On Sun, 25 Aug 2013, Michael Corliss wrote:It could be a brute-force attack on the CMS, distributed through a botnet.
I've found some suggestions that this UA is associated with malicious bots; is this a DDOS? Who would want to DDOS a piddly discussion forum?
Blocking the user agent might work in this case - though if it's really a brute-force attack, the attackers could switch to a different user agent, or vary the user agent.
Any advice on making it useable again?
You can also consider putting the side behind a CDN like CloudFlare.
Martijn.
_______________________________________________
users mailing list
users@lists.bitfolk.com
https://lists.bitfolk.com/mailman/listinfo/users