The Daily Static
  The Daily Static
UF Archives
Register
UF Membership
Ad Free Site
Postcards
Community
Geekfinder
UFie Gear
Advertise on UF
Forum Rules
& FAQ

Username

Password


Create a New Account

  
 

Back to UserFriendly Strip Comments Index
So do you think it odd... by Kickstart2004-02-16 00:50:49
  Actually, wrong addition: 16053 by 7 IP addresses (n/t) by Kickstart2004-02-16 01:17:06
    Maybe you can build some kind of dynamic block by skeptic2004-02-16 01:47:02
      It's called throttling and I'm not sure by Slamlander2004-02-16 02:00:58
        I am thinking of doing it outside Apache, at least by skeptic 2004-02-16 02:07:49

...partially. First, you can have a dynamic counter that reads the log lines as they come along, maintaining a count for 10 minutes back. If any address passes the threshold, it calls iptables to block that number - so Apache doesn't even have to deal with it, and it gets blocked at kernel level. Or use whatever firewall interface if you don't use iptables. Add the address to a list (say, in database) which lists the IP address and the time when it should be unblocked. Then have a cron job that calls iptables (or whatever) again for each of the IP addresses that needs to be released, and clears it from the database. Should all be pretty efficient, and apache is not involved at all.

[ Reply ]
          That's adaptive shielding by Slamlander2004-02-16 02:34:47

 

[Todays Cartoon Discussion] [News Index]

Come get yer ARS (Account Registration System) Source Code here!
All images, characters, content and text are copyrighted and trademarks of J.D. Frazer except where other ownership applies. Don't do bad things, we have lawyers.
UserFriendly.Org and its operators are not liable for comments or content posted by its visitors, and will cheerfully assist the lawful authorities in hunting down script-kiddies, spammers and other net scum. And if you're really bad, we'll call your mom. (We're not kidding, we've done it before.)