FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

Port details
mod_evasive Apache module to try to protect the HTTP Server from DoS/DDoS attacks
1.10.1_1 www on this many watch lists=5 search for ports that depend on this port Find issues related to this port Report an issue related to this port
Maintainer: kiwi@oav.net search for ports maintained by this maintainer
Port Added: 17 May 2008 14:25:03
Also Listed In: security
License: GPLv2
mod_dosevasive is an evasive maneuvers module for Apache to provide evasive 
action in the event of an HTTP DoS or DDoS attack or brute force attack.
It is also designed to be a detection and network management tool, and can be
easily configured to talk to ipchains, firewalls, routers, and etcetera.
mod_dosevasive presently reports abuses via email and syslog facilities.

Detection is performed by creating an internal dynamic hash table of IP
Addresses and URIs, and denying any single IP address from any of the
following:

    * Requesting the same page more than a few times per second
    * Making more than 50 concurrent requests on the same child per second
    * Making any requests while temporarily blacklisted (on a blocking list) 

This method has worked well in both single-server script attacks as well as
distributed attacks, but just like other evasive tools, is only as useful to
the point of bandwidth and processor consumption (e.g. the amount of bandwidth
and processor required to receive/process/respond to invalid requests), which
is why it's a good idea to integrate this with your firewalls and routers for
maximum protection.

This module instantiates for each listener individually, and therefore has a
built-in cleanup mechanism and scaling capabilities. Because of this per-child
design, legitimate requests are never compromised (even from proxies and NAT
addresses) but only scripted attacks. Even a user repeatedly clicking on
'reload' should not be affected unless they do it maliciously. mod_dosevasive
is fully tweakable through the Apache configuration file, easy to incorporate
into your web server, and easy to use. 

WWW: http://www.zdziarski.com/blog/?page_id=442
SVNWeb : Homepage : Distfiles Availability : PortsMon

To install the port: cd /usr/ports/www/mod_evasive/ && make install clean
To add the package: pkg install ap22-mod_evasive

PKGNAME: ap22-mod_evasive


NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Build dependencies:
  1. apxs : www/apache22
Runtime dependencies:
  1. apxs : www/apache22
There are no ports dependent upon this port

Configuration Options
     No options to configure

Master Sites:
  1. http://distcache.FreeBSD.org/ports-distfiles/apache2/
  2. http://www.zdziarski.com/blog/wp-content/uploads/2010/02/
Port Moves
  • port moved here from www/mod_evasive20 on 2008-05-17
    REASON: No reason to have the 20 in the name, so remove it

Number of commits found: 14

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
15 Dec 2013 22:11:21
Original commit files touched by this commit  1.10.1_1
Revision:336589
ohauer search for other commits by this committer
- add stage support
- add license
- minor cleanups

with hat apache@
20 Sep 2013 23:36:54
Original commit files touched by this commit  1.10.1_1
Revision:327776
bapt search for other commits by this committer
Add NO_STAGE all over the place in preparation for the staging support (cat:
www)
14 Aug 2013 22:35:54
Original commit files touched by this commit  1.10.1_1
Revision:324744  Sanity Test Failure
ak search for other commits by this committer
- Remove MAKE_JOBS_SAFE variable

Approved by:	portmgr (bdrewery)
22 Sep 2012 21:15:51
Original commit files touched by this commit  1.10.1_1
Revision:304723
ohauer search for other commits by this committer
- USE_APACHE= s/22+/22/
- adopt new Makefile header

Port build fails on local exp-run with apache24 with
 error: 'conn_rec' has no member named 'remote_ip'

or various other apache22 specific functions/parameters

with hat apache@
18 Aug 2012 14:29:11
Original commit files touched by this commit  1.10.1_1
ohauer search for other commits by this committer
- remove www/apache20 and devel/apr0
- s/USE_APACHE= 20+/USE_APACHE= 22+/
- unify s/YES/yes/
- cleanup APACHE_VERSION <= 22 usage
- add entry to MOVED

with hat apache@
01 Jan 2012 16:47:41
Original commit files touched by this commit  1.10.1_1
ohauer search for other commits by this committer
- change required APACHE version from 13+ to 20+
  (prepare to remove www/apache13)

- no PORTREVISION bump since apache22 is the default

with hat apache@
20 Aug 2011 17:27:52
Original commit files touched by this commit  1.10.1_1
ohauer search for other commits by this committer
 - bump PORTREVISION from ports if USE_APACHE=13+ or 20+ is defined
19 Mar 2011 12:38:54
Original commit files touched by this commit  1.10.1
miwi search for other commits by this committer
- Get Rid MD5 support
20 Oct 2010 03:26:34
Original commit files touched by this commit  1.10.1
pgollucci search for other commits by this committer
- Fix some MASTER_SITES

With Hat:       apache@
Reported by:    distilator
20 Oct 2010 02:46:01
Original commit files touched by this commit  1.10.1
pgollucci search for other commits by this committer
- update or remove pkg-descr WWW urls

Reported by:    distilator
With Hat:       apache@
21 May 2009 20:45:34
Original commit files touched by this commit  1.10.1
pgollucci search for other commits by this committer
- Mark remaining mod_* ports MAKE_JOBS_SAFE=yes

PR:             ports/134611
Approved by:    pav (#bsdports)
22 May 2008 01:53:50
Original commit files touched by this commit  1.10.1
brd search for other commits by this committer
Fix the build from my last commit that was part of PR: ports/122781.

Reviewed by:    edwin@
17 May 2008 15:40:11
Original commit files touched by this commit  1.10.1
brd search for other commits by this committer
- Update www/mod_evasive to 1.10.1
- Remove the old port

PR:             ports/122781
17 May 2008 14:24:48
Original commit files touched by this commit  1.10_1
brd search for other commits by this committer
Forced commit to note repocopy from www/mod_evasive20 to www/mod_evasive.

PR:             ports/122781

Number of commits found: 14

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
ffmpegFeb 06
mencoderFeb 06
mplayerFeb 06
ldb*Feb 05
samba36*Feb 05
samba4*Feb 05
samba41*Feb 05
samba42*Feb 05
samba43*Feb 05
shotwellFeb 05
asterisk11Feb 04
asterisk13Feb 04
py-rsaFeb 04
webkit-gtk2Feb 04
webkit-gtk3Feb 04

28 vulnerabilities affecting 78 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 25705
Broken 360
Deprecated 145
Ignore 633
Forbidden 0
Restricted 206
No CDROM 87
Vulnerable 57
Expired 68
Set to expire 126
Interactive 0
new 24 hours 3
new 48 hours9
new 7 days26
new fortnight51
new month135

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.