[ic] Malicious DDoS attack causing interchange to fail Extent of problem
DB
db at m-and-d.com
Fri Aug 8 22:04:09 UTC 2025
Oh sorry - did not mean to exclude Gert from the list of legends :)
DB
On 8/7/25 4:39 PM, DB wrote:
> I have been using Cloudflare for this on their free plan. I have a
> script that checks the server CPU load, and if above a threshold, sets
> Under Attack mode to on for 3 hours via and API call.Works pretty well
> and costs nothing.
>
> DB
>
> On 8/7/25 2:45 PM, davideth--- via interchange-users wrote:
>> Checked the usertrack log that was cleared and restarted 5 Aug 2025
>> ( 3 days ago ).
>>
>>
>> I log VIEWPAGES to usertrack, to see what customers look at but ...
>>
>> there was 2.2 million lines in 3 days, 99 percent were 1 time accesses
>> I hav to pages VIEWPAGE = ..... and the pages included pages that
>> are not normally accessible.
>>
>> That is about 700,000 accesses a day ( averaging 480 pages a minute or
>> 8 pages a second ) while the normal number of visitors is between 20
>> to 40 a day.
>>
>> because of this, it is often 20 seconds up to 2 minutes or longer for
>> a page to load for a legitimate user. ( Note also that this is for 1
>> site of 80 on this server )
>>
>> I sorted the file by IP in a spreadsheet and there was many that only
>> accessed 1, 2, or 3 pages in the 3 days period.
>>
>> First, I would go broke using something like Recaptcha or cloudfare.
>> Just can not afford.
>>
>> Would really appreciate some help and this is important to update in
>> interchange because sooner or later this sort of malicious attack
>> might happen to other Interchange sites.
>>
>>
>> David
>>
>>
>>
>>
>>
>> _______________________________________________
>> interchange-users mailing list
>> interchange-users at interchangecommerce.org
>> https://www.interchangecommerce.org/mailman/listinfo/interchange-users
>
More information about the interchange-users
mailing list