+
1 2 2
  1. #1
    Status
    Offline
      Rise Company
    Engineering and Technology
    Apr 2014
    Egypt
    4,004
    10

    whm / cpanel DDoS Attack Apache Module: Evasive


    whm / cpanel DDoS Attack Apache Module: Evasive
    Protect Apache Against Brute Force or DDoS Attacks Using Mod_Security and Mod_evasive Modules



    mod_security (open-source intrusion detection and prevention engine for web applications that integrates seamlessly with the webserver) and
    mod_security provides a free CRS called OWASP (Open Web Application Security Project) ModSecurity CRS that can be downloaded and installed

    mod_evasive are two very important tools that can be used to protect a web server against brute force or (D)DoS attacks.
    mod_evasive, as its name suggests, provides evasive capabilities while under attack,
    acting as an umbrella that shields web servers from such threats.



    Mod_Evasive

    Mod_evasive is an Apache module with sophisticated Layer 7 DDoS mitigation features.
    It detects potential attacks against web applications and takes evasive action
    by rate-limiting IP addresses that make too many requests in a short time.

    First, we need to install the mod_evasive module.
    Navigate to Easy Apache 4 in WHMs Software menu. Select the Apache Modules tab,
    search for mod_evasive, and flip the install switch.



    Next, select the Review Tab, scroll to the bottom of the page, and click Provision.
    WHM may take a few seconds to install the module and its dependencies.

    The module has sensible defaults, but you may want to tweak the configuration file,
    which you will find on the servers filesystem at:
    :
         /etc/apache2/conf.d/300-mod_evasive.conf
    If you would like mod_evasive to send an email when it blocks an IP, set an email address in the DOSEmailNotify section.
    You may need to remove the comment symbol (#) from the beginning of the line.



    The configuration file is documented with extensive comments,
    and you can learn more from our mod_evasive documentation.

    Pros and Cons

    There are a number of benefits associated with mod_evasive, including:

    • Cost effectiveness the module is available for free.
    • Ease of use installation and configuration are both easily achieved, while settings can be adjusted on-the-fly to account for any changes to legitimate traffic flows.
    • DoS mitigation capabilities single source attacks are easily identified and blocked.

    At the same time, the modules limitations make it ineffective at mitigating network layer and DDoS attacks.
    Specifically, users need to consider that:

    • mod_evasive is ineffective against network layer attacks
    • Highly distributed attacks may not trigger mod_evasive thresholds configurations.
    • Low-and-slow attacks wont trigger a response from mod_evasive.
    • Because traffic is blocked based on rudimentary criteria, mod_evasive is very prone to false positives.

    For these reasons, mod_evasive is often thought of as a blunt instrument rather than a comprehensive website security solution. Despite its free price point and relative ease of use, mod_evasive lacks the capabilities to block network layer and DDoS attacks.



    :
    https://blog.cpanel.com/blocking-att...s-mod_evasive/
    https://blog.cpanel.com/how-to-survive-a-ddos-attack/
    https://docs.cpanel.net/ea4/apache/a...odule-evasive/
    https://www.imperva.com/blog/configu...apache-server/

    https://www.tecmint.com/protect-apac...centos-fedora/
    ------------------------------------------------------------------------
    Rise Company for Engineering & Technology
    ------------------------------------------------------------------------
    Web Hosting | Web Designing | E-Marketing

    # 1 Business Services

    Web Hosting - Business Emails

    Web Design - Google Adwords

    www.rise.company | www.rise.company/emails

    :
    ! .



  2. #2
    Status
    Offline
      Rise Company
    Engineering and Technology
    Apr 2014
    Egypt
    4,004
    10

    : whm / cpanel DDoS Attack Apache Module: Evasive


    https://stackoverflow.com/questions/...nd-mod-evasive
    ------------------------------------------------------------------------
    Rise Company for Engineering & Technology
    ------------------------------------------------------------------------
    Web Hosting | Web Designing | E-Marketing

    # 1 Business Services

    Web Hosting - Business Emails

    Web Design - Google Adwords

    www.rise.company | www.rise.company/emails

    :
    ! .



  1. FortiGate DDOS ATTACK DoS Policy
    Rise Company Fortigate
    : 0
    : 07-05-2020, 05:07
  2. Wordpress xmlrpc DOS ATTACK
    Rise Company WordPress
    : 0
    : 08-04-2020, 01:02
  3. DDoS Attack compute.hwclouds-dns.com
    Rise Company Whm / Cpanel
    : 0
    : 01-04-2020, 00:09
  4. : 0
    : 19-06-2018, 01:20
  5. Whm / Cpanel Cloud Flare DDoS
    Rise Company CloudFlare
    : 0
    : 18-06-2018, 22:55