Well, one of my client's sites has been getting DoSed over the past hour or so. I've blocked the IP and the problem seems to be solved. However, I'm sure he is going to try it again tomorrow. He is doing a bunch of HTTP requests which have caused apache to restart a couple of times. IS there any easy way to find out which IP the attack is coming from without going through the apache logs? Any tips on how to counter dos attacks?
