hi,


My story:

I am using a vbulletin for interlocution communal. Some people don’t believe in freedom. And want to destroy my board.
First I hosted with (hostrocket) then they stopped my site for: “too many connection on mysql”.
I asked my friends and they told me that there are some people how are doing dos attacks and flooding the mysql database, one of the ways is copying a link of a thread and order the link with a high speed line. (More than 1000 in one minute
)
This will let the provider stop the site.
And that what happened.
I sent to the provider asking him to protect my site from flooding and attacking the mysql. And the answer was:”we can’t do that.”
I searched for another host, and I found (http://www.liquidweb.com).
First I sent asking them about my problem and if they can protect my site, the answer was:
“We can protect the site from DOS, and flooding.”
I singed up with them. After 7 day they stopped my site!
The reason was: “"Suspended for Massive Mysql process's Load avg 145.xx"
”

I sent to them: then way you said first: “We can protect the site from DOS, and flooding.”
But no answer until now (2 days).

So I started searching for providers and asking them. Some said like the second provider, but I can’t trust them. And some said: “sorry, we can’t help you.”

is there a solution for this problem?

Hi,

Im not sure about the specifics of your old account with us without the domain name, but it sounds like you might be approaching the point where you would want to start checking out lower end dedicated systems. Check out rackshack or something similar.

-Brendan

the domain name was :

d-sunnah.com

I have to agree with HRBrendan...it really sounds like you're ready for a dedicated box.

If all they are doing is downloading a page many times you could block their ip number.

In middle east we brows internet via proxy. That means the IP change every time you login.
It is very simple to change the IP of your pc, just disconnect and login.
If you block the IP 212.118.25.15 , any person may have that number.

This what I call : a big problem :)

Not really...that may cut off a few people, but they can just stop using a proxy...but since this is a website, if you have more than a few people posting, its not going to cut off your entire audience, just a very small chunk...also with dynamic IPs, its useful to block the whole subnet of an IP.

i don't know why this problem can make you change host?
if i were you, i would block the same message .. that its!!!

I think this could possible be solved by using some php programming, using a session object you could put the time of each request into an array, and if the requests are too often from that user then stop the rest of the page being executed. Might just work

Another way to do would be to log the ip numbers and as soon as too many requests from that ip happen in 1 mnute it could be automatically blocked.

Use mod_throttle, limit maximum number of request per IP per period. If an IP start doing DoS, it will be blocked automatically. But this requires modification to Apache configuration, so you will need to ask your provider. Or you need a dedicated server.

zhai:

how can you know the meassage? or the IP that doing tha flooding.



I think this could possible be solved by using some php programming, using a session object you could put the time of each request into an array, and if the requests are too often from that user then stop the rest of the page being executed. Might just work

can you name a scripte?


priyadi:

thanks, i will search for the command.

There isnt any php scripts that already do it, you would have to write your own or get someone to do it for you. I would do it, but unfortunately i dont have any free time.

mod_throttle (as mentioned above) is the best solution.

Depending on your provider's setup you could potentially have some firewall functionality blocking excessive requests to port 80, but mod_throttle for Apache will be a much more targetted approach for your needs. It's free, available at apache.org, and relatively easy to install regardless of the server configuration.

Regards,

-Doc

vBulletin does have a flood control system in the control panel, where you can define a minimum number of seconds between posts by the same user.

Are they posting, or searching, or something else?