hamed.ramzi
October 25th, 2014, 07:52
با سلام
خوب زیاد سخت نیست کافیتس مطابق دستورات پیش برید.
nano evasive.sh
کد زیر را وارد کنید
#!/bin/bash
GSUDIR=/usr/src/gsu
GSUDIR2=/usr/local/apache/conf/gs
# Colors
Black="$(tput setaf 0)"
BlackBG="$(tput setab 0)"
DarkGrey="$(tput bold ; tput setaf 0)"
LightGrey="$(tput setaf 7)"
LightGreyBG="$(tput setab 7)"
White="$(tput bold ; tput setaf 7)"
Red="$(tput setaf 1)"
RedBG="$(tput setab 1)"
LightRed="$(tput bold ; tput setaf 1)"
Green="$(tput setaf 2)"
GreenBG="$(tput setab 2)"
LightGreen="$(tput bold ; tput setaf 2)"
Brown="$(tput setaf 3)"
BrownBG="$(tput setab 3)"
Yellow="$(tput bold ; tput setaf 3)"
Blue="$(tput setaf 4)"
BlueBG="$(tput setab 4)"
LightBlue="$(tput bold ; tput setaf 4)"
Purple="$(tput setaf 5)"
PurpleBG="$(tput setab 5)"
Pink="$(tput bold ; tput setaf 5)"
Cyan="$(tput setaf 6)"
CyanBG="$(tput setab 6)"
LightCyan="$(tput bold ; tput setaf 6)"
NC="$(tput sgr0)" # No Color
#End Color
clear
if [ -e /usr/src/gsu ]; then
echo -ne "$LightBlue Check Sources Files [ $LightGreen OK $LightBlue ]";
else
echo "$LightBlue Unable To Locate GS Source Folder [ $Red Field $LightBlue ]"
mkdir $GSUDIR;
fi
echo ""
if [ -e /usr/local/apache/conf/gs ]; then
echo -ne "$LightBlue Check Dependencies Files [ $LightGreen OK $LightBlue ]";
else
mkdir $GSUDIR2;
fi
function press_enter
{
echo ""
echo -n "$Red Press Enter To Go Back To Main Menu ...."
read
clear
}
selection=
until [ "$selection" = "0" ]; do
echo ""
echo "$LightBlue ++++++++++++++++++++++++++++++++++++++++++++++++"
echo "$LightBlue + $LightGreen Mod_Evasive v1.10.1 Installer $LightBlue +"
echo "$LightBlue ++++++++++++++++++++++++++++++++++++++++++++++++"
echo ""
echo "$LightGreen 1 - Install Mod_Evasive (Apache1)"
echo "$LightGreen 2 - Install Mod_Evasive (Apache2)"
echo "$LightGreen 3 - Uninstall Mod_Evasive"
echo "$LightGreen 0 - Exit"
echo ""
echo -n "$LightBlue Enter Selection: "$NC
read selection
echo ""
case $selection in
1 ) echo -n "Do You Want To Install Mod_Evasive For (Apache1)? (y/n)";read answer
if [ $answer = y ];then
cd $GSUDIR
wget "http://pkgs.fedoraproject.org/repo/pkgs/mod_evasive/mod_evasive_1.10.1.tar.gz/784fca4a124f25ccff5b48c7a69a65e5/mod_evasive_1.10.1.tar.gz"
tar -xf mod_evasive_1.10.1.tar.gz
cd mod_evasive
apxs -iac mod_evasive.c
/etc/init.d/httpd restart
httpd restart
service httpd restart
echo -ne "$LightBlue Mod_Evasive For Apache1 Installation Successful [ $LightGreen Good $LightBlue ]";
else
echo "Abort Mod_Evasive For (Apache1) Installation!"
fi
press_enter;;
2 ) echo -n "Do You Want To Install Mod_Evasive For (Apache2)? (y/n)";read answer
if [ $answer = y ];then
cd $GSUDIR
wget "http://pkgs.fedoraproject.org/repo/pkgs/mod_evasive/mod_evasive_1.10.1.tar.gz/784fca4a124f25ccff5b48c7a69a65e5/mod_evasive_1.10.1.tar.gz"
tar -xf mod_evasive_1.10.1.tar.gz
cd mod_evasive
apxs -i -a -c mod_evasive20.c
/etc/init.d/httpd restart
httpd restart
service httpd restart
echo -ne "$LightBlue Mod_Evasive For Apache2 Installation Successful [ $LightGreen Good $LightBlue ]";
else
echo "Abort Mod_Evasive For (Apache2) Installation!"
fi
press_enter;;
* ) echo "Please enter 1, 2"; press_enter
esac
done
ذخیره کنید و اجرا نمائید و نوع ورژن اپاچی را انتخاب کنید
chmod +x evasive.sh
./evasive.sh
در فایل httpd.conf اضافه کنید
<IfModule mod_evasive20.c>
DOSHashTableSize 3097
DOSPageCount 3
DOSSiteCount 100
DOSPageInterval 3
DOSSiteInterval 5
DOSBlockingPeriod 300
DOSLogDir "/var/log/httpd/modevasive/"
DOSEmailNotify your@emailaddress.com
</IfModule>
اگر از csf استفاده میکنید دستور زیر را اجرا کنید
/usr/bin/sudo /usr/sbin/csf -td %s 3600
دسترسی sudo رابرای فایلوال تنظیم میکنیم
visudo
بعد از root ALL = (ALL) وارد میکنیم
User_Alias APACHE = apache
Cmnd_Alias FIREWALL = /sbin/iptables, /usr/sbin/csf, /sbin/ifconfig, /sbin/route
APACHE ALL = (ALL) NOPASSWD: FIREWALL
ذخیره و تمام
موفق باشید
خوب زیاد سخت نیست کافیتس مطابق دستورات پیش برید.
