Top Menu

Jump to content
Home
    Modules
      • Projects
      • Activity
      • Work packages
      • Gantt charts
      • Calendars
      • Team planners
      • Boards
      • News
    • Getting started
    • Introduction video
      Welcome to OpenProject Community
      Get a quick overview of project management and team collaboration with OpenProject. You can restart this video from the help menu.
    • Help and support
    • User guides
    • Videos
    • Shortcuts
    • Community forum
    • Enterprise support
    • Additional resources
    • Data privacy and security policy
    • Digital accessibility (DE)
    • OpenProject website
    • Security alerts / Newsletter
    • OpenProject blog
    • Release notes
    • Report a bug
    • Development roadmap
    • Add and edit translations
    • API documentation
  • Sign in
      Forgot your password?

      or sign in with your existing account

      Google

Side Menu

  • Overview
  • Activity
    Activity
  • Roadmap
  • Work packages
    Work packages
  • Gantt charts
    Gantt charts
  • Calendars
    Calendars
  • Team planners
    Team planners
  • Boards
    Boards
  • News
  • Forums
  • Feature tour
    Feature tour

Content

You are here:
  1. Forums
  2. Support Installation & Updates

Problem with DDOS OVH and Memchached

Added by Diego Fabiano over 4 years ago

Hi ! Im new in openproject, and with a fresh installation, ovh is blocking the ip of vps (antihack measure) , because says that we are making DDOS ??  

I notice that always is in 11211 port, is it memcached right ?

Im not an expert, so 2 questions:

  1. as we are an small team (10 people) how can i disable memcached, i think we dont need it
  2. can i implement an iptables or similar rule to disable this port ? how to do it ?
The IP address MYIPHERE had to be blocked by our services due to
the various alerts received.

You can find the logs brought up by our system which lead to this alert.

- START OF ADDITIONAL INFO -

Attack detail : 13Kpps/150Mbps
dateTime                   srcIp:srcPort           dstIp:dstPort           protocol flags     packets      bytes reason               
2020.05.04 21:40:10 CEST   MYIPHERE:11211      61.220.191.135:46602    UDP      ---         16384   23691264 ATTACK:UDP           
2020.05.04 21:40:10 CEST   MYIPHERE:11211      61.220.191.135:27731    UDP      ---         16384   23691264 ATTACK:UDP           
2020.05.04 21:40:10 CEST   MYIPHERE:11211      61.220.191.135:16635    UDP      ---         16384   23691264 ATTACK:UDP           
2020.05.04 21:40:10 CEST   MYIPHERE:11211      117.27.239.33:60956     UDP      ---         16384   23691264 ATTACK:UDP

Replies (2)

RE: Problem with DDOS OVH and Memchached - Added by Diego Fabiano over 4 years ago

i find solution: https://docs.ovh.com/es/dedicated/proteger-servidor-con-servicio-memcached/

RE: Problem with DDOS OVH and Memchached - Added by Shayn ecatern 11 months ago

Dealing with DDoS issues can be quite challenging, especially with OVH's strict security measures. Memcached can sometimes be exploited for DDoS attacks, and it's good that you're looking into addressing this.
To disable Memcached, you can usually do it via the configuration files on your server. Locate the Memcached configuration file, which is often named memcached.conf or memcached.conf.php, and set the service to not run or comment out the relevant lines. Keep in mind that this process might vary depending on your server setup.
If you're looking for more tech-related information and solutions, you might find DarkVR to be a valuable resource.

  • (1 - 2/2)
Loading...