How to protect against DDoS?

Collapse
X
 
  • Time
  • Show
Clear All
new posts
  • RachelBlackG
    Elysium
    • Feb 2011
    • 1037

    #1

    Tech How to protect against DDoS?

    Hello,

    do you guys have any experience with DDoS attacks? Are there any ways how to protect my VPS? I know about Anti-DDoS service, but its expensive for me. ATM I just manually ban suspicious IP's. But that's not enough.

    Thanks
  • dirtymind
    Confirmed User
    • May 2008
    • 2348

    #2
    You can use several things to protect your vps, but it is best to have your hosting company do this. We do this all the time for our clients and we also monthly scan their servers to make sure nothing happens to it. If you have a good host, than they will do this for you or help you with it.

    If your host sucks, come talk to us
    skype: codercarlos

    Comment

    • RachelBlackG
      Elysium
      • Feb 2011
      • 1037

      #3
      I am with WebAir and have unmanaged VPS. They charge extra $ for managed servers which I can't afford at this moment. You have better prices and plans as I can see. Looks very interesting for me.

      Anyway I have my contract for another 9 months so I need to fix it. There's a lot of tutorials about firewalls, mod_security and other mod_'s. So I am trying to find as much useful info as I can see and give it to my developer.

      Comment

      • CPA-Rush
        small trip to underworld
        • Mar 2012
        • 4927

        #4
        u are under attack ? or maybe just trying to protect yourself from possible ddos?
        regularly people use cloudflare ... for vps i didn't research .


        yes banning ips is not low level solution

        automatic exchange - paxum , bitcoin,pm, payza

        . daizzzy signbucks caution will black-hat black-hat your traffic

        ignored forever :zuzana designs

        Comment

        • RachelBlackG
          Elysium
          • Feb 2011
          • 1037

          #5
          I am under every-day attack. Sometimes it's so strong that I can't even believe it.

          Yes, I know about Cloudflare and other similar services. I am not in position to afford it right now. I have banned many IP's, but it always come from different one. So this doesn't help at all.

          Comment

          • CPA-Rush
            small trip to underworld
            • Mar 2012
            • 4927

            #6
            Originally posted by RachelBlackG
            I am under every-day attack. Sometimes it's so strong that I can't even believe it.
            wow that's ridiculous


            Yes, I know about Cloudflare and other similar services. I am not in position to afford it right now. I have banned many IP's, but it always come from different one. So this doesn't help at all.
            i see...maybe there are codes online that could help u out i'm pretty sure some are available for free

            automatic exchange - paxum , bitcoin,pm, payza

            . daizzzy signbucks caution will black-hat black-hat your traffic

            ignored forever :zuzana designs

            Comment

            • CPA-Rush
              small trip to underworld
              • Mar 2012
              • 4927

              #7
              moving to another vps is smart choice too... seems ur vps is known to those attackers-network

              automatic exchange - paxum , bitcoin,pm, payza

              . daizzzy signbucks caution will black-hat black-hat your traffic

              ignored forever :zuzana designs

              Comment

              • RachelBlackG
                Elysium
                • Feb 2011
                • 1037

                #8
                Originally posted by CPA-Rush
                moving to another vps is smart choice too... seems ur vps is known to those attackers-network
                I think the same. I have another mainstream project coming, so it will be hosted somewhere else and I will close this one when contract ends. Anyway until then I want to try as much as I can to deny access to my server for these fuckers.

                Comment

                • CPA-Rush
                  small trip to underworld
                  • Mar 2012
                  • 4927

                  #9
                  Originally posted by RachelBlackG
                  I think the same. I have another mainstream project coming, so it will be hosted somewhere else and I will close this one when contract ends. Anyway until then I want to try as much as I can to deny access to my server for these fuckers.
                  find one with ddos protection ,sure depends how extensive are the attacks
                  those links provide some good info ...

                  cloudflare Free plan can be good for save ddos attack? | Web Hosting Talk

                  virtual machine - VPS hosting and DDoS attacks prevention - Super User

                  webserver - What methods are there of protecting a VPS from DDOS attacks? - Information Security Stack Exchange

                  automatic exchange - paxum , bitcoin,pm, payza

                  . daizzzy signbucks caution will black-hat black-hat your traffic

                  ignored forever :zuzana designs

                  Comment

                  • DonJon69
                    Confirmed User
                    • Nov 2014
                    • 475

                    #10
                    I thought cloud flare was free.
                    Make Money With Adult Websites - Free Step by Step Guide!

                    Comment

                    • RachelBlackG
                      Elysium
                      • Feb 2011
                      • 1037

                      #11
                      Thanks for links. :-)

                      Cloudflare is free in the very basic plan.

                      Comment

                      • brandonstills
                        Confirmed User
                        • Dec 2007
                        • 1964

                        #12
                        Go with a hosting company that has DDOS protection. Ultimately though if it looks like legit traffic there is no way to block it without blocking legitimate traffic. You can mitigate it by making your site resilient and scalable.

