaints since then.
Specializing in MySQL and website tuning for high traffic sites. cmwsci.com/
-
10-25-2005, 08:15 AM #12Junior Guru Wannabe
- Join Date
- Apr 2004
- Posts
- 44
Originally posted by sailorFred
I upped the DOSPageCount to 4. No complaints since then.
I guess I'll have to try 5 and see. I'd like it as low as possible w/o messing everything up for real users.
Thanks for letting me know!
-
10-25-2005, 03:06 PM #13Web Hosting Master
- Join Date
- Apr 2004
- Location
- San Jose
- Posts
- 902
The behavior I saw from the default CPanel installation is 2, as it is documented at www.theserverpages.com/20303/22/
Specializing in MySQL and website tuning for high traffic sites. cmwsci.com/