Script to trap more than 5 hits per second?

Forum Moderators: DixonJones

Message Too Old, No Replies

Script to trap more than 5 hits per second?

I tried to find sucha script but....

dolcevita

6:31 pm on Feb 17, 2005 (gmt 0)

I need a trap script on a site to ban any IP that hits a page more than 5 times in a second.(or open several 50 pages within minute or configurable by user self) (This has happened to me a several time.Mostly from Chinese ip's and once from User_agent "Mega Moose" that made 160GB of bandwidth within 2 days!?)
Actually i got very oft problems and CPU load going higher making a site slow from this annoying hits.
I use already trap.pl script that works great but to prevent problem described above i need another script that stop these ugly leechers/spammers who eat bandwidth, make CPU load very high and slow site.
I tried search function but couldn find anything on this great forum.
If someone have such a script i would appreciate if he can post code.

Thanks

great_9

1:19 pm on Feb 18, 2005 (gmt 0)

Hm... Your IP hit webmasterworld more than five times in one second when you clicked the "Post New Topic" button.

Every image, CSS class, javascript and the file itself is a hit.
You should then make web pages with less than 5 components. After that, it's easy to cut-off five-hitters :)

Btw. you should firewall those chinese IPs. I had the same problems after only two hours that my server was online. (there were NO WEB SITES on it then).

PM me if you need help with setting up your server.

gloomy

2:00 pm on Feb 18, 2005 (gmt 0)

If you use apache web server this could help: [spambot.sourceforge.net...]

dolcevita

5:02 pm on Feb 20, 2005 (gmt 0)

Thanks for answers. You probably knew what i mean great_9 with more than 5 cliks.It is actually clicking on same link 5 times or clicking on several link within second.
I do not see loading of page components (Css, image, javascript etc) as clicking.
But back to the problem. I'm not behind server so i would like ohter sollution for this problem.

yesterday happend that someone hammering on files inside cgi-bin directory.
Server Load raised to above 100. The admin of server told me that guestbook inside cgi-bin make higher process and 2 days a go it was counter (also inside cgi-bin).

I've protected cgi-bin directory with checking referer (.htaccess) only from my site but actually i heard that there is around one tool who make referer from your site for every hits.

If your directory is [example.com...]
tool hits your site direct but cheating server with making same referer [example.com...] or referer from your site [example.com...]

How to protect your website when someone cheat referer with example above?

Thanks

[edited by: Woz at 12:27 pm (utc) on Feb. 21, 2005]
[edit reason] examplified URLs [/edit]

andrew2

2:12 am on Feb 23, 2005 (gmt 0)

Have a look at this thread:
[webmasterworld.com...]

dolcevita

11:19 pm on Feb 24, 2005 (gmt 0)

Thanks