0de9e07e79
in the event of an HTTP DoS or DDoS attack or brute force attack. It is also designed to be a detection and network management tool, and can be easily configured to talk to ipchains, firewalls, routers, and etcetera. mod_evasive presently reports abuses via email and syslog facilities.
26 lines
836 B
Text
26 lines
836 B
Text
===========================================================================
|
|
$NetBSD: MESSAGE,v 1.1.1.1 2006/01/07 01:10:00 cetrox Exp $
|
|
|
|
mod_evasive has default options configured, but you may also add the
|
|
following block to your httpd.conf:
|
|
|
|
<IfModule mod_evasive.c>
|
|
DOSHashTableSize 3097
|
|
DOSPageCount 2
|
|
DOSSiteCount 50
|
|
DOSPageInterval 1
|
|
DOSSiteInterval 1
|
|
DOSBlockingPeriod 10
|
|
</IfModule>
|
|
|
|
Optionally you can also add the following directives:
|
|
|
|
DOSEmailNotify you@yourdomain.com
|
|
DOSSystemCommand "su - someuser -c '/sbin/... %s ...'"
|
|
DOSLogDir "/var/log/mod_evasive"
|
|
|
|
You will also need to add this line if you are building with dynamic support:
|
|
|
|
AddModule mod_evasive.c
|
|
|
|
===========================================================================
|