Page 1 of 1
response to denial of service
Posted: Tue Jan 31, 2012 4:36 pm
by Don Chambers
This is a first for me - a site has been experiencing a denial of service attack with over 19,000+ unique IP addresses hitting the same entry. These are not referred requests - they are directly calling that entry (the most recent as luck would have it). I set the entry back to draft via phpmyadmin, but the DOS is still tying up the server. Is there an easy solution to this, or is my only choice to block those ip addresses, some of which may be legitimate?
Re: response to denial of service
Posted: Tue Jan 31, 2012 4:56 pm
by Timbalu
20K unique IPs is no friendly fire. Shut down that server for a while.
If that is a normal web blog - nobody has time and money enough to react without the server going down. (Even cloudhosting would need a lot of money to withstand...!)
Re: response to denial of service
Posted: Tue Jan 31, 2012 6:26 pm
by Don Chambers
It is cloud hosting... and they blocked a bunch of the offending IPs at their firewall... I just wondered what, if anything, I could have done in the time it took the service provider to implement their own solution.
Re: response to denial of service
Posted: Wed Feb 01, 2012 12:11 am
by onli
Enabling the cache-plugin could-have helped, disabling all plugins executed on pageload, blocking the ips.