Installing Mod_Antiloris To Mitigate SlowLoris DOS Attack
In computing, a denial-of-service (DoS) attack is an attempt to make a machine or network resource unavailable to its intended users, such as to temporarily or indefinitely interrupt or suspend services of a host connected to the Internet.
A distributed denial-of-service (DDoS) is where the attack source is more than one, often thousands of, unique IP addresses. It is analogous to a group of people crowding the entry door or gate to a shop or business, and not letting legitimate parties enter into the shop or business, disrupting normal operations.
Download the installer from sourceforge and install
[root@hackthesec]# cd /usr/local/src [root@hackthesec]# wget http://sourceforge.net/projects/mod-antiloris/files/mod_antiloris-0.4.tar.bz2 [root@hackthesec]# tar -xvjf mod_antiloris-0.4.tar.bz2 [root@hackthesec]# cd mod_antiloris-* [root@hackthesec]# apxs -a -i -c mod_antiloris.c
Now restart Apache
[root@hackthesec]# service httpd restart
check whether mod_antiloris loaded or not
httpd -M | grep antiloris
Note:- if you are using cpanel server then you have to run the below command to make sure new modification are updated into configuration system file