DOS challenges with ITsecurity.co.uk

TOPICS:

Posted By: Sorin Mustaca October 17, 2016

We were faced on ITSecurity.co.uk with a problem which was at first out of our control: “somebody” is creating, probably without knowing, a denial of service on this website. The consequence was that it was “consuming” the accesses to the database behind this WordPress site.

The ISP hosting the website limits the accesses to 50K a day. More accesses require a high plan, three times more expensive.

The “somebody” is an IP from Canada which, considering the fact that it is retrying every second, it is most probably a script out of control.

First thing, I contacted the owner of the IP address at their abuse email. I didn’t receive any kind of feedback from them and I don’t think that they did anything about it.

Second, I installed the Wordfence plugin and instructed it to block that IP address: 72.55.186.72

 

The reason why I write this post is related to Denial Of Service attacks in general:

  • What do you do when you’re under attack (DOS) ?
  • What about a distributed attack (DDOS)?

I remember the case of Brian Krebs who had his site hosted on Akamai hit with one of the largest DDOS in recorded history  (link).

 

Do you have experience with services like Cloud Flare, Incapsula, Torbit, Amazon CloudFront, others?

Personally, I am a quite stressed that I have to give up my DNS to a foreign entity. However, these companies are respectable ones and I have no doubt that they really do what they promise. Nevertheless, I would recommend a paid account with some support.

 

A new initiative from Google is called Project Shield: https://projectshield.withgoogle.com/public/

Project Shield is a free service that uses Google technology to protect news sites and free expression from DDoS attacks on the web.

 

The post DOS challenges with ITsecurity.co.uk appeared first on ITsecurity.


© Copyright 2016 Sorin Mustaca, All rights Reserved. Written For: Sorin Mustaca on Cybersecurity


Check www.endpoint-cybersecurity.com for seeing the consulting services we offer.

Visit www.itsecuritynews.info for latest security news in English
Besuchen Sie de.itsecuritynews.info für IT Sicherheits News auf Deutsch

About the Author

Sorin Mustaca
Sorin Mustaca, (ISC)2 CSSLP, CompTIA Security+ and Project+, is working since over 20 years in the IT Security industry and worked between 2003-2014 for Avira as Product Manager for the known products used by over 100 million users world-wide. Today he is CEO and owner of Endpoint Cybersecurity GmbH focusing on Cybersecurity, secure software development and security for IoT and Automotive. He is also running his personal blog Sorin Mustaca on Cybersecurity and is the author of the free eBook Improve your security .
%d bloggers like this: