We are building a server with Apache 2.4 and are planning to use third-party modules to prepare for a DOS attack.
The following three options are likely.
mod_dosdetector
mod_evasive
mod_bw
However, there is information that the above three modules are not Apache 2.4 compatible, so I checked them myself and found out that they can be incorporated as modules (as seen in apachectl-M), but they do not have access restrictions.
What should I do if Apache 2.4 uses a module to prepare for a DOS attack?
Thank you for your cooperation.
mod_dosdetector is a forked version of Apache 2.4 by Takayuki Miwa as mod_dosdetector-fork.
mod_evasive seems to be Apache 2.4 compatible when installed from the EPEL repository for RHEL/CentOS.
Other than what is suggested, there are mod_qos that Lynis will be submitted to combat Slowloris attacks, ModSecurity (mod_security), Fail2ban.
Other Apache document mentions DoS attack protection directives.
Use Two approaches to DDoS attacks instead of ambiguous terms like oSDoS or DDoS attacks と to clarify the possible attack methods.The question then assumes that the attack can be addressed within the Apache process.
In general, DDoS attacks in particular will be defended in front of the web server.
© 2024 OneMinuteCode. All rights reserved.