New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
A simple solution using nginx to heal from attacks with rudy
This is a simple solution to help your website, lets say its being flooded, well a good way to heal this is first if its a rudy/any attack using fake refers, lets limit the refers.
So, here is example code:
server {
server_name website.tld www.website.tld;
root /var/www/website.tld/public_html;
include php;
access_log /var/www/website.tld-access.log;
error_log /var/www/website.tld-error.log;
valid_referers none server_names ~(gmail.|google.|bing.|yahoo.);
if ($invalid_referer) {
return 403;
}
}
So this code just denies anyone who does not have a valid referral.
Comments
Ah the power of google changes a newbie to nginx godness
http://nginx.org/en/docs/http/ngx_http_referer_module.html
If you being flooded with UDP this will be no help, at most this would help against layer 7 attacks.
Yes Spencer, I know.
Yes @Zen - but most RUDY attacks are small, unless someone really hates you.
Ahh yea my bad, thats what you get when you skim