After putting my home server online running my blog and other applications accessible from the Internet, I left it unattended for a few days and then I found that I couldn’t access my blog from the Internet any more. It has been attacked by hackers using Denial-of-service attacks. Hackers created a large number of half-open TCP connections to the server and established connections to the Apache Web Server. The latter caused the Apache Web Server’s Prefork Multi-Processing Module (MPM) to spawn the maximum number of Processes allowed. This combination brought the server performance to a stand-still. The DMZ I created appears to be holding up as I did not find any evidence on hackers breaking through my second firewall. Continue reading Defending Hacking Attacks on My Home Server
I recently purchased a useful gadget called CloudShell to house my ARM-based big.LITTLE octa core processor board called Odroid XU4 and a SATA 2.5 inch hard disk. My plan is to use it as a home server to expose services that can be accessed from the Internet. But before I open up the firewall to allow access to this server from the Internet, I want to make sure proper security is in place. The major requirement is that even if this server has been compromised, intruders cannot make use of this server to access my other home computers, tablets, mobile phones and file servers on the home network.