httpd DOS attack

avantec

• December 16, 2013 11:59

hi pls i need your help i'm two days with this problem and i can't fix this, i have a Ddos attack but my dtacenter say that no is an attack, i have 200 Reading Request and 2b ram, my vps is down, my MaxClients / ServerLimit are 256 but the server is to limit, pls very thanks for your help

• 

  JaredR.

  • December 16, 2013 18:41

  Friendly Moderator Note I moved your post from here:

  0
• 

  quizknows

  • December 16, 2013 19:07

  Have you figured out what domain is being targeted? (That is, if you host multiple domains). Try using a httpd fullstatus to see what domain is being targeted. Then, tail -f the domains access log, i.e. tail -f /home/$USERNAME/access-logs/$DOMAIN.COM
  Try to get as much information on the requests as possible, and paste part of the log here if you see the repeated requests. You can remove your domain name from the logs.

  0
• 

  24x7server

  • December 17, 2013 12:33

  Hello, I will suggest you monitor all connection on your through netstat command. You can use following command to check your ESTABLISHED connection on port 80 t netstat -anp | grep :80 | grep ESTABLISHED | wc -l
  

  0

Please sign in to leave a comment.