This website is deprecated, and remains online only for historic access to old issues and docs for historic versions of Virtualmin. It has been unmaintained for several years, and should not be relied on for up-to-date information. Please visit www.virtualmin.com instead.

How to combat Slow Loris attack on apache webserver

1 post / 0 new

Topic locked

#1 Sat, 05/05/2018 - 20:07

adamjedgar

How to combat Slow Loris attack on apache webserver

after watching this video https://www.youtube.com/watch?v=XiFkyR35v2Y

has apache implemented any defense against this kind of attack? I am running virtualmin on an apache webserver with live websites on it...should i change to nginx?

Is there a workaround or fix for apache for this?

I see two options mentioned in cpanel docs...ModReqtimeout and ModQoS. Do these work successfully? Do i need to install them myself or has the virtualmin installer already got this added?