I
I
Igor Petrov2015-03-08 18:35:28
Nginx
Igor Petrov, 2015-03-08 18:35:28

Empty requests in Apache logs during ddos, is there a method to deal with this?

good evening friends, I encountered such a problem, a bunch of empty get requests with an unknown browser appear in the logs of the virtual server.

*.*.*.* - - [08/Mar/2015:18:25:30 +0300] "GET / HTTP/1.0" 200 44059 "-" "-"
*.*.*.* - - [08 /Mar/2015:18:25:30 +0300] "GET / HTTP/1.1" 200 44112 "-" "-"
*.*.*.* - - [08/Mar/2015:18:25:30 + 0300] "GET / HTTP/1.0" 200 44059 "-" "-"
*.*.*.* - - [08/Mar/2015:18:25:30 +0300] "GET / HTTP/1.0" 200 44512 "-" "-"
*.*.*.* - - [08/Mar/2015:18:25:30 +0300] "GET / HTTP/1.0" 200 44059 "-" "-"
*.*.* .* - - [08/Mar/2015:18:25:30 +0300] "GET / HTTP/1.1" 200 44096 "-" "-"

Joomla netbot attack method, How to deal with it? because with so many requests, the server feels very bad.

Answer the question

In order to leave comments, you need to log in

2 answer(s)
P
Power, 2015-03-08
@Power

a) cache the main page
b) filter requests to nginx with an empty user-agent

I
Igor Petrov, 2015-03-08
@daniks

And how to filter them out on nginx?
So I understand?
if ($http_user_agent ~* msnbot|scrapbot|Browser|ms_ie|-) {
return 403;
}

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question