nano evasive.sh
کد زیر را وارد کنید
#!/bin/bash
GSUDIR=/usr/src/gsu
GSUDIR2=/usr/local/apache/conf/gs
# Colors
Black="$(tput setaf 0)"
BlackBG="$(tput setab 0)"
DarkGrey="$(tput bold ; tput setaf 0)"
LightGrey="$(tput setaf 7)"
LightGreyBG="$(tput setab 7)"
White="$(tput bold ; tput setaf 7)"
Red="$(tput setaf 1)"
RedBG="$(tput setab 1)"
LightRed="$(tput bold ; tput setaf 1)"
Green="$(tput setaf 2)"
GreenBG="$(tput setab 2)"
LightGreen="$(tput bold ; tput setaf 2)"
Brown="$(tput setaf 3)"
BrownBG="$(tput setab 3)"
Yellow="$(tput bold ; tput setaf 3)"
Blue="$(tput setaf 4)"
BlueBG="$(tput setab 4)"
LightBlue="$(tput bold ; tput setaf 4)"
Purple="$(tput setaf 5)"
PurpleBG="$(tput setab 5)"
Pink="$(tput bold ; tput setaf 5)"
Cyan="$(tput setaf 6)"
CyanBG="$(tput setab 6)"
LightCyan="$(tput bold ; tput setaf 6)"
NC="$(tput sgr0)" # No Color
#End Color
clear
if [ -e /usr/src/gsu ]; then
echo -ne "$LightBlue Check Sources Files [ $LightGreen OK $LightBlue ]";
else
echo "$LightBlue Unable To Locate GS Source Folder [ $Red Field $LightBlue ]"
mkdir $GSUDIR;
fi
echo ""
if [ -e /usr/local/apache/conf/gs ]; then
echo -ne "$LightBlue Check Dependencies Files [ $LightGreen OK $LightBlue ]";
else
mkdir $GSUDIR2;
fi
function press_enter
{
echo ""
echo -n "$Red Press Enter To Go Back To Main Menu ...."
read
clear
}
selection=
until [ "$selection" = "0" ]; do
echo ""
echo "$LightBlue ++++++++++++++++++++++++++++++++++++++++++++++++"
echo "$LightBlue + $LightGreen Mod_Evasive v1.10.1 Installer $LightBlue +"
echo "$LightBlue ++++++++++++++++++++++++++++++++++++++++++++++++"
echo ""
echo "$LightGreen 1 - Install Mod_Evasive (Apache1)"
echo "$LightGreen 2 - Install Mod_Evasive (Apache2)"
echo "$LightGreen 3 - Uninstall Mod_Evasive"
echo "$LightGreen 0 - Exit"
echo ""
echo -n "$LightBlue Enter Selection: "$NC
read selection
echo ""
case $selection in
1 ) echo -n "Do You Want To Install Mod_Evasive For (Apache1)? (y/n)";read answer
if [ $answer = y ];then
cd $GSUDIR
wget "http://pkgs.fedoraproject.org/repo/pkgs/mod_evasive/mod_evasive_1.10.1.tar.gz/784fca4a124f25ccff5b48c7a69a65e5/mod_evasive_1.10.1.tar.gz"
tar -xf mod_evasive_1.10.1.tar.gz
cd mod_evasive
apxs -iac mod_evasive.c
/etc/init.d/httpd restart
httpd restart
service httpd restart
echo -ne "$LightBlue Mod_Evasive For Apache1 Installation Successful [ $LightGreen Good $LightBlue ]";
else
echo "Abort Mod_Evasive For (Apache1) Installation!"
fi
press_enter;;
2 ) echo -n "Do You Want To Install Mod_Evasive For (Apache2)? (y/n)";read answer
if [ $answer = y ];then
cd $GSUDIR
wget "http://pkgs.fedoraproject.org/repo/pkgs/mod_evasive/mod_evasive_1.10.1.tar.gz/784fca4a124f25ccff5b48c7a69a65e5/mod_evasive_1.10.1.tar.gz"
tar -xf mod_evasive_1.10.1.tar.gz
cd mod_evasive
apxs -i -a -c mod_evasive20.c
/etc/init.d/httpd restart
httpd restart
service httpd restart
echo -ne "$LightBlue Mod_Evasive For Apache2 Installation Successful [ $LightGreen Good $LightBlue ]";
else
echo "Abort Mod_Evasive For (Apache2) Installation!"
fi
press_enter;;
* ) echo "Please enter 1, 2"; press_enter
esac
done
ذخیره کنید و اجرا نمائید و نوع ورژن اپاچی را انتخاب کنید
chmod +x evasive.sh
./evasive.sh
در فایل httpd.conf اضافه کنید
<IfModule mod_evasive20.c>
DOSHashTableSize 3097
DOSPageCount 3
DOSSiteCount 100
DOSPageInterval 3
DOSSiteInterval 5
DOSBlockingPeriod 300
DOSLogDir "/var/log/httpd/modevasive/"
DOSEmailNotify your@emailaddress.com
</IfModule>
اگر از csf استفاده میکنید دستور زیر را اجرا کنید
/usr/bin/sudo /usr/sbin/csf -td %s 3600
دسترسی sudo رابرای فایلوال تنظیم میکنیم
visudo
بعد از root ALL = (ALL) وارد میکنیم
User_Alias APACHE = apache
Cmnd_Alias FIREWALL = /sbin/iptables, /usr/sbin/csf, /sbin/ifconfig, /sbin/route
APACHE ALL = (ALL) NOPASSWD: FIREWALL
ذخیره و تمام
موفق باشید