This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Get-ChildItem -Recurse | Select-String -Pattern 'abc' -List | Select Path |
karthiks
/ mpm_prefork.conf
Created
September 13, 2021 13:01
Config for php deployment that is using mpm_prefork_module for it to work with mod_evasive module
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| StartServers 10 | |
| MinSpareServers 10 | |
| MaxSpareServers 10 | |
| MaxRequestWorkers 80 | |
| MaxConnectionsPerChild 0 |
karthiks
/ evasive.conf
Created
September 13, 2021 12:57
Minimal workable configuration for mod_evasive
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <IfModule mod_evasive20.c> | |
| DOSHashTableSize 3097 | |
| DOSPageCount 1 | |
| DOSSiteCount 3 | |
| DOSPageInterval 1 | |
| DOSSiteInterval 1 | |
| DOSBlockingPeriod 10 | |
| #DOSEmailNotify [email protected] | |
| #DOSSystemCommand "su - someuser -c '/sbin/... %s ...'" | |
| #DOSLogDir "/var/log/mod_evasive" |
karthiks
/ enabled_apache_extensions.sh
Created
September 13, 2021 12:46
verify whether the mod_evasive module is enabled
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apachectl -M | grep evasive | |
| # Output: | |
| # [Mon Jan 27 13:55:35.707317 2020] [so:warn] [pid 29031] AH01574: module dav_module is already loaded, skipping | |
| # evasive20_module (shared) |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| SetEnvIf Remote_Addr "::1" loopback | |
| SetEnvIf Remote_Addr "127\.0\.0\.1" loopback | |
| CustomLog /var/log/apache2/access.log combined env=!loopback |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| logging: | |
| receivers: | |
| mywebserver: | |
| type: files | |
| include_paths: | |
| - /var/log/apache*/access.log | |
| - /var/log/apache*/error.log | |
| - /var/www/logs/any-other-custom-logs-of-your-app-*.log | |
| service: | |
| pipelines: |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <VirtualHost *:80> | |
| ServerAdmin webmaster@localhost | |
| DocumentRoot /var/www/html | |
| ErrorLog ${APACHE_LOG_DIR}/error.log | |
| CustomLog ${APACHE_LOG_DIR}/access.log combined | |
| RewriteEngine on | |
| RewriteMap hosts-deny "txt:/etc/apache2/blacklist" | |
| RewriteCond "${hosts-deny:%{REMOTE_ADDR}|NOT-FOUND}" "!=NOT-FOUND" [OR] | |
| RewriteCond "${hosts-deny:%{REMOTE_HOST}|NOT-FOUND}" "!=NOT-FOUND" | |
| RewriteRule .* - [F] |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| RewriteEngine on | |
| RewriteMap hosts-deny "txt:/etc/apache2/blacklist" | |
| RewriteCond "${hosts-deny:%{REMOTE_ADDR}|NOT-FOUND}" "!=NOT-FOUND" [OR] | |
| RewriteCond "${hosts-deny:%{REMOTE_HOST}|NOT-FOUND}" "!=NOT-FOUND" | |
| RewriteRule .* - [F] |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 71.119.54.101 - | |
| 52.123.54.102 - |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| chown www-data.www-data /etc/apache2/blacklist |