Traffic limitation - anti leech - how to programming ?

  • mwach
  • Born
  • Born
  • mwach
  • Posts: 2
  • Loc: USA

Post 3+ Months Ago

Hi all,

i have a seriuos problem.

I have to control who is accessing my server.
Last night i had traffic over 10 GB in only 3 hours.

Possible reasons:

1. username/password for the protected are posted in the world
2. Anyone who don't like me, have made so much filetransfer to his server.

If this problem caused one person, he have minimum a 100 MBit network connection. Maybe he downloaded 67563736 times the index.html...

How can i protect me against this ?????
Thank you very much for help !
  • mwach
  • Born
  • Born
  • mwach
  • Posts: 2
  • Loc: USA

Post 3+ Months Ago

ok, i saw the logs. many many different ip adresses.
so, i think the site was hacked or anyone have post his/her username and password to groups or password sites.

How can i protect me against this ???
  • Daemonguy
  • Moderator
  • Web Master
  • User avatar
  • Posts: 2700
  • Loc: Somewhere outside the box in Sarasota, FL.

Post 3+ Months Ago

There is no simple solution to network and system security. It's like a layer cake, with many cake rounds separated by creamy goodness -- oh excuse me, private moment.

Seriously though, if you think you have been hacked you may want to remove the machine in question -- or at least the hard drive -- with a fresh installed system. This way you can make multiple "clean" images of the drive ( I am assuming this is not an array), in question and proceed with forensics from that point.

If you are asking for a "How to" guide from folks in here, I think you will only get general concepts regarding good security practices, not an installable infrastructure laid out before you. That is because everyone's environment is different, and security must be custom tailored to suit the environment. They key is multiple sources of correlative data points.

Some hot points:
ACLs
Firewalls
IDS/NDS
File Integrity scanner
Multiple zones with bastion hosts

The list goes on. If this is for business I suggest you find yourself a security consultation company.

Cheers.
  • Axe
  • Genius
  • Genius
  • User avatar
  • Posts: 5739
  • Loc: Sub-level 28

Post 3+ Months Ago

Job #1 - Change the username & password :)
  • phpSelectah
  • Student
  • Student
  • User avatar
  • Posts: 97

Post 3+ Months Ago

good password policies always help.


A lot of ftp programs have configurations which limit the max amount of connections per user/ip, as well as the amount of bandwidth per connection in a class based config.

check out pure-ftpd.



:D
  • Tom the Great
  • Expert
  • Expert
  • User avatar
  • Posts: 727
  • Loc: B.C., Canada

Post 3+ Months Ago

You can try something like iProtect, but I think that's more towards web sites (I don't know what type of server you have). But the idea can probably be the same for anything else. maybe log the ips that are using that usernam//password and when there is more then 3 (or whatever you want) make that username//password unuseable.

Post Information

  • Total Posts in this topic: 6 posts
  • Users browsing this forum: No registered users and 7 guests
  • You cannot post new topics in this forum
  • You cannot reply to topics in this forum
  • You cannot edit your posts in this forum
  • You cannot delete your posts in this forum
  • You cannot post attachments in this forum
 
cron
 

© 1998-2014. Ozzu® is a registered trademark of Unmelted, LLC.