Jan 31st, 2012, 10:14 AM
Mophilly,
You are welcome. Glad to help. A couple of things.
Unless you do business with China or Korea, block them. It will cut down on a lot / most of attacks to your systems. One of the tricks they use is to hammer your unprotected forms from multiple IPs causing major SQL processing between the webserver and the database. Getting your CPUs running at 100% will open the door to triggering a crash and gaining access to your system (they go after known bugs and exploit them). Just block access.
For one of my use cases, I only had a handful of users so I also added a .htaccess file requiring authorization handled by the web server which is a lot more resource friendly than allowing SQL look ups! There are many other ways to address this but those are the no brainer easy ones with good results.
Here are some very useful sites to aid in blocking China.
Iptables
http://www.okean.com/antispam/iptables/iptables.html
Apache
http://www.wizcrafts.net/chinese-blocklist.html
General
http://www.countryipblocks.net/
You are welcome. Glad to help. A couple of things.
Unless you do business with China or Korea, block them. It will cut down on a lot / most of attacks to your systems. One of the tricks they use is to hammer your unprotected forms from multiple IPs causing major SQL processing between the webserver and the database. Getting your CPUs running at 100% will open the door to triggering a crash and gaining access to your system (they go after known bugs and exploit them). Just block access.
For one of my use cases, I only had a handful of users so I also added a .htaccess file requiring authorization handled by the web server which is a lot more resource friendly than allowing SQL look ups! There are many other ways to address this but those are the no brainer easy ones with good results.
Here are some very useful sites to aid in blocking China.
Iptables
http://www.okean.com/antispam/iptables/iptables.html
Apache
http://www.wizcrafts.net/chinese-blocklist.html
General
http://www.countryipblocks.net/
(Jan 31st, 2012, 9:09 AM)Mophilly Wrote: royo,
Thank you for posting the results of your research.