                        Brandon Stills
                        Industry and programming veteran
                        [email protected] | skype: brandonstills | ICQ #495-171-318

                        Comment

                        • jimmycastor
                          So Fucking Banned
                          • Jul 2006
                          • 342

                          #13
                          u running wordpress ?
                          wordpress is vulnerable and a simple script kiddie can be pain in the ass and eat up your server ressources, if u dont have basic protections like firewall, slowloris protection etc,
                          doesnt even have to be a ddos attack,


                          just dig into some good firewall settings, .htacces protection and go further from there
                          check your logs for malicious behaviour and post request and ban ips handish on cloudflare, that can help , is free and doesnt eat up to much time

                          big ddos attacks with thousands of ips do cost and eat up ressources, ask yourself why someone would invest time , money to attack just you, its maybe just a couple of script kiddies checking your machine for vulnerablity and some unexperienced webmaster might thing ouch this is a huge ddos attack

                          you dont need an atomic bomb to kill some insects

                          Comment

                          • RachelBlackG
                            Elysium
                            • Feb 2011
                            • 1037

                            #14
                            I have WP and custom made sites. I ban IP's from logs on regular basis. Sometimes it can go up to 500 MB per second (it decreased since I started with IP ban...mostly it's about 10-50MB/sec). I don't have big sites or something that would compete with someone. It's weird.

                            Thanks for another useful info.

                            I'd rather have that A-Bomb for them

                            Comment

                            • Barry-xlovecam
                              It's 42
                              • Jun 2010
                              • 18083

                              #15
                              Change your DNS to your registrar's DNS server with the registrar's default page.Take the site down for a day.

                              If it doesn't stop: copy with new names and remove the files they are requesting so fast causing the ddos ...

                              Comment

                              • supperball
                                Registered User
                                • Jul 2015
                                • 3

                                #16
                                Originally posted by DonJon69
                                I thought cloud flare was free.
                                Me too :D:D
                                Best Porn 69

                                Comment

                                • dirtymind
                                  Confirmed User
                                  • May 2008
                                  • 2348

                                  #17
                                  you should have a look at csf firewall and fail2ban to start with, then make sure yuo ssh port is update, lockout the root and use a custom user. vclam to scan your server on mailware. If you know where your traffic is coming from you can lock out ips from certain countries.

                                  There is a lot of free stuff you can do.
                                  skype: codercarlos

                                  Comment

                                  • NameName
                                    Confirmed User
                                    • Apr 2014
                                    • 25

                                    #18
                                    I'm using Cloudflare. I also installed csf firewall on my vps, enable some function then it can block suspicious ip.

                                    Comment

                                    • jimmycastor
                                      So Fucking Banned
                                      • Jul 2006
                                      • 342

                                      #19
                                      most suspcious script kiddies , scrapers and other malicious behaviour are hiding behind cloudflare, while normal users with their assigned ips from their networks wont use cloudflare, so its sometime helpful , if your box is under stress, to ban cloudflare subnetranges and you see your box
                                      taking a breath instantly
                                      its more like a antibiotic method, not really surgical but if your mysql dropsout all the time due to heavy load and you want to keep your site up it might help

                                      Comment

                                      • RachelBlackG
                                        Elysium
                                        • Feb 2011
                                        • 1037

                                        #20
                                        Thanks guys for more info. Cloudflare seems to help. I haven't had any spike for a few days. Like wow! But it's true that I search logs every day and ban all suspicious IP's. That must have some positive effect. I can also confirm that majority of such attempts are made from China. Next is csf firewall and some modules.

                                        Comment

                                        • jscott
                                          jscizzle
                                          • Feb 2001
                                          • 25412

                                          #21
                                          Hate to say but i was pretty much told that there is no affordable protection from ddos..... not is there any way to find/prosecute the attacker

                                          This was years ago.... i hope things have gotten better
                                          “If you think tough men are dangerous, wait until you see what weak men are capable of.”
                                          —Jordan B. Peterson

                                          Listen to Pomp tell why is Bitcoin important

                                          Comment

                                          • anexsia
                                            Confirmed User
                                            • May 2010
                                            • 5735

                                            #22
                                            Get a cheap DDOS protected VPS and then setup a GRE tunnel to your main server

                                            Comment

                                            • PornSEO
                                              Confirmed User
                                              • Dec 2011
                                              • 398

                                              #23
                                              Cloudflare can give u some basic protection if you are considering free options. Its also easy to configure and setup.
                                              FREE SEO HELP DESK

                                              If you have any questions or need any advice related to SEO of porn or mainstream websites, PM them to me. I will answer them in my spare time.

                                              Comment

                                              • JayX
                                                Confirmed User
                                                • Dec 2015
                                                • 18

                                                #24
                                                I'm under a massive DDOS attack and even with the paid version of cloudflare it isn't helping.... either I set their security level to highest (called under attack mode) and it cuts my seo traffic, or I lower it one notch and these hacker cunts max my CPU. There are over 340+ sites attacking, here are just a few:
                                                paidverts.com
                                                twodollarclick.com
                                                clixsense.com
                                                neobux.com
                                                easyhits4u.com
                                                mysteryptc.com
                                                buxers.net
                                                revenuesharefive.com


                                                By the way I don't advertise for my site so these all look like legit referrals but they use all my server resources until it crashes.

                                                Any REAL solutions to this BS would be very helpful.

                                                Thanks

                                                Comment

                                                Working...