25 Aug
2013
25 Aug
'13
4:56 p.m.
On Sun, 25 Aug 2013, Michael Corliss wrote:
I've found some suggestions that this UA is
associated with malicious
bots; is this a DDOS? Who would want to DDOS a piddly discussion forum?
It could be a brute-force attack on the CMS, distributed through a botnet.
Any advice on making it useable again?
Blocking the user agent might work in this case - though if it's really a
brute-force attack, the attackers could switch to a different user agent,
or vary the user agent.
You can also consider putting the side behind a CDN like CloudFlare.
Martijn.