[CentOS-devel] CentOS services being DDoS'd

Mon Aug 7 12:16:40 UTC 2017
Jean-Marc Liger <jean-marc.liger at parisdescartes.fr>


Le 7 août 2017 1:13 PM, Karanbir Singh <mail-lists at karan.org> a écrit :
On 07/08/17 12:08, Karanbir Singh wrote:
> hi guys
>
> We've got a service being hammered, and Fabian's had a look - we have no
> clear solution on howto best mitigate and manage this. We need help.
>
> buildlogs.centos.org hosts, amongst other things, isos for our monthly
> builds - which are being downloaded repeatedly. Fabian, can you add
> specifics on what the problem space is ?
>
> The main problem we have is that its causing outage for other services
> hosted on the same service, including cbs testing repos
>
> regards
>

I had recommended and Fabian looked at mod-evasive, but has reservations
around that.  how do people these days typically handle flood situations ?


I used to install fail2ban which parse the logs' services you want to monitor :
https://www.fail2ban.org/wiki/index.php/Main_Page

JML


--
Karanbir Singh
+44-207-0999389 | http://www.karan.org/ | twitter.com/kbsingh
GnuPG Key : http://www.karan.org/publickey.asc
_______________________________________________
CentOS-devel mailing list
CentOS-devel at centos.org
https://lists.centos.org/mailman/listinfo/centos-devel

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.centos.org/pipermail/centos-devel/attachments/20170807/d0f6109c/attachment-0008.html>