How to stop this kind of attack?

Hello guys

I have a problem and would appreciate any help.

I would like to know how i could stop this kind of attack,

213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7753
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7753
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7753
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7754
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7754
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7752
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7753
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7754
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7753
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7754
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7755
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7756
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7753
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7754
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7753
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7755
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7754
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7753
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7755
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7752
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7752
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7753
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7752
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7754
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7754
213.104.**.**- - [26/Oct/2005:22:08:21 +0200] "GET /forums/index.php HTTP/1.1" 200 7754
213.104.**.**- - [26/Oct/2005:22:08:22 +0200] "GET /forums/index.php HTTP/1.1" 200 7756
213.104.**.**- - [26/Oct/2005:22:08:22 +0200] "GET /forums/index.php HTTP/1.1" 200 7753


The list goes on and on.. whenever this happens my apache/httpd processes reach 400/500 and the server load goes up to 100... I found out that it is a program made to attack forums - i could not get my hands on this program however what it does is obvious - it uses GET method on the website 100x a second. Would there be any way to stop this kind of attack? (besides banning the persons IP address because he/she can always use a proxy and go on)..

Any help is highly appreciated.

Thank you in advance!

Regards,

cem

 

 

 

 

Top