FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

I am looking for an LTO tape library. Do you have one to spare?
Port details
mod_evasive 1.10.1_1 www on this many watch lists=6 search for ports that depend on this port
Broken BROKEN: : Error from bsd.apache.mk. apache24 is installed (or APACHE_PORT is defined) and port requires apache22 at most
Ignore IGNORE: is marked as broken: : Error from bsd.apache.mk. apache24 is installed (or APACHE_PORT is defined) and port requires apache22 at most
Apache module to try to protect the HTTP Server from DoS/DDoS attacks
Maintained by: kiwi@oav.net search for ports maintained by this maintainer
Port Added: 17 May 2008 14:25:03
Also Listed In: security
License: GPLv2


mod_dosevasive is an evasive maneuvers module for Apache to provide evasive 
action in the event of an HTTP DoS or DDoS attack or brute force attack.
It is also designed to be a detection and network management tool, and can be
easily configured to talk to ipchains, firewalls, routers, and etcetera.
mod_dosevasive presently reports abuses via email and syslog facilities.

Detection is performed by creating an internal dynamic hash table of IP
Addresses and URIs, and denying any single IP address from any of the
following:

    * Requesting the same page more than a few times per second
    * Making more than 50 concurrent requests on the same child per second
    * Making any requests while temporarily blacklisted (on a blocking list) 

This method has worked well in both single-server script attacks as well as
distributed attacks, but just like other evasive tools, is only as useful to
the point of bandwidth and processor consumption (e.g. the amount of bandwidth
and processor required to receive/process/respond to invalid requests), which
is why it's a good idea to integrate this with your firewalls and routers for
maximum protection.

This module instantiates for each listener individually, and therefore has a
built-in cleanup mechanism and scaling capabilities. Because of this per-child
design, legitimate requests are never compromised (even from proxies and NAT
addresses) but only scripted attacks. Even a user repeatedly clicking on
'reload' should not be affected unless they do it maliciously. mod_dosevasive
is fully tweakable through the Apache configuration file, easy to incorporate
into your web server, and easy to use. 

WWW: http://www.zdziarski.com/blog/?page_id=442
SVNWeb : Main Web Site : Distfiles Availability : PortsMon

NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Required To Build:
  1. www/apache22
Required To Run:
  1. www/apache22
There are no ports dependent upon this port

To install the port: cd /usr/ports/www/mod_evasive/ && make install clean

A package is not available for ports marked as: Forbidden / Broken / Ignore / Restricted


Configuration Options
     No options to configure

Master Sites:
  1. ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/distfiles/apache2/
  2. http://www.zdziarski.com/blog/wp-content/uploads/2010/02/
Port Moves
  • port moved here from www/mod_evasive20 on 2008-05-17
    REASON: No reason to have the 20 in the name, so remove it

Number of commits found: 14

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
15 Dec 2013 22:11:21
Original commit files touched by this commit  1.10.1_1
Revision:336589
ohauer search for other commits by this committer
- add stage support
- add license
- minor cleanups

with hat apache@
20 Sep 2013 23:36:54
Original commit files touched by this commit  1.10.1_1
Revision:327776
bapt search for other commits by this committer
Add NO_STAGE all over the place in preparation for the staging support (cat:
www)
14 Aug 2013 22:35:54
Refresh Original commit files touched by this commit
Revision:324744  Sanity Test Failure
ak search for other commits by this committer
- Remove MAKE_JOBS_SAFE variable

Approved by:	portmgr (bdrewery)
22 Sep 2012 21:15:51
Original commit files touched by this commit  1.10.1_1
Revision:304723
ohauer search for other commits by this committer
- USE_APACHE= s/22+/22/
- adopt new Makefile header

Port build fails on local exp-run with apache24 with
 error: 'conn_rec' has no member named 'remote_ip'

or various other apache22 specific functions/parameters

with hat apache@
18 Aug 2012 14:29:11
Original commit files touched by this commit  1.10.1_1
ohauer search for other commits by this committer
- remove www/apache20 and devel/apr0
- s/USE_APACHE= 20+/USE_APACHE= 22+/
- unify s/YES/yes/
- cleanup APACHE_VERSION <= 22 usage
- add entry to MOVED

with hat apache@
01 Jan 2012 16:47:41
Original commit files touched by this commit  1.10.1_1
ohauer search for other commits by this committer
- change required APACHE version from 13+ to 20+
  (prepare to remove www/apache13)

- no PORTREVISION bump since apache22 is the default

with hat apache@
20 Aug 2011 17:27:52
Original commit files touched by this commit  1.10.1_1
ohauer search for other commits by this committer
 - bump PORTREVISION from ports if USE_APACHE=13+ or 20+ is defined
19 Mar 2011 12:38:54
Original commit files touched by this commit  1.10.1
miwi search for other commits by this committer
- Get Rid MD5 support
20 Oct 2010 03:26:34
Original commit files touched by this commit  1.10.1
pgollucci search for other commits by this committer
- Fix some MASTER_SITES

With Hat:       apache@
Reported by:    distilator
20 Oct 2010 02:46:01
Original commit files touched by this commit  1.10.1
pgollucci search for other commits by this committer
- update or remove pkg-descr WWW urls

Reported by:    distilator
With Hat:       apache@
21 May 2009 20:45:34
Original commit files touched by this commit  1.10.1
pgollucci search for other commits by this committer
- Mark remaining mod_* ports MAKE_JOBS_SAFE=yes

PR:             ports/134611
Approved by:    pav (#bsdports)
22 May 2008 01:53:50
Original commit files touched by this commit  1.10.1
brd search for other commits by this committer
Fix the build from my last commit that was part of PR: ports/122781.

Reviewed by:    edwin@
17 May 2008 15:40:11
Original commit files touched by this commit  1.10.1
brd search for other commits by this committer
- Update www/mod_evasive to 1.10.1
- Remove the old port

PR:             ports/122781
17 May 2008 14:24:48
Original commit files touched by this commit  1.10_1
brd search for other commits by this committer
Forced commit to note repocopy from www/mod_evasive20 to www/mod_evasive.

PR:             ports/122781

Number of commits found: 14

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
asterisk11Nov 21
asterisk11Nov 21
phpmyadminNov 21
kde4-runtimeNov 20
kwebkitpartNov 20
yiiNov 19
chromiumNov 18
kde4-workspaceNov 17
dbusNov 11
wgetNov 08
konversation-kde4Nov 05
jenkinsOct 31
jenkins-ltsOct 31
twikiOct 31
libsshOct 29

9 vulnerabilities affecting 11 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds


Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 24396
Broken 106
Deprecated 39
Ignore 364
Forbidden 1
Restricted 206
No CDROM 93
Vulnerable 18
Expired 0
Set to expire 35
Interactive 0
new 24 hours 7
new 48 hours15
new 7 days131
new fortnight156
new month202

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.