> Well, yes, for my apache server I use the mod_evasive plugin. A quick > search on the web seems to indicate that mod_evasive isn't available for > nginx (at least according to this post) but apparently there is an nginx > alternative: > > http://stackoverflow.com/questions/4849094/mod-evasive-for-nginx > > Good luck with it. Installation might seem somewhat daunting at > first but if you find the right instructions it will probably be > straightforward (mod_evasive was).
I don't understand how mod_evasive could help when a series of sequential IPs are making too many combined requests but no single IP is making too many requests by itself. - Grant >> > Fail2ban works when the attacker can be distinguished in some way (other >> > than rate) from an ordinary person browsing your site. >> > If these ten hosts aren't attempting a "brute force" or "dictionary" >> > attack ..ie if they are doing nothing more than requesting web pages >> > (at a fast rate), then fail2ban is probably not the right tool. >> >> >> Any idea what the right tool would be? nginx doesn't seem to have >> anything like that. >> >> - Grant ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, SlashDot.org! http://sdm.link/slashdot _______________________________________________ Fail2ban-users mailing list Fail2ban-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/fail2ban-users
