Attack Mitigation
By Trip Ericson on Saturday, October 20 2012, 11:05 - Site Updates - Permalink
I discovered that RabbitEars was under attack for the last two days. I don't think anyone got in, but it was certainly slowing the site down. I've implemented a method for resisting such attacks now, but if you notice any pages that should work giving you errors, please let me know.
Comments
I'm curious as to what kind of attack? SQL injection? Or just a plain old DDoS?
It was an attempted SQL injection I believe, repeated over and over again, on a page with sanitized inputs.
It is amusing (well, not really..) that after these crooks' attempts fail on the first try, they keep trying. I've seen the same thing in the logs on my Linux system -- an intrusion attempt is clearly foiled by the security subsystem, but is retried over and over.
I suppose it could be a denial-of-service attack, but it's hard to fathom why anyone would want to shut down an apolitical non-profit site like RabbitEars.
(Misdirected Time-Warner employee mad you're informing viewers they don't need cable to watch TV? (grin) )
Since Trip works for Retro, it was obviously Antenna TV or Me-TV. :o)