2014-11-19, 02:39 PM
(2014-11-19, 02:33 PM).m. Wrote: [ -> ]for disabling remote avatars, this method should still work (can't check the files right now)
It does.
While you're at it, patch your mailing as it will also give out the backend ip.
(2014-11-19, 02:33 PM).m. Wrote: [ -> ]for disabling remote avatars, this method should still work (can't check the files right now)
(2014-11-18, 06:02 AM)Jabberwock Wrote: [ -> ]Hey guys I'm in serious trouble, there is someone that keeps ddosing my website and crushing the server every time.
I've moved to another server bigger and stronger and my website still goes down.
I've CloudFlare protection and I've set it to "I'm under attack" mode, but this doesn't help!!!
I've spoke with the attacker and he wants huge money or he won't stop!!!
HELP GUYS!!!!!!!
He is using MyBB exploit to get the backend IP of the server!!!! Through the avatar URL! How to remove the exploit please...!
He put me a deadline 24 hours till he attack again. Please answer fast...!
(2014-11-23, 10:02 PM)talen_j Wrote: [ -> ]Hi if you have your own server I recommend downloading Configserver Security Firewall (CSF). It has settings which can greatly reduce the incidence and effects of a DDOS attack.
Info Here
The link for DDOS settings of CSF can be found at anandarajpandey.com/2014/04/21/how-to-prevent-ddos-attack-by-csf-firewall/.
CSF has a GUI module for CPanel and Webmin.
I use ClamAV and Linux Malware Detect on my server. Before my new site goes live I will be setting up crontabs to scan the avatar and attachment directories every 10-15 minutes and delete automatically anything they flag.
Hope this helps,
Talen
(2014-11-19, 01:15 PM)Rakes Wrote: [ -> ](2014-11-19, 11:54 AM)Marisa Wrote: [ -> ]Which location?(2014-11-18, 03:26 PM)Euan T Wrote: [ -> ]Exactly as Nathan said. If you're getting attacked, I highly recommend trying RamNode's DDoS protected IPs - even if just for a short time: https://clientarea.ramnode.com/knowledge...icle&id=85
I've been using a RamNode DDoS IP (Staminus) for a while now. They're not that great.
(2014-11-24, 03:22 PM)Rakes Wrote: [ -> ](2014-11-23, 10:02 PM)talen_j Wrote: [ -> ]Hi if you have your own server I recommend downloading Configserver Security Firewall (CSF). It has settings which can greatly reduce the incidence and effects of a DDOS attack.
Info Here
The link for DDOS settings of CSF can be found at anandarajpandey.com/2014/04/21/how-to-prevent-ddos-attack-by-csf-firewall/.
CSF has a GUI module for CPanel and Webmin.
I use ClamAV and Linux Malware Detect on my server. Before my new site goes live I will be setting up crontabs to scan the avatar and attachment directories every 10-15 minutes and delete automatically anything they flag.
Hope this helps,
Talen
That isn't going to help you jack orange if you're getting network attacked tbh.
(2014-11-25, 02:23 PM)talen_j Wrote: [ -> ](2014-11-24, 03:22 PM)Rakes Wrote: [ -> ](2014-11-23, 10:02 PM)talen_j Wrote: [ -> ]Hi if you have your own server I recommend downloading Configserver Security Firewall (CSF). It has settings which can greatly reduce the incidence and effects of a DDOS attack.
Info Here
The link for DDOS settings of CSF can be found at anandarajpandey.com/2014/04/21/how-to-prevent-ddos-attack-by-csf-firewall/.
CSF has a GUI module for CPanel and Webmin.
I use ClamAV and Linux Malware Detect on my server. Before my new site goes live I will be setting up crontabs to scan the avatar and attachment directories every 10-15 minutes and delete automatically anything they flag.
Hope this helps,
Talen
That isn't going to help you jack orange if you're getting network attacked tbh.
Thanks for the advice Rakes. CSF was recommended to me on Web Hosting Talk. Fairly new to Linux and just learning. Maybe I was wrong to offer advice. Apologies
Talen
(2014-11-18, 06:02 AM)Jabberwock Wrote: [ -> ]Hey guys I'm in serious trouble, there is someone that keeps ddosing my website and crushing the server every time.
I've moved to another server bigger and stronger and my website still goes down.
I've CloudFlare protection and I've set it to "I'm under attack" mode, but this doesn't help!!!
I've spoke with the attacker and he wants huge money or he won't stop!!!
HELP GUYS!!!!!!!
He is using MyBB exploit to get the backend IP of the server!!!! Through the avatar URL! How to remove the exploit please...!
He put me a deadline 24 hours till he attack again. Please answer fast...!
(2014-11-27, 05:25 AM)new1 Wrote: [ -> ]"He is using MyBB exploit to get the backend IP of the server!!!! Through the avatar URL!"
Can someone tell me what exactly this means and how a avatar url can do such?