I need a script that can ban an IP addresses when the IP address reach a "non existing page" (404 Error).
I have a huge problem with Ddos attacks and I was hoping that a script like that could help.
on 20 days I have had more then 1000000 hits to a file (that was placed by a hacker) that I have moved. Onmy error stats I see:
[Sat Jan 21 04:25:55 2006] [error] [client [login to view URL]] File does not exist: public_html/[login to view URL]
[Sat Jan 21 04:25:55 2006] [error] [client [login to view URL]] File does not exist: public_html/design/images/[login to view URL]
Its the [login to view URL] file the hacker have uploaded that I have removed now (and others too).
The attack comes from 100s maybe 1000s of different IPs so it’s not impossible to ban them one by one in cpanel.
I want the script to work this way.
1.
When an IP have tried to load a page, like the above that does not exist on the server (like 404, 403, etc... error), more than 5 times the IP address will be banned for 24 hours.
2.
The script must come with an admin area where its possible to:
a. unban single/multi IP addresses
b. change how many times an IP address must hit a "non existing" webpage eg. 404 etc.
c. the possibility to change the time of how long time an IP address must be banned, like 12 hours, 24 hours or 48 hours... forever…
The script must be able to handle a huge number of IP addresses at the same time. The last 8 hours IP address have ??called?? design/images/[login to view URL] more then 30000 times!
Beside the above there must be a logfile/stats-file where it will also be possible to copy the banned IP addresses so I can past them to the firewall.
Finally the script must not be a huge script that slows down the server, the server load or the speed of loading a website in a browser.
## Deliverables
1) Complete and fully-functional working program(s) in executable form as well as complete source code of all work done.
2) Deliverables must be in ready-to-run condition, as follows (depending on the nature of the deliverables):
a) For web sites or other server-side deliverables intended to only ever exist in one place in the Buyer's environment--Deliverables must be installed by the Seller in ready-to-run condition in the Buyer's environment.
b) For all others including desktop software or software the buyer intends to distribute: A software installation package that will install the software in ready-to-run condition on the platform(s) specified in this bid request.
3) All deliverables will be considered "work made for hire" under U.S. Copyright law. Buyer will receive exclusive and complete copyrights to all work purchased. (No GPL, GNU, 3rd party components, etc. unless all copyright ramifications are explained AND AGREED TO by the buyer on the site per the coder's Seller Legal Agreement).
4) The coder help installing the script to the server and make sure its working
5) The script must be 100% working and if the coder dont understand exact what I mean or what I will use it for he must ask.
## Platform
The server where the script will be installed on is linux with apache on