Re: DDOS attack alleviation?
Just as an aside Does Varnishing as much content as you can protect you from DDOS? It would cover your app backend but is Varnished content on Heroku so heavily cached that it is impenitrable? I assume it must be, since a Reddit attack is as bad as DDOS, and Vanish is what people recommend for Redditing? I guess I'm asking this because I'm thinking one option is to make your site still accessible in a cached format when necessary if your backend/database overheats ... some sort of graceful fail -- You received this message because you are subscribed to the Google Groups Heroku group. To post to this group, send email to her...@googlegroups.com. To unsubscribe from this group, send email to heroku+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/heroku?hl=en.
Re: DDOS attack alleviation?
Could you write a rack middleware that blocks IPs/domains/url patterns? Rack is blazing fast (at least compared to the rest of your stack) so it should help. On Sep 29, 10:35 am, Alex Killough alexkillo...@gmail.com wrote: So I feel I've either got a DDOS underway on one of my sites or a malicious script sending multiple requests per second. On a VPS I know how to deal with this pretty easily by checking server logs, editing IP tables, and blocking particular domains and script/url patterns. Is there an equivalent home remedy for heroku? -- You received this message because you are subscribed to the Google Groups Heroku group. To post to this group, send email to her...@googlegroups.com. To unsubscribe from this group, send email to heroku+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/heroku?hl=en.
Re: DDOS attack alleviation?
Alternatively, try using http://datagraph.rubyforge.org/rack-throttle/ to throttle requests. (it's done per client IP I believe, so regular visitors should get their normal requests fine, and repeated spammers will be denied). On Sep 29, 12:19 pm, Alex a...@heaton.me wrote: Could you write a rack middleware that blocks IPs/domains/url patterns? Rack is blazing fast (at least compared to the rest of your stack) so it should help. On Sep 29, 10:35 am, Alex Killough alexkillo...@gmail.com wrote: So I feel I've either got a DDOS underway on one of my sites or a malicious script sending multiple requests per second. On a VPS I know how to deal with this pretty easily by checking server logs, editing IP tables, and blocking particular domains and script/url patterns. Is there an equivalent home remedy for heroku? -- You received this message because you are subscribed to the Google Groups Heroku group. To post to this group, send email to her...@googlegroups.com. To unsubscribe from this group, send email to heroku+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/heroku?hl=en.
Re: DDOS attack alleviation?
Could CloudFlare be helpful here? https://www.cloudflare.com/home.html http://techcrunch.com/2010/09/27/cloudflare-wants-to-be-a-cdn-for-the-masses-and-takes-five-minutes-to-set-up/ On Sep 29, 5:35 am, Alex Killough alexkillo...@gmail.com wrote: So I feel I've either got a DDOS underway on one of my sites or a malicious script sending multiple requests per second. On a VPS I know how to deal with this pretty easily by checking server logs, editing IP tables, and blocking particular domains and script/url patterns. Is there an equivalent home remedy for heroku? -- You received this message because you are subscribed to the Google Groups Heroku group. To post to this group, send email to her...@googlegroups.com. To unsubscribe from this group, send email to heroku+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/heroku?hl=en.