Language Selection

English French German Italian Portuguese Spanish

Quick way to stop apache and connect floods with csf

Filed under

Well first off this will only stop http or connect floods if you are having a real ddos problem you should be on a protected network otherwise there isnt much you can do server level if the attacks are pretty big. Using this method in combination with a protected network is the best way to go if you are having dos problems or host sites that do.
If you dont have CSF you can get it at

This is real handy if your server is lagging badly, In some cases you have to tune down the connection limit to around 30 or less, depends how many ips hitting, etc; What this does is it kills apache, lowers the connection limit in csf.conf and restarts everything. When it does and lfd daemon runs again it will ban all of the ips with so many connections.

cp /etc/csf/csf.conf /etc/csf/csf.conf2

nano -w /etc/csf/csf.conf2
ctrl+w search for tracking, will be the second result. Turn your connection level to where you want it to be. Usually 30 gets the job done. You can always change it to suit the situation

nano -w /usr/bin/dos

killall httpd ; cp -R /etc/csf/csf.conf /etc/csf/csf.conf1 ; cp -R /etc/csf/csf.conf2 /etc/csf/csf.conf ; csf -r ; service httpd restart
here is shortcut script to turn your connection limit back to normal

nano -w /usr/bin/dosoff

cp -R /etc/csf/csf.conf1 /etc/csf/csf.conf ; csf -r

chmod 700 /usr/bin/dos /usr/bin/dosoff
Now you can go in your server and quickly fight it.
Just enter dos in your terminal to start it. And dosoff to set back to normal. Hope this can help someone

More in Tux Machines

diff -u: What's New in Kernel Development

Over time, memory can become more and more fragmented on a system, making it difficult to find contiguous blocks of RAM to satisfy ongoing allocation requests. At certain times the running system may compact regions of memory together to free up larger blocks, but Vlastimil Babka recently pointed out that this wasn't done regularly enough to avoid latency problems for code that made larger memory requests. Read more

Canonical's Ubuntu Internet Browser Silently Becomes Awesome - Video

The Ubuntu Internet browser is a little-known application that's been getting a lot of updates lately. It's developed internally by Canonical, and it seems to get better with each new edition. Read more

7 open-source password managers to try now that LogMeIn owns LastPass

Some LastPass users were clearly not pleased to find out last week that the password management app had been acquired by LogMeIn. Fortunately, there are several alternatives to choose from. Sure, there are premium options like Dashlane, Keeper, Passpack, 1Password, and RoboForm, but there are also free password management systems that anyone can inspect and even contribute to. No matter what you use, the idea is to be more secure than you would be if you were to just use “password” as the password for every app you sign up for. Read more

Open Document Format: Using Officeshots and ODFAutoTesting for Sustainable Documents

One of the many benefits of open source software is that it offers some protection from having programs disappear or stop working. If part of a platform changes in a non-compatible way, users are free to modify the program so that it continues to work in the new environment. At a level above the software, open standards protect the information itself. Everybody expects to be able to open a JPEG image they took with their digital camera 5 years ago. And, it is not unreasonable to expect to be able to open that same image decades from now. For example, an ASCII text file written 40 years ago can be easily viewed today. Read more