{"id":2304,"date":"2013-07-12T19:46:24","date_gmt":"2013-07-12T11:46:24","guid":{"rendered":"http:\/\/rmohan.com\/?p=2304"},"modified":"2013-07-12T19:59:55","modified_gmt":"2013-07-12T11:59:55","slug":"shell-script-for-apache-dos-protection","status":"publish","type":"post","link":"https:\/\/mohan.sg\/?p=2304","title":{"rendered":"Shell script for apache dos protection"},"content":{"rendered":"<p>#!\/bin\/bash<br \/>\ncur=`date +%H%M%S`<br \/>\nbecur=`date -d &#8220;1 minute ago&#8221; +%H%M%S`<br \/>\nbadip=`tail -n 10000 \/var\/log\/httpd\/access_log | egrep -v &#8220;\\.(gif|jpg|jpeg|png|css|js)&#8221; | awk -v a=&#8221;$becu<br \/>\nr&#8221; -v b=&#8221;$cur&#8221; -F [&#8216; &#8216;:] &#8216;{t=$5$6$7;if (t>=a &#038;&#038; t<=b) print $1}' | sort | uniq -c | awk '{if ($1>=20) print $2}<br \/>\n&#8216;`<br \/>\nif [ ! -z $badip ];then<br \/>\nfor ip in $badip;<br \/>\ndo<br \/>\nif test -z &#8220;`\/sbin\/iptables -nL | grep $ip`&#8221;;then<br \/>\n\/sbin\/iptables -I INPUT -s $ip -j DROP<br \/>\nfi<br \/>\ndone<br \/>\nfi<\/p>\n","protected":false},"excerpt":{"rendered":"<p>#!\/bin\/bash cur=`date +%H%M%S` becur=`date -d &#8220;1 minute ago&#8221; +%H%M%S` badip=`tail -n 10000 \/var\/log\/httpd\/access_log | egrep -v &#8220;\\.(gif|jpg|jpeg|png|css|js)&#8221; | awk -v a=&#8221;$becu r&#8221; -v b=&#8221;$cur&#8221; -F [&#8216; &#8216;:] &#8216;{t=$5$6$7;if (t>=a &#038;&#038; t=20) print $2} &#8216;` if [ ! -z $badip ];then for ip in $badip; do if test -z &#8220;`\/sbin\/iptables -nL | grep $ip`&#8221;;then \/sbin\/iptables -I [&#8230;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[47],"tags":[],"_links":{"self":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/2304"}],"collection":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2304"}],"version-history":[{"count":2,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/2304\/revisions"}],"predecessor-version":[{"id":2306,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/2304\/revisions\/2306"}],"wp:attachment":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2304"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2304"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2304"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}