I’m using SuSe-Linux 12 server however, suddenly the server has started sending huge traffic in LAN/Internet and became very slow thus, here is the 3 steps to fix Syn / DDOS attack in Linux Server.
3 steps to fix Syn / DDOS attack in Linux Server
I have checked the system processes to find out why the server resouces are getting fully utilized and i observed that one process is running with random name like “ewxccrxe” or “wcxxetsq” and the same process is utilizing the heavy resouces of server and sending unlimited traffic to internet.
When trying to kill the process then again the same process will start with new name.
So, Below are the steps to fix this issue.
1. Execute “top” command to check the running processes and its resource utilization.
2. kill these processes with below command:
kill -STOP 20198 (PID)
3. Go to “”/etc/init.d/rc1.d” location and delete the files which are recently generated by these process.
rm -rf S90* (Directory Name)
After executing the above commands the server started performing properly and stopped sending unwanted traffic to internet.