The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

What to do about Ddos attacks to my server?

Discussion in 'Security' started by howzit, May 15, 2012.

  1. howzit

    howzit Member

    Joined:
    Feb 20, 2012
    Messages:
    22
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Howzit! Free Advertising Classifieds
    cPanel Access Level:
    Website Owner
    Howzit...

    Had a Ddos attack last week...
    What is the best action to take?

    Thanks...
     
  2. cPanelTristan

    cPanelTristan Quality Assurance Analyst
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,623
    Likes Received:
    21
    Trophy Points:
    38
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
    You might consider enabling mod_qos for such attacks. Otherwise, DDoS-deflate and CSF both have options for attacks. These really only work for low-level attacks, though, and your datacenter or NOC or hosting provider would be the one to assist.

    Since you've posted your access level is website owner, you won't have any access to add any type of protection anyway. Your hosting provider would be the one to handle it.

    Thanks!
     
  3. howzit

    howzit Member

    Joined:
    Feb 20, 2012
    Messages:
    22
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Howzit! Free Advertising Classifieds
    cPanel Access Level:
    Website Owner
    Thanks Tristan,

    I am renting a dedicated server form i#eb and their support sucks to say the least!!!
    Should I rather get another provider?

    We cannot afford for a server to be down longer than an hour and they recon the best way is to kill the server for 48hr and the attack should have stopped!!!!!!!!

    I did on my own trace the ip from China and blocked it on the server...

    Thanks
     
  4. cPanelTristan

    cPanelTristan Quality Assurance Analyst
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,623
    Likes Received:
    21
    Trophy Points:
    38
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
    The best suggestion is definitely to have a provider who will answer your support questions, since there's no way to actually handle a denial of service as a shared customer. Blocking 1 IP is not going to work for a real denial of service attack, since 1 IP wouldn't be the only one hitting the machine in any true denial of service that I've ever seen.
     
  5. GIANT_CRAB

    GIANT_CRAB Well-Known Member

    Joined:
    Mar 23, 2012
    Messages:
    89
    Likes Received:
    0
    Trophy Points:
    6
    cPanel Access Level:
    Root Administrator
    Hello,

    I would suggest you change your host to a host who can mitigate DDoS.
    It will be a big move but since you cannot trust their support, what if a hacker hacks into your site, removed everything, will you expect your host's support team to recover your server from the damage?

    They might even charge you for operating re-installation if they hacker managed to login as root and does configuration to your OS as a root.

    I would greatly recommend /http://tmdhosting.com or if you want a dynamic server, /http://www.singlehop.com/.
    ServerHop offers unmanaged dedicated services while TMDHosting only offers managed dedicated services at the moment.

    I hope you will take my suggestion into consideration.

    Yours truly,
    GIANT_CRAB
     
Loading...

Share This Page