For two or three weeks now someone seems to dislike me. It happens from time to time that during the night, about 1.30 a.m., my webserver got hit by a sync dDoS. Maybe it's someone specific, maybe it's just a random botnet. Anyway, the result is the same: the service is no longer available.
For this problem there exists mod_qos, which was mentioned in the last LinuxMagazin issue (German). Ok, so I download mod_qos, followed the instructions and built the module with "apxs2 -ci mod_qos.c". When I've enabled mod_qos I get the following error:
mod_qos, requires OpenSSL, compile Apache using "--enable-ssl"
Which is quite interesting, because the Apache2 runs a HTTPS site as well. So, some sort of SSL should be available and mod_ssl is loaded as well. Anyway, I added mod_gnutls as well, but no change: it still reports the above error.
System is Debian Lenny and Apache2 is version 2.2.9-10+lenny7.
Any tipps, hints, pointers or advices, please? :-)
After "apt-get install apache2-threaded-dev libgnutls-dev libssl-dev" mod_qos was loaded successfully and hopefully will prevent me from suffering of another dDoS. Sometimes the solution is so simple... ;-)