WordPress.org

Forums

Ddos Attack :( (7 posts)

  1. okann
    Member
    Posted 8 years ago #

    I am being attack with that request.
    "/index.php??login=Test&email=test@test.com&text=Simple "

    How can i prevent this.
    i stopped registration, posting comment.
    But i cant prevent this.
    Please help me Thats my 5. host company.

  2. drmike
    Member
    Posted 8 years ago #

    I'd block the Ip address. Link

  3. okann
    Member
    Posted 8 years ago #

    Thanks, i'd block too, but they can find thousands of proxies.I have to find another solution.

  4. PozHonks
    Member
    Posted 8 years ago #

    On a .htaccess file, add this:

    RewriteEngine On
    RewriteCond %{REQUEST_METHOD} (GET|POST) [NC]
    RewriteCond %{QUERY_STRING} ^login=.*$ [OR]
    RewriteCond %{QUERY_STRING} ^(.*)email=(.*)$
    RewriteCond %{QUERY_STRING} ^(.*)text=(.*)$
    RewriteRule (.*) - [F]

    Beware, it should not block your website for legal queries, so you have to adapt it to this ddos attack. It blocks everything after "/index.php?". So, you need to add the right arguments, and you are protected. But, do not use arguments used by WordPress, some functions will not work then. I believe that "login" and "text" are not used by wordpress.

  5. okann
    Member
    Posted 8 years ago #

    Thanks for your help, i added it to .htaccess.I m waiting for attacks now. I hope it will be help.

  6. okann
    Member
    Posted 8 years ago #

    it doesnt help me. attacker can easily change this values and attack again. anyone know something that can block this type of attacks ? Please help me i changed my host again... :((

  7. Pizdin Dim
    Member
    Posted 8 years ago #

    "it doesnt help me. attacker can easily change this values and attack again."

    Yes, it does help you. Of course the attacker can change these values but so what? When they do, make the appropriate changes. In the meantime, study the htaccess rules and see if you can come up with something better. When you do, let us know, ok?

Topic Closed

This topic has been closed to new replies.

About this Topic