Magnus Rosenbaum escribió:
The IPs in the log messages on my server are not in BOGON networks.
BOGONS are absolutely pointless, blacklisting BOGON networks will only provide one thing: false sense of security ;) as they represent only a very small, irrelevant segment of the IP address space.. you can ( and will) be always attaccked by the rest of the big & mighty 95% of the internet =)
But this would not explain the many apache processes.
Were you able to obtain some clue from the apache logs ?
The only solution I have found is blocking the IPs with a cron job that greps dmesg and then sets iptables rules.
If you know for sure that certain IPs are D.O.S'ing your systems, you should contact your ISP and the police to hunt them down. -- "The only thing that interferes with my learning is my education." - Albert Einstein Cristian Rodríguez R. Platform/OpenSUSE - Core Services SUSE LINUX Products GmbH Research & Development http://www.opensuse.org/ --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security+help@opensuse.org