Re: [Dspace-tech] Blocking a malicious user

2007-11-01 Thread Stuart Lewis [sdl]
; dspace-tech@lists.sourceforge.net Subject: Re: [Dspace-tech] Blocking a malicious user You can block ip addresses at the postgreSQL level in the pg_hba.conf file. Here is a person I blocked by ip address who was sending all kinds of GET requests to our DSpace server: hostall all

Re: [Dspace-tech] Blocking a malicious user

2007-11-01 Thread Cory Snavely
SYSTEMS] Sent: 31 October 2007 17:51 To: Mika Stenberg; dspace-tech@lists.sourceforge.net Subject: Re: [Dspace-tech] Blocking a malicious user You can block ip addresses at the postgreSQL level in the pg_hba.conf file. Here is a person I blocked by ip address who was sending all kinds of GET

Re: [Dspace-tech] Blocking a malicious user

2007-10-31 Thread Cory Snavely
[EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Mika Stenberg Sent: Wednesday, October 31, 2007 6:00 AM To: dspace-tech@lists.sourceforge.net Subject: Re: [Dspace-tech] Blocking a malicious user We've had problems like that as well

[Dspace-tech] Blocking a malicious user

2007-10-30 Thread George Kozak
Hi... I am having a problem with an IP that keeps sending thousands of GET /bitstream/... requests for the same item. I have placed the following in my Apache.conf file: Directory /bitstream/ Options Indexes FollowSymLinks MultiViews AllowOverride All Order allow,deny allow from all deny from

Re: [Dspace-tech] Blocking a malicious user

2007-10-30 Thread V. Alex Brennen
On Tue, 2007-10-30 at 14:32 -0400, George Kozak wrote: However, this person still seems to be getting through. My java process is running from 50%-80% CPU usage. Does anyone have a good idea on how to shutout a malicious IP in DSpace? I believe your configuration changes should be

Re: [Dspace-tech] Blocking a malicious user

2007-10-30 Thread Tim Donohue
George, We had a similar problem to this one in the past (a year or so ago). I just flat out blocked the IP altogether (not even specific to /bitstream/) via this Apache configuration: Location / Order Allow,Deny Deny from {malicious ip} Allow from all /Location This looks

Re: [Dspace-tech] Blocking a malicious user

2007-10-30 Thread George Kozak
Tim: Thanks. I will give that a try. I thought that I had this nailed, but I just shot up to 80% CPU usage again. At 03:01 PM 10/30/2007, Tim Donohue wrote: George, We had a similar problem to this one in the past (a year or so ago). I just flat out blocked the IP altogether (not even

Re: [Dspace-tech] Blocking a malicious user

2007-10-30 Thread George Kozak
Thanks, Corey... I discussed the firewall with our IT people, but for now, it looks like (keeping my fingers crossed) that the last change that I made (that was suggested by Tim) seems to be working. However, if I get clobbered again, I will probably go with the firewall block. At 03:14 PM