My BLOG!
I blog when my spidey senses tingle.

About Me
- Home
- My Profile
- Archives
- RSS Feed
Recent Entries
- Rashad "Bitch Tits" Evans -- My Steroid Abuse
- Subway - SKIMPWAY - Rip Off On Meat Slices - More Meat My ASS
- Really? Gonna be great! Gonna be a big week!
- Cpanel update causes Squirrelmail problems!
- Include statements on PHP blocked by Firewall!
- Malicious Activity Causes Server Downtime
- The cutest 4 year-old girl in the world on Guitar Hero 3, Expert Level
- New Server Online for multiple new DDL sites!
- Leave Britney Alone - Chris Crocker
- George Bush is an "Idiot"?
- Donald Trump: Bush is the Worst President in History
- Awknet Server Upgraded Today
- New Audi TT Quattro 1.8L Turbo -- On the Way!
- The Z24, is No More
- 1984 Pontiac Grand Prix Mods
- New 1984 Pontiac Grand Prix
- Server down today!
- It's Business Time - Flight of the Conchords
- Razer Exactmat Aluminum Mousepad
- PC vs. Mac
- New Server #2: 2 x Dual Core Intel Woodcrest 5130
- Ultra ULT31502 600 Watt Backup System UPS
- Why don't you like me why don't you like me why don't you walk out the door!
- RGX Bodyspray Commercial Girl
- Elisha Cuthbert Pictures
- Penelope Cruz in Volver
- Hillary Duff Performs "With Love" Live On Jay Leno April 3, 2007
- Blazin' Athlon 64 X2 5200+ Dual 2.6Ghz, 2GB PC6400 800MHz RAM, 700W PSU
- Futureshop -- Price Guarantee MY ASS
- It's time for a new PC from Tiger Direct
- CONCLUSION: Thomas Auto Guelph (Ripoff Artists!)
- WHERE THE HELL IS MY MONEY? Thomas Auto Guelph (Ripoff Artists!)
- OUTCOME - Thomas Auto Guelph (Ripoff Artists!)
- Action Against Thomas Auto Guelph (Ripoff Artists!)
- Scott @ Thomas Auto Latest RIPOFF Stragegies
- Thomas Auto Guelph -- THE RIPOFF CONTINUES...
- Finance a car with bad credit at Thomas Auto in Guelph (Oh and by the way, you also get RIPPED OFF)
- Server down all day yesterday
- Get a credit card online with bad credit?
- Server stability achieved.. for now
- Cpanel on FreeBSD 6.1 = A very BAAAD combination
- Rapidshare Premium-Pack - Full Premium Access - FREE
- Awknet Server Is Up and Running!
- Bandwidth Limited Exceeded
- Rippleweb's Offer Comes Through... NOW you tell me?
- New Dedicated Server... On Steroids
- Free Megaupload and Rapidshare Style File Upload-Hosting Script
- Vibehosting is down, Where on earth is Ruslan?
- Launched UploadScript v1.0 Beta
- Server Under Heavy DOS Attack Today
- Securing my new dedicated server today
- Phentermine vs. Phermentine
- Splogs... may have inadvertently helped boost PR
- Ma Baby -- 1984 Pontiac Grand Prix
- Google Pagerank 5 Achieved
- Isn't this cool?
- Picture of a super sexy babe!
- Simple Southern Fried Chicken Recipe
- Picture of a cool car!
Links
- Free Blog Site
- Free Upload Site
- Free Direct Downloads
- Free Full Downloads
- Bit Torrent Downloads
- Online File Sharing
- Haxxx Underground Toplist
- Haxxx DDL
- Jokes, Funnies
- Anonymous Surfing, Browsing
- Free Upload Script (Rapidshare, Megaupload)
- Free Software Downloads
- Live Jasmine
- Rapidshare Premium Accounts
- Rapidshare DDL
- Hell DDL
- Buy Weed Online
- Hacked XXX Sites
- DDL Dude
- Vista Black
- Upload Girl




HyperBlogs.net

Server Under Heavy DOS Attack Today

Today was a write-off.  The server was down all day.  Loads were above 3 and sometimes upto 9.  The thing that was different today was the memory usage -- most of the day it was above 70%.   No sites were loading. 

I did some research. Looked at the stats.  Suspected the process that was using up all the memory was one that was owned by "nobody" -- a couple hundred instances of it appeared when checking CPU usage in WHM.  This indicated a DOS attack but I wasn't sure.

I had to babysit today and had already committed to it, so today was very bad timing.  My sites were left in the gutter all day.  I spent an hour here and there online looking for a solution.  Sent a message to the provider but as usual no response from them -- I was on my own.  Tried restarting services, especially mysql and apache... even rebooted the server... at times I found the server loads were normal but still no pages were loading.  Another indication of a ddos attack.

Installed iptables in WHM, which apparently should allow me to block an IP address.  I just couldn't figure out how to implement the block, or where.  I assume it's done via SSH but I just couldn't find any documentation online about how to proceed with this.  Learned there are some programs like API, floodgate, and flood-something-or-other that you can install in WHM that use iptables but did not find any "how-to" documentation on these.  Finally, around midnight, I looked in cpanel, checked the error log and found 3 IP addresses to block, and blocked them through the "IP deny manager" right from cpanel.

Rebooted the server and when it came back up... presto... all was well.  Still not sure if it's from what I did in cpanel or if it was just a coincidence -- perhaps just needed another reboot to fix this.  No matter.  One thing is certain: I must spend some major time and educate myself on properly and completely securing my server.  There is a lot of time to be spent, a few perl scripts to be installed, and some command line research and work to be done in SSH -- methods that should further secure my server for greater stability.

01:22 AM, August 20, 2006 .. 0 comments .. 0 trackbacks .. Link


Trackback

[Previous Page] [Page 50 of 59] [Next Page]


[Previous Page] [Page 50 of 59] [Next Page]

Hyperblogs.net - The Coolest Free BLOG Site!