[mod-security-users] mod_security throttling?
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
[mod-security-users] mod_security throttling?
|
From: Scot H. <sh...@bi...> - 2005-02-08 19:51:17
|
Hi - I'm trying to find a way to block the bulk of Movable Type comment spam at the apache level, rather than at the weblog level. Is mod_security capable of any kind of throttling, i.e. more than a given number of requests on a single script per time interval get dropped? Or is this a job for mod_dosevasive? I know that mod_security can be made to integrate with MT Blacklist, but that approach will not catch the bulk of requests that can cripple a server with a lot of MT blogs, since most server-crippling comment spam sessions include strings that are not yet blacklisted; hence I'd like to try another approach -- blocking any too-frequent CGI requests. Thanks, Scot |
