Denial Of Service Attack Update

Neo · June 12, 2019, 4:48pm

Dear All,

We were hit with a denial of service (DOS) attack today beginning around June 12th 2019 @ 01:27:51 PM from an IP address registered to "RACKWEB-NET" in Bulgaria.

I was notified about this around June 12th 2019 @ 03:05 PM and did some log file analysis and discovered how the attack was happening and wrote some code to mitigate against the attack.

I think the site was down for about 1 hour and 19 minutes because of the attack.

The code I wrote will filter against these kinds of DOS attacks in the future.

Thank you for your support,

Neo

EDIT: In addition to the PHP changes, I made some changes to the DB configuration as well to help insure this kind of attack cannot succeed in the future.

Neo · June 13, 2019, 5:27am

Still have some issues with bots... will keep a close eye on it.

Neo · June 15, 2019, 12:59am

Today (Saturday), have made some MySQL configuration changes, which I hope will help mitigate DB issues when hit by "rogue bots" who do not "follow the rules" (robots.txt).

That's all the MySQL DB changes for this weekend.

Neo · June 15, 2019, 11:24pm

Update:

MySQL config changes seems to have "lowered the temperature" of the CPU a bit, and MySQL is using less CPU.

Let's see how this holds during the busy weekdays.

Neo · June 18, 2019, 3:35am

Still tuning MySQL.