dos attacks on apache2 (win2003)
Posted by Vult-r, 05-05-2007, 04:03 PM Im running a windows 2003 web edition server with apache 2.2.4 installed and a ported module; mod_dosEvasive, my server is vurnable for some sort of single machine dos attack. Not only my own server is vurnable but basically ANY apache 2.2.4 win32 server, even without additional modules (lik php) installed ( i checked by installing apache2 on 4 machines, all vurnable) The tool used to attack apache is described here: http://www.moorer-software.com/apache.htm When attacked by the specific syn flood attack apache2 becomes useless and doesnt send any responses out anymore. When the attacker stops sending this flood Apache starts responding again. Anyone got an idea how to secure a windows apache server against such an attack?
Posted by PrimaryVPS, 05-05-2007, 04:46 PM Did you try bumping up your max connections, or try blocking the offending IPS?
Posted by Vult-r, 05-05-2007, 05:02 PM This is my current conf files.. httpd.conf: ThreadsPerChild 250 MaxRequestsPerChild 0 httpd-default.conf: I couldnt find a MaxConnections setting in the conf files of apache 2.2.4 ..