I had to install mod antiloris in order to be sure the Apache is secureagainst the slowloris Denial of Service attack that emerged in the summer of 2008.
Luckily David Hrbac has already prepared an rpm packages for CentOS so the installation is really simple.
The installation of the module of course is dependant on the exact Linux architecture you’re installing it on.
David has done a great work preparing the rpm packages for both x86 and x86_64 CentOS.
Even better he has prepared packages for both CentOS 4 and 5 releases.
Here is what the uname command returns on the CentOS server where I install the module.
Linux centos 2.6.18-128.7.1.el5 #1 SMP Mon Aug 24 08:21:56 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
Here is how I did the install in a really simple and quick way on a CentOS 5 runing an x86_64 CentOS release:
1. Download the prepackaged rpm of mod_antiloris in rpm for CentOS from this link
1. Install it using the command
[root@centos-server~ ]# rpm -ivh mod_antiloris-0.3-2.el5.hrb.x86_64.rpm
2. Check the configuration syntax is fine
[root@centos-server~ ]# /etc/init.d/httpd configtest
3.Restart the Apache webserver
[root@centos-server~ ]# /etc/init.d/httpd restart
Test it using the slowloris script issuing the command:
[root@centos-server~ ]# perl slowloris.pl -dns yourdomainname.com -port 80 -timeout 1 -num 300 -cache
On my installation it worked like a charm you don’t need to do any configuration settings or anything for slowloris to takeaffect just the Apache restart as marked above is all necessary to load the anti slowloris module on your CentOS Linux.
In case need to install the mod antiloris to another architecture than the one described in this article, just download theappropriate rpm centos version from the list below:
Download links to rpm packages of mod antiloris for x86 and x86_64 for Centos 5.
Download mod_antiloris rpm CentOS5 x86
Download mod_antiloris rpm CentOS5 x86_64
Download mod_antilrois rpm CentOS4 x86
Download mod_antiloris rpm CentOS4 x86_64
Of course this is just one of they ways you can do it. You can always use mod_qos or something similar as well as I’ve mentioned in one of my previous posts.
Here is also an article on How to defend from slowloris Denial of service using mod_qos on CentOS
If you're new here, you may want to subscribe to my RSS feed. Thanks for visiting!
Hey long time now see, thanks for dropping back again! 🙂
More helpful Articles
- Delete 2nd Windows installation from Windows boot screen menu
- Make active FTP work in VSFTPD
- Monitoring Linux hardware Hard Drives / Temperature and Disk with lm_sensors / smartd / hddtemp and Zabbix Userparameter lm_sensors report script
- Happy Christ’s Birth! Merry Christmas
- How to disable spammer domain in QMAIL mail server with badmailto variable
- The Hindenburg disaster took place on Thursday, May 6, 1937, as the German passenger airship LZ 129 Hindenburg caught fire and was destroyed during its attempt to dock with its mooring mast at Naval Air Station Lakehurst, which is located adjacent to the borough of Lakehurst, New Jersey, United States. Of the 97 people on board (36 passengers and 61 crewmen), there were 35 fatalities (13 passengers and 22 crewmen). One worker on the ground was also killed, making a total of 36 dead. The disaster was the subject of spectacular newsreel coverage, photographs, and Herbert Morrison’s recorded radio eyewitness reports from the landing field, which were broadcast the next day. A variety of hypotheses have been put forward for both the cause of ignition and the initial fuel for the ensuing fire. The incident shattered public confidence in the giant, passenger-carrying rigid airship and marked the end of the airship era.
- How to auto load kernel module on system boot in CentOS 5
- Saint Sergius of Radonezh The WonderWorker (Sergij Radonezhki) a quick helper saint in life problems, pupils, students in educational hardships, exams and Orphans. A short living of father of Russian monasticism
- Xubuntu improve default picture viewing with gpicview
- HasciiCAM supposed to stream ASCII video over the network on GNU / Linux
- The Legend of the Christmas Tree and Why do we put Christmas trees at home in Christmas time? 🙂
- LVM extend partition Linux howto and how to check if Logical Volume Manager partition is extendable
- The greatest tracker (demoscene) composers / Purple Motion, Necros, Skaven, Pro-XeX
- How to validate a form email address with PHP / PHP Validate Email address
Download PDF Tags: Installing mod antiloris on x86 and x86_64 bit CentOS 4 and 5 to protect from the recent slowloris DoS attack
This entry was posted on Wednesday, May 12th, 2010 at 2:05 am and is filed under System Administration. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.
Mozilla/5.0 (X11; U; Linux x86_64; en-us) AppleWebKit/531.2+ (KHTML, like Gecko) Version/5.0 Safari/531.2+ Debian/squeeze (2.30.6-1) Epiphany/2.30.6
The download links above are broken as of today.
View CommentView CommentYou can mirrored version of http://www.pc-freak.net/files/mod_antiloris-0.3-1.el5.ld.x86_64.rpm – here
Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/28.0.1500.71 Safari/537.36
Je vais finir de jeter un coup d'oeil à tout ça ce soir
View CommentView Comment