Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: what is the better way to protect my server from DDos Attack
Special Forums Cybersecurity what is the better way to protect my server from DDos Attack Post 302213170 by bodisha on Wednesday 9th of July 2008 11:19:24 AM
Old 07-09-2008
The best way to avoid being the victim of a DoS attack is to close off all un-used services/daemons & install all security patches from your vendor... I'd run Nessus/NMap against your server to see what's open & vulnerable
 

7 More Discussions You Might Find Interesting

1. Cybersecurity

DDoS Simulation Tools

are there any popular DDoS simulation tools to test my own infrastructure? Anyone tried to setup all these in AWS EC2? (1 Reply)
Discussion started by: boriskong
1 Replies

2. Linux

Binary files damaged after attack on the server

Hello, a few days ago (June 19) a server that I manage has suffered an attack. Analyzing the log I discovered that there were several attempts to access a web scanner called w00tw00t.at.ISC.SANS.DFind I set the firewall to prevent further visits from this scanner. The problem is that the... (3 Replies)
Discussion started by: viessenetwork
3 Replies

3. Ubuntu

Problem in Postfix server/is my server got some attack

Hi Friends, This is logs of my mail log: mail for yahoo.com.tw is using up 4001 of 6992 active queue entries : 1 Time(s) mail for yahoo.com.tw is using up 4001 of 7018 active queue entries : 1 Time(s) mail for yahoo.com.tw is using up 4001 of 7072 active queue entries : 1 Time(s) ... (1 Reply)
Discussion started by: darakas
1 Replies

4. Cybersecurity

DDoS and brute force attack

How to protect DDoS and brute force attack. I want to secure my server and block attacker. (1 Reply)
Discussion started by: romanepo
1 Replies

5. Emergency UNIX and Linux Support

DDOS attack please help!

Dear community, my site was recently attacjed by DDOS technique and goes down in a few minutes. My site runs under Debian/Apache2/Mysql. I identified the IPs who attack me and block it through iptable firewall from debian. Something like: iptables -D INPUT -s xxx.xxx.xxx.xxx -j DROP This... (7 Replies)
Discussion started by: Lord Spectre
7 Replies

6. UNIX for Advanced & Expert Users

Anti ddos shell script, is it useful?

Hi guys, just need a opinion from you. I found anti ddos script from github Script What is your opinion about it? Is it usefull? Do you have some similar? I want to protect my servers on all levels, why not in the servers via script. I assume I must fix this script to be useful for me, but... (1 Reply)
Discussion started by: tomislav91
1 Replies

7. What is on Your Mind?

Revive Ad Server MySQL Injection Attack

No rest for the weary, a Revive Ad Server I am responsible for experienced a MySQL injection attack due to a vulnerability uncovered in the past few months. I was busy developing Vue.js code for the forums and thought to myself "I will get around to upgrading to Revive 4.2.0 (supposedly the... (0 Replies)
Discussion started by: Neo
0 Replies

LEARN ABOUT DEBIAN

logcheck

Logcheck(8)						      System Manager's Manual						       Logcheck(8)

NAME

       logcheck -- program to scan system logs for interesting lines

SYNOPSIS

       logcheck [OPTIONS]

DESCRIPTION

       The  logcheck  program helps spot problems and security violations in your logfiles automatically and will send the results to you periodi-
       cally in an e-mail. By default logcheck runs as an hourly cronjob just off the hour and after every reboot.

       logcheck supports three level of filtering: "paranoid" is for high-security machines running as few services as possible. Don't use  it	if
       you  can't handle its verbose messages.	"server" is the default and contains rules for many different daemons.	"workstation" is for shel-
       tered machines and filters most of the messages.  The ignore rules work in additive manner. "paranoid" rules are  also  included  at  level
       "server". "workstation" level includes both "paranoid" and "server" rules.

       The  messages  reported	are  sorted into three layers, system events, security events and attack alerts. The verbosity of system events is
       controlled by which level you choose, paranoid, server or workstation.  However, security events and attack  alerts  are  not  affected	by
       this.

EXAMPLES

       logcheck  can  be  invoked directly thanks to su(8) or sudo(8), which change the user ID. The following example checks the logfiles without
       updating the offset and outputs everything to STDOUT.

       sudo -u logcheck logcheck -o -t

OPTIONS

       A summary of options is included below.

       -c CFG	 Overrule default configuration file.

       -d	 Debug mode.

       -h	 Show usage information.

       -H	 Use this hostname string in the subject of logcheck mail.

       -l LOG	 Run logfile through logcheck.

       -L CFG	 Overrule default logfiles list.

       -m	 Mail report to recipient.

       -o	 STDOUT mode, not sending mail.

       -p	 Set the report level to "paranoid".

       -r DIR	 Overrule default rules directory.

       -R	 Adds "Reboot:" to the email subject line.

       -s	 Set the report level to "server".

       -S DIR	 Overrule default state directory.

       -t	 Testing mode does not update offset.

       -T	 Do not remove the TMPDIR.

       -u	 Enable syslog-summary.

       -v	 Print current version.

       -w	 Set the report level to "workstation".

FILES

       /etc/logcheck/logcheck.conf is the main configuration file.

       /etc/logcheck/logcheck.logfiles is the list of files to monitor.

       /usr/share/doc/logcheck-database/README.logcheck-database.gz for hints on how to write, test and maintain rules.

EXIT STATUS

       0 upon success; 1 upon failure

SEE ALSO

       logtail(8)

AUTHOR

       logcheck is developed by Debian logcheck Team at alioth: http://alioth.debian.org/projects/logcheck/.

       This manual page was written by Jon Middleton.

																       Logcheck(8)
All times are GMT -4. The time now is 06:58 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy