Hi all, We are having a security problem with an Apache Server used by WebNative Portal which is being attacked for a DoS attack. The origin of the problem came for a mistake during the installation, where the proxy module was activated and the server was accepting proxy requests during some weeks. During this period we saw a lot of proxy requests, and other kind of attacks which finally could hang the httpd service making the Web page impossible to serve. Finally and after deactivate the Proxy Module, we could see that the attacks still come to the server. In other hand, this server has VirtualHosts configured, that serve different web portals. The problem now, is that when VirtualHosts are opened the machine still receives attacks and sometimes the service die. When we close VirtualHosts, the machine runs fine, but I must be accessed directly by IP which is not good.We don’t know exactly what is happening here, and would be very nice to have any kind of information. Attached is the VirtualHosts configuration file.Thanks.Aleix Vergés, Sistemes Informàtics Bages S.L. (AXI, Spain)

• Login or register to post comments