Jump to content
Sign in to follow this  
Coniesan

[Debian 6 / Apache2] Protection against Slowloris attacks

Recommended Posts

Hey @ all

For that people who are using Debian 6 and Apache could this be very nice!

People who are using nginx, you are normaly safe, but if you fuck your configs up, slowloris can be a problem for you, too ;)

 

1. What is slowloris?

Slowloris is a perl script, which allows you to open hundreds of sessions on your webserver and hold them open!

So your webserver crashes if it reaches ~700 connections at the same time 

 

2. How to fix it?

1. Download and extract the mod

wget ftp://ftp.monshouwer.eu/pub/linux/mod_antiloris/mod_antiloris-0.4.tar.bz2
tar -jxvvf mod_antiloris-0.4.tar.bz2
cd mod_antiloris-0.4/
 

2. Install the compile kit:

apt-get install gcc apache2-threaded-dev
3. compile mod_antiloris

/usr/bin/apxs2 -i -c mod_antiloris.c
4. import the mod to apache

echo "LoadModule antiloris_module /usr/lib/apache2/modules/mod_antiloris.so" > /etc/apache2/mods-available/antiloris.load
a2enmod antiloris
5. restart it

/etc/init.d/apache2 restart
I hope you enjoy it!

Kind regards

  • Love 7

Share this post


Link to post

I think you have to write:

cd /mod_antiloris-0.4

Instead of

cd mod_antiloris-0.4/

Share this post


Link to post

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  
  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...

Important Information

Terms of Use / Privacy Policy / Guidelines / We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.