{"description": "Denial-of-service attacks are difficult to detect and prevent while maintaining\nacceptable access to authorized users. However, some traffic-shaping\nmodules can be used to address the problem. Well-known DoS protection modules include:\n<pre>mod_cband mod_bwshare mod_limitipconn mod_evasive</pre>\nDenial-of-service prevention should be implemented for a web server if such a threat exists.\nHowever, specific configuration details are very dependent on the environment and often best left\nat the discretion of the administrator.", "warnings": [], "requires": [], "conflicts": [], "values": {}, "groups": {}, "rules": {}, "platform": "", "platforms": [], "inherited_platforms": [], "cpe_platform_names": [], "title": "Use Denial-of-Service Protection Modules", "definition_location": "/aptdata/openscap/scap-security-guide/linux_os/guide/services/http/securing_httpd/httpd_use_dos_protection_modules/group.yml"}