My site was recently attacked. What do I do?
- by ChrisH
This is a first for me. One of the sites I run was recently attacked. Not at all an intelligent attack - pure brute force - hit every page and every non-page with every extension possible. Posted with garbage data to every form and tried to post to some random urls too. All tod, 16000 requests in one hour.
What should I do to prevent/alert this kind of behavior? Is there a way to limit the request/hr for a given ip/client?
Is there a place I should be reporting the user to? They appear to be from China and did leave what seems like a valid e-mail.