vb.org Archive
Page 1 of 2 1 2
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   Big Board Discussions (https://vborg.vbsupport.ru/forumdisplay.php?f=172)
-   -   High server loads, and Possible DDOs attacks (https://vborg.vbsupport.ru/showthread.php?t=164596)

Arbit3r 12-07-2007 03:31 PM
High server loads, and Possible DDOs attacks
 
Iv pretty much given up, my site has been under constant DDos attacks for the past few days, iv tried multiple things including updating to the newest version of Vb 3.6.8, iv banned multiple ips with 100's of connections each, iv turned on the vbulletin "Server Load Limit" and set it to 10. And still the server is always peaking 90-100% cpu load "but stopped crashing now" with only 400-600 users viewing the forums, this is driving me crasy. One of our competitor sites recently closed down so most of there users came over to my forum so its an important time for me to keep things running smooth and not have the server crashing all the time.

Iv even had to setup a dedicated server because i was banned from 3 shared hosts due to DDos attacks i can't even stop? with no refund, thats compleat bs!

Should this amount of users be causing loads af around 5-10? even seen 90 once

Server specs.

AMD ATHALON XP M 2200+ @ 2.2
1024MB DDR
2x250GB IDE 133
100Mbit UP/DOWN
Ubuntu 7.10
latest apache and php

Regards

cpvr 12-07-2007 04:43 PM
Who's your data center?

Arbit3r 12-07-2007 04:44 PM
Its hosted from home.

dtv100 12-07-2007 06:13 PM
you could try to install and setup :
MODsecurity + MODsecurity Rules+MODevasive+KISS My Firewall

scoutz 12-07-2007 07:54 PM
I've been under http ddos several times, some weeks ago I changed from apache to litespeed, litespeed has nice security features to keep everything running and temporary ban people hammering your server. litespeed keeps up my server under ddos withouth any problems. It's not free but you can try the free trial.

Romeos Tune 12-07-2007 11:27 PM
What about their (litespeed's) claim of being so much faster than Apache? Does this hold true in your opinion scoutz?

class101 12-07-2007 11:54 PM
me when I connect litespeedtech.com it sounds like shitspeed rather than leetspeed huhu

Brandon Sheley 12-08-2007 01:16 AM
you could always just pass protect your root ;)
but it would block search engines as well...

Alfa1 12-08-2007 01:33 AM
Block any service that is not publicly needed for all IP's except your own. (pop3, ftp can easily be used to flood your server with requests) Close any service that you do not need or is not essential. Analyse the logs after every attack and try to prevent the same event happening again. In your position it is wise to trade in functionality for security.
Block IP's that make too many requests. Auto-Kill certain processes at times when your server is under heavy weather.
I have been in the same situation for a long time. My server has much lower specs than yours. On any given day my server is running on 300%, so it has been easy to bring down until it was locked down. Measures like these are not optimal as they will cause errors on your site, but at least your site will be hard to bring down by flooding it with requests.

A large DDoS however is hard to stop. best thing you can have is a host that picks up the phone 24/7 and is on the case swiftly. Look into Anti-DDoS hosting or getting a hardware Anti-DDoS firewall.

TheRed 12-08-2007 07:28 AM
If its the apache or mysql process causing the high load. Then here are my few suggestions on it:
  • Try a different my.cnf mysql config file. You can ask Eva2000 for server optimization guidelines on the vBulletin.com forums.
  • Install XCache 1.2.1, php 5.2.5.
  • Try disabling the plugin system for a few minutes to check if the problem relies on some custom product.
  • Set each forum's prune date to equal or less than a week. "Default View Age" option. Helps a lot if you have many threads and millions of posts.
  • As a last resource, i would switch from Apache to latest Lighttpd.


All times are GMT. The time now is 08:43 AM.
Page 1 of 2 1 2
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01181 seconds
  • Memory Usage 1,730KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (1)pagenav_pagelink
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (10)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete