DOS challenges with ITsecurity.co.uk

We were faced on ITSecurity.co.uk with a problem which was at first out of our control: “somebody” is creating, probably without knowing, a denial of service on this website. The consequence was that it was “consuming” the accesses to the database behind this WordPress site.

The ISP hosting the website limits the accesses to 50K a day. More accesses require a high plan, three times more expensive.

The “somebody” is an IP from Canada which, considering the fact that it is retrying every second, it is most probably a script out of control.

First thing, I contacted the owner of the IP address at their abuse email. I didn’t receive any kind of feedback from them and I don’t think that they did anything about it.

Second, I installed the Wordfence plugin and instructed it to block that IP address: 72.55.186.72

 

The reason why I write this post is related to Denial Of Service attacks in general:

  • What do you do when you’re under attack (DOS) ?
  • What about a distributed attack (DDOS)?

I remember the case of Brian Krebs who had his site hosted on Akamai hit with one of the largest DDOS in recorded history  (link).

 

Do you have experience with services like Cloud Flare, Incapsula, Torbit, Amazon CloudFront, others?

Personally, I am a quite stressed that I have to give up my DNS to a foreign entity. However, these companies are respectable ones and I have no doubt that they really do what they promise. Nevertheless, I would recommend a paid account with some support.

 

A new initiative from Google is called Project Shield: https://projectshield.withgoogle.com/public/

Project Shield is a free service that uses Google technology to protect news sites and free expression from DDoS attacks on the web.

 

The post DOS challenges with ITsecurity.co.uk appeared first on ITsecurity.


© Copyright 2016 Sorin Mustaca, All rights Reserved. Written For: Sorin Mustaca on Cybersecurity

Check www.mustaca.com for the IT Consulting services I offer.
Visit www.itsecuritynews.info for latest security news in English
Besuchen Sie http://de.itsecuritynews.info für IT Sicherheits News auf Deutsch

About the Author

Sorin Mustaca
Sorin Mustaca, (ISC)2 CSSLP, CompTIA Security+ and Project+, is working since year 2000 in the IT Security industry and worked between 2003-2014 for Avira as Product Manager for the known products used by over 100 million users world-wide. Today he is an independent IT Security Consultant focusing on Cybersecurity, secure software development and security for IoT and Automotive. He is also running his personal blog Sorin Mustaca on Cybersecurity and is the author of the free eBook Improve your security .

By continuing to use the site, you agree to the use of cookies. more information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.

Close