[ic] Malicious DDoS attack causing interchange to fail Extent of problem

gert at 3edge.com gert at 3edge.com
Sat Aug 9 15:04:20 UTC 2025 

I know my place DB 😉

Crazy for those attacks and glad that you have been able to fight them, a waste of valuable time, but what can you do.


-----Original Message-----
From: interchange-users <interchange-users-bounces at interchangecommerce.org> On Behalf Of DB via interchange-users
Sent: Saturday, August 9, 2025 1:04 AM
To: davideth--- via interchange-users <interchange-users at interchangecommerce.org>
Cc: DB <db at m-and-d.com>
Subject: Re: [ic] Malicious DDoS attack causing interchange to fail Extent of problem

Oh sorry - did not mean to exclude Gert from the list of legends :)

DB

On 8/7/25 4:39 PM, DB wrote:
> I have been using Cloudflare for this on their free plan. I have a 
> script that checks the server CPU load, and if above a threshold, sets 
> Under Attack mode to on for 3 hours via and API call.Works pretty well 
> and costs nothing.
> 
> DB
> 
> On 8/7/25 2:45 PM, davideth--- via interchange-users wrote:
>> Checked the usertrack log that was cleared and restarted 5 Aug 2025 ( 
>> 3 days ago ).
>>
>>
>> I log VIEWPAGES to usertrack, to see what customers look at but ...
>>
>> there was 2.2 million lines in 3 days, 99 percent were 1 time 
>> accesses I hav to pages  VIEWPAGE =  .....  and the pages included 
>> pages that are not normally accessible.
>>
>> That is about 700,000 accesses a day ( averaging 480 pages a minute 
>> or
>> 8 pages a second )  while the normal number of visitors is between 20 
>> to 40 a day.
>>
>> because of this, it is often 20 seconds up to 2 minutes or longer for 
>> a page to load for a legitimate user. ( Note also that this is for 1 
>> site of 80 on this server )
>>
>> I sorted the file by IP in a spreadsheet and there was many that only 
>> accessed 1, 2, or 3 pages in the 3 days period.
>>
>> First, I would go broke using something like Recaptcha or cloudfare. 
>> Just can not afford.
>>
>> Would really appreciate some help and this is important to update in 
>> interchange because sooner or later this sort of malicious attack 
>> might happen to other Interchange sites.
>>
>>
>> David
>>
>>
>>
>>
>>
>> _______________________________________________
>> interchange-users mailing list
>> interchange-users at interchangecommerce.org
>> https://www.interchangecommerce.org/mailman/listinfo/interchange-user
>> s
> 

_______________________________________________
interchange-users mailing list
interchange-users at interchangecommerce.org
https://www.interchangecommerce.org/mailman/listinfo/interchange-users

More information about the interchange-users mailing list