Denial of Service Protection
In previous chapters, we focused on keeping threat actors out and considered what we can do when our defenses are breached. However, it is still possible for a threat actor to take our Moodle offline simply by sending the web server too many requests for it to cope with. This is a so-called denial of service (DoS) attack. If the requests are originating from multiple servers across the globe, then this is a distributed denial of service (DDoS) attack. In this chapter, we will discover that building a robust and resilient Moodle server will go a long way to defending against DoS and DDoS attacks.
In this chapter, you will do the following:
- Learn how to significantly improve server performance using the PHP FastCGI Process Manager (PHP-FPM)
- Learn how to use JMeter to benchmark your Moodle server and test for resilience
- Install and tune the
mod_evasive
Apache plugin - Identify threat actors from server access logs
Note that by engaging...