Linux VPS安全设置之三:使用DDOS deflate抵御少量DDOS攻击
<p>互联网是丰富多彩的,基本上能够找到我们需要的资源,也正因为如此很多朋友都加入到站长的行列中来。在众多站长之间也会存在明争暗斗的事情。尤其是我们个人站长,由于技术和财力有限,好不容易使用上主机、VPS后被攻击没有能力防御,导致我们的主机或者VPS商给我们的账户暂停,IP挂起等。尤其是我们在使用的VPS主机中,因为是按照流量消费的,在耗尽我们的流量,遭遇大量的DDOS攻击之后,也束手无策,包括老左也看到之前也遭遇到DDOS攻击。</p>
<p>
在遇到这些问题的时候,我们是否能在VPS设置中进行处理呢?哪怕是一点点的防御。看到DDOS deflate脚本是可以协助VPS阻止攻击进程的,如果遇到来自某个IP的持续攻击,可以给该IP自动的设置成IP黑名单。只能说可以给我们的VPS一点点防御。</p>
<p>
<strong>第一步,安装。</strong></p>
<div class="jb51code">
<div>
<div class="syntaxhighlighterplain" id="highlighter_974551">
<div class="toolbar">
<span>?</span>
</div>
<table border="0" cellpadding="0" cellspacing="0"><tbody><tr>
<td class="gutter">
<div class="line number1 index0 alt2">
1</div>
<div class="line number2 index1 alt1">
2</div>
<div class="line number3 index2 alt2">
3</div>
</td>
<td class="code">
<div class="container">
<div class="line number1 index0 alt2">
<code class="plain plain">wget http://myvps-scripts.googlecode.com/files/deflate.sh</code>
</div>
<div class="line number2 index1 alt1">
<code class="plain plain">chmod +x deflate.sh</code>
</div>
<div class="line number3 index2 alt2">
<code class="plain plain">./deflate.sh</code>
</div>
</div>
</td>
</tr></tbody></table>
</div>
</div>
<div class="codetool" id="codetool">
<div class="code_n">
<textarea></textarea>
</div>
</div>
</div>
<p>
<strong>第二步,配置/usr/local/ddos/ddos.conf文件。</strong></p>
<div class="jb51code">
<div>
<div class="syntaxhighlighterplain" id="highlighter_783111">
<div class="toolbar">
<span>?</span>
</div>
<table border="0" cellpadding="0" cellspacing="0"><tbody><tr>
<td class="gutter">
<div class="line number1 index0 alt2">
1</div>
<div class="line number2 index1 alt1">
2</div>
<div class="line number3 index2 alt2">
3</div>
<div class="line number4 index3 alt1">
4</div>
<div class="line number5 index4 alt2">
5</div>
<div class="line number6 index5 alt1">
6</div>
<div class="line number7 index6 alt2">
7</div>
<div class="line number8 index7 alt1">
8</div>
<div class="line number9 index8 alt2">
9</div>
<div class="line number10 index9 alt1">
10</div>
<div class="line number11 index10 alt2">
11</div>
<div class="line number12 index11 alt1">
12</div>
<div class="line number13 index12 alt2">
13</div>
<div class="line number14 index13 alt1">
14</div>
<div class="line number15 index14 alt2">
15</div>
<div class="line number16 index15 alt1">
16</div>
<div class="line number17 index16 alt2">
17</div>
<div class="line number18 index17 alt1">
18</div>
<div class="line number19 index18 alt2">
19</div>
<div class="line number20 index19 alt1">
20</div>
<div class="line number21 index20 alt2">
21</div>
<div class="line number22 index21 alt1">
22</div>
<div class="line number23 index22 alt2">
23</div>
<div class="line number24 index23 alt1">
24</div>
<div class="line number25 index24 alt2">
25</div>
</td>
<td class="code">
<div class="container">
<div class="line number1 index0 alt2">
<code class="plain plain">##### Paths of the script and other files</code>
</div>
<div class="line number2 index1 alt1">
<code class="plain plain">PROGDIR="/usr/local/ddos"</code>
</div>
<div class="line number3 index2 alt2">
<code class="plain plain">PROG="/usr/local/ddos/ddos.sh"</code>
</div>
<div class="line number4 index3 alt1">
<code class="plain plain">IGNORE_IP_LIST="/usr/local/ddos/ignore.ip.list"</code>
</div>
<div class="line number5 index4 alt2">
<code class="plain plain">CRON="/etc/cron.d/ddos.cron"</code>
</div>
<div class="line number6 index5 alt1">
<code class="plain plain">APF="/etc/apf/apf"</code>
</div>
<div class="line number7 index6 alt2">
<code class="plain plain">IPT="/sbin/iptables"</code>
</div>
<div class="line number8 index7 alt1">
</div>
<div class="line number9 index8 alt2">
<code class="plain plain">##### frequency in minutes for running the script</code>
</div>
<div class="line number10 index9 alt1">
<code class="plain plain">##### Caution: Every time this setting is changed, run the script with --cron</code>
</div>
<div class="line number11 index10 alt2">
<code class="plain plain">##### option so that the new frequency takes effect</code>
</div>
<div class="line number12 index11 alt1">
<code class="plain plain">FREQ=1</code>
</div>
<div class="line number13 index12 alt2">
<code class="plain plain">##### How many connections define a bad IP Indicate that below.</code>
</div>
<div class="line number14 index13 alt1">
<code class="plain plain">NO_OF_CONNECTIONS=150</code>
</div>
<div class="line number15 index14 alt2">
<code class="plain plain">##### APF_BAN=1 (Make sure your APF version is atleast 0.96)</code>
</div>
<div class="line number16 index15 alt1">
<code class="plain plain">##### APF_BAN=0 (Uses iptables for banning ips instead of APF)</code>
</div>
<div class="line number17 index16 alt2">
<code class="plain plain">APF_BAN=0</code>
</div>
<div class="line number18 index17 alt1">
<code class="plain plain">##### KILL=0 (Bad IPs are'nt banned, good for interactive execution of script)</code>
</div>
<div class="line number19 index18 alt2">
<code class="plain plain">##### KILL=1 (Recommended setting)</code>
</div>
<div class="line number20 index19 alt1">
<code class="plain plain">KILL=1</code>
</div>
<div class="line number21 index20 alt2">
<code class="plain plain">##### An email is sent to the following address when an IP is banned.</code>
</div>
<div class="line number22 index21 alt1">
<code class="plain plain">##### Blank would suppress sending of mails</code>
</div>
<div class="line number23 index22 alt2">
<code class="plain plain">EMAIL_TO="root"</code>
</div>
<div class="line number24 index23 alt1">
<code class="plain plain">##### Number of seconds the banned ip should remain in blacklist.</code>
</div>
<div class="line number25 index24 alt2">
<code class="plain plain">BAN_PERIOD=600</code>
</div>
</div>
</td>
</tr></tbody></table>
</div>
</div>
<div class="codetool" id="codetool">
<div class="code_n">
<textarea></textarea>
</div>
</div>
</div>
<p>
<strong>标示说明:</strong></p>
<p>
NO_OF_CONNECTIONS=150#最大连接数,超过会被屏蔽,默认即可<br>
APF_BAN #默认是1,建议使用0,标示iptables限制<br>
EMAIL_TO="" 填写邮箱账号,到时候有信息会发送到我们邮箱中<br>
BAN_PERIOD=600 代表限制该IP 600秒</p>
頁:
[1]