DDoS attacks, Botnet attacks, or any other http flood attacks on forums that we all own.

Is it possible to create a scripting of any language to block that such stuff?

Such attacks cannot be effectively "fought" at the server level. They are best dealt with at the router, or with the upstream provider. These are things you cannot do yourself, and are best dealt with by consulting your host.

Also see the other threads in this section.

Alright ill read them, but there has to be a way in the software that you can manually plug in the scripting to block all connections over 1000+ from the same ip in 10 seconds or less.

Imagine a pipe to your server. This pipe carries data. If this pipe is full of data, nothing else can get through. Even if you "block" packets at the server level, the pipe is still full...

I'm not saying you can't use software to block incoming connections, I'm just saying it is ineffective for all but the weakest of attacks.

I understand that but what are ways you can? like whats been discovered?

You can use an Apache module, such as mod_evasive.

Alright ill look into it. I just need ideas of what to add to my site as well. =X oh well thanks for the help.

There are also scripts, and command lines, you can use along with the iptables to grab 'bad' ips and block them (google is your friend to find them). Again, this is at the server level and not effective against someone who is determined to cause you problems.

Alright ill read them, but there has to be a way in the software that you can manually plug in the scripting to block all connections over 1000+ from the same ip in 10 seconds or less.

If a hacker wants your site down, there is nothing you can do about it (http://en.wikipedia.org/wiki/Denial-of-service_attack):
"One common method of attack involves saturating the target (victim) machine with external communications requests, such that it cannot respond to legitimate traffic, or responds so slowly as to be rendered effectively unavailable."

US-Certs (http://www.us-cert.gov/cas/tips/ST04-015.html) confirms it also:
"Unfortunately, there are no effective ways to prevent being the victim of a DoS or DDoS attack, but there are steps you can take to reduce the likelihood that an attacker will use your computer to attack other computers."

Whoever tells you they can stop a DDoS attack, they are telling you big red lies. There is no way in the world you will stop (for example) a russian hacker who wants to keep your site down for a month.

Alright ill read them, but there has to be a way in the software that you can manually plug in the scripting to block all connections over 1000+ from the same ip in 10 seconds or less.

CSF&LFD will do this, but again it won't give you full protection.

Personally, I believe the most effective way to pass a DDoS attack is not to let anyone know about it. If the attackers contact you, ignore them and don't reply to them. Don't post anything to the site and if you see a post related to DDoS, delete it. Instead, let the users know you have some networking issues and that you are moving to a new server.

Personally, I believe the most effective way to pass a DDoS attack is not to let anyone know about it. If the attackers contact you, ignore them and don't reply to them. Don't post anything to the site and if you see a post related to DDoS, delete it. Instead, let the users know you have some networking issues and that you are moving to a new server.
Hey, that's how North American countries work right here!