[Coco] Someones bots are abusing my downloads
Gene Heskett
gheskett at shentel.net
Fri Nov 1 17:45:57 EDT 2019
On Friday 01 November 2019 15:46:25 Dave Philipsen wrote:
> A little iptables work should solve your problem.
No iptables except what in the router, which is dd-wrt. But listing their
addy in CIDR format in hosts.deny is a bunch easier and seems to be
working. I just wish it was keeping a log so I could see the reaction
when there was a hit. And bingbot just came to the party. And yandex is
hammering at 1 second intervals but no response is being issued.
And its a good thing I made coffee an hour back, now we have no water in
this neighborhood. No biggie for a few hours, plenty in the fridge for
my crippled missus.
Thanks Dave, this stuff keeps me out of the bars.
>
> > On Nov 1, 2019, at 12:54 PM, Bill Gunshannon
> > <bill.gunshannon at hotmail.com> wrote:
> >
> > On 11/1/19 1:49 PM, Ken Flanagan wrote:
> >>> On Fri., Nov. 1, 2019, 10:35 a.m. Gene Heskett,
> >>> <gheskett at shentel.net> wrote:
> >>>
> >>> They ae not just indexing my place, they were sucking the whole
> >>> thing, one file at a time and keeping my 250 kilobaud uplink
> >>> bandwidth full for the last 4 or so hours. That a DDOS AFAIAC.
> >>> Kill them on sight. Here is typical log entry:
> >>>
> >>> coyote.coyote.den:80 46.229.168.141 - -
> >>> [01/Nov/2019:13:33:16 -0400] "GET
> >>> /gene/nitros9/3rdparty/packages/uucpbb/doc/uucp.man
> >>> HTTP/1.1" 200 3142 "-" "Mozilla/5.0 (compatible; SemrushBot/6~bl;
> >>> +http://www.semrush.com/bot.html)"
Cheers, Gene Heskett
--
"There are four boxes to be used in defense of liberty:
soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author)
If we desire respect for the law, we must first make the law respectable.
- Louis D. Brandeis
Genes Web page <http://geneslinuxbox.net:6309/gene>
More information about the Coco
mailing list