|
|
|
|
||||
|
Welcome to the GoFuckYourself.com - Adult Webmaster Forum forums. You are currently viewing our boards as a guest which gives you limited access to view most discussions and access our other features. By joining our free community you will have access to post topics, communicate privately with other members (PM), respond to polls, upload content and access many other special features. Registration is fast, simple and absolutely free so please, join our community today! If you have any problems with the registration process or your account login, please contact us. |
 |
|
|||||||
| Discuss what's fucking going on, and which programs are best and worst. One-time "program" announcements from "established" webmasters are allowed. |
|
|
Thread Tools |
07-07-2003, 12:26 PM
|
#1 |
|
Confirmed User
Join Date: Oct 2002
Posts: 231
|
HELP! server under attack
134.95.38.26 pppoe26.swhBachemerstr.Uni-Koeln.DE
This IP address is flooding my Apache server. Nobody can access the site. How can I block this IP address from reaching my server??? |
|
|
|
07-07-2003, 12:27 PM
|
#2 |
|
Confirmed User
Join Date: Jun 2003
Location: Gooch city
Posts: 9,527
|
__________________
Someone finds you... 2007 PS: Nationalnet is the best host I've ever had. And i tried alot of them. |
|
|
|
|
07-07-2003, 12:27 PM
|
#3 |
|
So Fucking Banned
Join Date: Sep 2001
Location: shell beach
Posts: 7,938
|
login as root and type:
shutdown -h now |
|
|
|
|
07-07-2003, 12:29 PM
|
#4 |
|
The Original WebGirl!
Industry Role:
Join Date: Mar 2003
Location: Green Valley, ON, CA
Posts: 325
|
Funkmaster is actually right. Just shutdown the server for a couple of minutes. Most of those attacks are automatic and stop once they get no response from the server. It'll have moved on once you get the server back up (in most cases)
I just got this from my tech guy. |
|
|
|
|
07-07-2003, 12:29 PM
|
#5 |
|
Confirmed User
Join Date: Jan 2002
Location: In the walls of your house.
Posts: 3,985
|
You can try dropping the route to that machine...
/sbin/route add -host {IPADDRESS} -interface lo0
__________________
"Every normal man must be tempted, at times, to spit on his hands, hoist the black flag, and begin slitting throats." --H.L. Mencken |
|
|
|
|
07-07-2003, 12:31 PM
|
#6 |
|
So Fucking Banned
Industry Role:
Join Date: Apr 2001
Location: N.Y. -Long Island --
Posts: 122,992
|
rm -r usr/local/apache
 |
|
|
|
|
07-07-2003, 12:33 PM
|
#7 | |
|
So Fucking Banned
Join Date: Sep 2001
Location: shell beach
Posts: 7,938
|
Quote:
<b>/sbin/route add -host 134.95.38.26 127.0.0.1 </b> |
|
|
|
|
|
07-07-2003, 12:35 PM
|
#8 | |
|
So Fucking Banned
Join Date: Sep 2001
Location: shell beach
Posts: 7,938
|
Quote:
<b>/usr/local/apache/bin/apachectl stop</b> after deleting apache, it won´t work. |
|
|
|
|
|
07-07-2003, 12:39 PM
|
#9 |
|
Confirmed User
Join Date: Mar 2003
Posts: 4,372
|
the best defense is a good offense
take them down....you know where the I.P. is |
|
|
|
|
07-07-2003, 12:43 PM
|
#10 |
|
Confirmed User
Industry Role:
Join Date: Mar 2002
Posts: 3,893
|
ping -fs 50000 134.95.38.26
__________________
|
|
|
|
|
07-07-2003, 12:45 PM
|
#11 | |
|
So Fucking Banned
Join Date: Sep 2001
Location: shell beach
Posts: 7,938
|
Quote:
--- 134.95.38.26 ping statistics --- 50000 packets transmitted, 0 packets received, 100% packet loss ... DOH !!! |
|
|
|
|
|
07-07-2003, 12:49 PM
|
#12 |
|
When it rains, it pours
Industry Role:
Join Date: May 2003
Posts: 20,609
|
just shut it down.
|
|
|
|
|
07-07-2003, 12:54 PM
|
#13 |
|
Confirmed User
Industry Role:
Join Date: Oct 2002
Location: lalaland
Posts: 2,120
|
[rootprompt]# iptables -A INPUT -s 134.95.38.26 -j DROP
|
|
|
|
|
07-07-2003, 12:55 PM
|
#14 |
|
Confirmed User
Join Date: Oct 2002
Posts: 231
|
Thank you guys.
I stopped the Apache for 2-3 minutes. And attack is over. Funkmaster, yes I can't ping that IP anymore, but it was on some time ago. I'll try /sbin/route command |
|
|
|
