7ae472b2aa
in the event of an HTTP DoS or DDoS attack or brute force attack. It is also designed to be a detection and network management tool, and can be easily configured to talk to ipchains, firewalls, routers, and etcetera. mod_evasive presently reports abuses via email and syslog facilities.
28 lines
921 B
Text
28 lines
921 B
Text
===========================================================================
|
|
$NetBSD: MESSAGE,v 1.1.1.1 2006/01/07 01:46:26 cetrox Exp $
|
|
|
|
mod_evasive has default options configured, but you may also add the
|
|
following block to your httpd.conf:
|
|
|
|
<IfModule mod_evasive20.c>
|
|
DOSHashTableSize 3097
|
|
DOSPageCount 2
|
|
DOSSiteCount 50
|
|
DOSPageInterval 1
|
|
DOSSiteInterval 1
|
|
DOSBlockingPeriod 10
|
|
</IfModule>
|
|
|
|
Optionally you can also add the following directives:
|
|
|
|
DOSEmailNotify you@yourdomain.com
|
|
DOSSystemCommand "su - someuser -c '/sbin/... %s ...'"
|
|
DOSLogDir "/var/log/mod_evasive"
|
|
|
|
You will also need to add this line if you are building with dynamic support:
|
|
|
|
LoadModule evasive20_module modules/mod_evasive20.so
|
|
|
|
(This line is already added to your configuration by apxs)
|
|
|
|
===========================================================================
|