How to block this threat?

Customer support forums for Atomic Protector (formerly Atomic Secured Linux). There is no such thing as a bad question here as long as it pertains to using Atomic Protector. Newbies feel free to get help getting started or asking questions that may be obvious. Regular users are asked to be gentle. :-)
Post Reply
gaia
Forum Regular
Forum Regular
Posts: 213
Joined: Tue Jun 09, 2009 12:57 pm

How to block this threat?

Unread post by gaia »

Even if just for the fact that it spiked up resource usage to the point that I got an alert, I would like to stop these attacks:

Code: Select all

HEAD /?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 HTTP/1.1" 200 - "-" "-"
It would be trivial if they weren't coming from the most diverse networks in China. Unfortunately, I cannot block China entirely.

Code: Select all

121.40.159.147
72.16.148.41
61.165.96.176
60.214.72.225
60.209.94.105
59.55.251.202
59.41.252.226
222.67.78.111
222.209.110.34
210.22.167.30
183.37.150.174
183.224.98.116
182.50.113.58
171.12.6.156
14.147.24.7
124.207.227.146
119.129.195.7
118.122.122.213
118.122.118.29
118.113.162.24
116.66.38.138
115.155.97.193
114.247.50.2
113.110.70.47
106.117.84.98
CentOS 6.9
ASL 4.0.19-37
Top
Post Reply

Return to “Atomic Protector (formerly ASL)”