For the last 4 days, somebody is constantly attacking my website , making it to go into SQLSTATE[HY000] [2006] MySQL server has gone away error.
What the attacker does basically is open up multiple pages , adds to cart several products, and/or adds to compare list.
Then the site overloads and it goes dead, giving me the MySQL error. In addition, in WHM (i use a VPS) i have Server Load 27.39 (2 CPUs) which is very high.
Every time, the hosting company has to kill his proceeses and ban his ip (which is constantnly changing). The requests on the server look like this :
[login to view URL] GET /putere?dir=desc&limit=all&order=price HTTP/1.1
[login to view URL] GET /catalog/product_compare/remove/product/401/uenc/aHR0cDovL3
[login to view URL] GET /catalog/product_compare/remove/product/362/uenc/aHR0cDovL3
[login to view URL] GET /checkout/cart/add/uenc/aHR0cDovL3d3dy5zdXBlcmdlbmVyYXRvYXJ
[login to view URL] GET /catalog/product_compare/remove/product/406/uenc/aHR0cDovL3
[login to view URL] GET /checkout/cart/ajaxDelete/id/3833/uenc/aHR0cDovL3d3dy5zdXBl
[login to view URL] GET /catalog/product_compare/remove/product/375/uenc/aHR0cDovL3
Now, i removed the add to compare function and add to cart function, and for a day it was good, but now he found a way to do it again, site is down again.
Can anybody help me with this ? The hosting company say there's nothing they can do, they don't have a solution.
Hi,
I can tell that you are getting a Layer 7 DDoS Attacks, which can be confusing and hard to mitigate.
I am a professional System Admin, Experienced in RHEL systems and perfect knowledge of WHM/cPanel, i also very fimiliar with DDoS Attacks and can 100% Help you to get back to normal.
Dear sir,
Maybe a BASH solution to ban his IP would work.
There could also be some fail2ban come into play.
What webserver are you using ?
PM me for me informations.
Regards,
Hi there,
Could you provide me with additional info at priv?
How many products do you have?
Regards,
Adam
PS. provide your database in MB, if less 1GB I can help you - ad hoc.