Menu
Forums
All threads
Latest threads
New posts
Trending threads
New posts
Search forums
Trending
What's new
New posts
New profile posts
Latest activity
Members
Current visitors
New profile posts
Search profile posts
Upgrades
Log in
Register
What's new
Search
Search
Search titles only
By:
All threads
Latest threads
New posts
Trending threads
New posts
Search forums
Menu
Log in
Register
Navigation
Install the app
Install
More options
Contact us
Close Menu
Forums
Server Development
Habbo Retros
Habbo Q&A
[HELP] DDoS Attack
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="Hypothesis" data-source="post: 461775" data-attributes="member: 83881"><p>Most attacks these days are Layer 7 and can bypass CloudFlare captcha as their not seen as bots or any specific malicious network, they're just hijacked computers or servers, so it's hard to block them. I wouldn't suggest rate-limiting on CloudFlare as the bill will run up quickly and you only get 10,000 requests for free. That sounds like a lot right? Nah, that'll add up very quickly, mostly from people even just visiting your hotel. What you could do is add a check for your URL and make a website redirect so that way all the traffic gets redirected to a specific URL which tends to block any types of requests that are not actual people. But then you'd have to also add a check for parameters, even with a check on that, they could still just switch to another header method such as post.</p><p></p><p>My recommendation is that you look into adding a captcha to your website that isn't CloudFlare, so that way all traffic must go through a captcha before their session is accepted.</p></blockquote><p></p>
[QUOTE="Hypothesis, post: 461775, member: 83881"] Most attacks these days are Layer 7 and can bypass CloudFlare captcha as their not seen as bots or any specific malicious network, they're just hijacked computers or servers, so it's hard to block them. I wouldn't suggest rate-limiting on CloudFlare as the bill will run up quickly and you only get 10,000 requests for free. That sounds like a lot right? Nah, that'll add up very quickly, mostly from people even just visiting your hotel. What you could do is add a check for your URL and make a website redirect so that way all the traffic gets redirected to a specific URL which tends to block any types of requests that are not actual people. But then you'd have to also add a check for parameters, even with a check on that, they could still just switch to another header method such as post. My recommendation is that you look into adding a captcha to your website that isn't CloudFlare, so that way all traffic must go through a captcha before their session is accepted. [/QUOTE]
Insert quotes…
Verification
Post reply
Forums
Server Development
Habbo Retros
Habbo Q&A
[HELP] DDoS Attack
Top