I think I'm suffering ddos attack. Was failing to install moodle, went to see the error.log this domain. And I come across this: What can be done to minimize it?
The requests come all from the same IP, so if its an attack, then it is a DOS attack, not ddos. You can ban the ip with iptables or a reject route: /sbin/route add -host 148.251.8.37 reject
Ready locked. But what makes this happen? Is it normal? How can I see if other sites were not affected?
To blocjk such attacks automatically, install the apache module mod_evasive and you should create a error file for the 404 error, so this will not fill up your error.log: /var/www/estudo.educacaoaraxa.com/web/error/404.html
I will install this module apache. A doubt. This file you create ordered, those files can be error folder that contains all 404.html, 400.html ...? Can this file?
Thats the error folder and it should contain a file with this name. if this file does not exist, create it.
Thanks for your response, this difference did not know DOS Attack and DDOS attack. I'll read about it.
