wwwhack

I have been testing this software which is sending regular flood on apache which is marked like "15-4 16021 0/4/4 R 0.50 2 0 0.0 0.00 0.00 ? ? ..reading.. " on apache status. Mod Dosevasive seems no good for that as i can manage to flood the server without being blacklisted. I have decreased the max request by interval settings already, but still no chance.

Do you know any ways to avoid such attacks? Surely, i can trace the process or look at netstat to ban the ip's manually but an automated process would be better.

 

 

 

 

Top