Server help please
 

One of my clients is being subjected to a masssive brute force attack today. His server has been crawling all day and he can't figure out how to stop it.

Is there a way to limit the number of failed login attempts or limit them to 1 every 30 seconds? Possibly a server configuration?

Thank you in advance

strongbox

http://www.bettercgi.com/strongbox/

Definately talk to Ray - he's top notch

Already using it.

Thanks :thumbsup

i prefer www.proxypass.com

With proxypass my server has withstood over a million attempts per hour and had no visible slowdown

proxypass blocks the open proxies people use in attacks before it even hits your server

host should be able to clear that up

Server OS? Linux I assume. By client I assume you mean you're the host. My first resposne was to call your hosting company. I have picked up a lot of usefull info at rackshack even though I don't host there.

Situations like this, ya need somebody smart (smarter than me). You know a ton of people baddog. Do you have a working relationship with smokey? I'd have to hit the boards and support sites like you are doing already. Problem is time is of the essence...

If you had a couple of days to reslove it, options come to mind. A right now stop = panic attack. Other problem is you might stop this spider and stop others that you want.

Good luck mon. The solution is of major interest here.

Strongbox had some usefull info. Have some dumb ideas if you want 'em, but you're prolly way ahead of me on them.

Thanks for that link

proxypass