I have some perl cgi scripts that are getting hammered. The requests are about 20/second. Most scripts access the database so the server is choking. The attack is not a distributed one but the IP is not static over time.
I also thought about using the above with string matching to search for "cgi-bin" in the URL so only scripts are limited to some number of requests per second and static content would not be limited but string matching is not available in the CentOS4 iptables.
Support for security such as Firewalls and securing linux
2 posts • Page 1 of 1