Quote:
Originally posted by Scott
Although it's annoying there is not much you can do about it as they do look like legit requests, even though they are not.
I can only think of two things, block each and every IP that it comes from (will take awhile) or you can look into an apache mod called MOD Security. I've never used it but there are alot of things you can do with it to protect yourself.
To help build of list of IP's to ban easier there is a script called LogWatch (I think that's what it is) and it will tally each entry in the log and give you the IP addy plus how many times it made a connection. Make sure you look up each IP before you ban it though (http://www.dnsstuff.com) to make sure your not banning anyone trying to do business.
IPChains (IP Tables?) may have something in it, but I am not very fluent with either since I always used a seperate program for simplicity.
|
Something totaly different. I LOVE DNSSTUFF.COM!
EDIT: I know our squad site had a mysql security issue where it was bogged down by queries till it stoped allowing it, and its seems as if Kirk*MFA* made it stopp (might been his connection with FBI though lol) But we have never had any problem since. Might be a good thing to ask him if he knows a way to prevent this (the server has moved to the inner core of the network though so it might be that). But it might be a good thing to talk to him as he works for a big hosting company that is aimed for profecionall buissness hosting.
Can be reached here:
http://dfmafia.net/forums