On Sun, 18 Jan 2015, Mindaugas Rasiukevicius wrote:
Date: Sun, 18 Jan 2015 23:22:47 +0000
From: Mindaugas Rasiukevicius <[email protected]>
To: [email protected]
Cc: [email protected]
Subject: Re: DoS attack against TCP services
[email protected] wrote:
Hello,
it was launched a DoS attack against my server. The attacker opened ssh
connections from different servers until all sockets are use.
I have stopped the ssh service and terminates all processes.
Unfortunately, all TCP connections are now in the TIME_WAIT state.
bash-4.3 # netstat -a -n | grep TIME_WAIT | wc -l
34611
Is there a way to remove it without rebooting the server?
tcpdrop(8)?
It works. But why doesn't drop the kernel it automatically?
--
Mindaugas
Uwe
