Hey there.
My Apache server is getting for many days a massive amount of requests on a particular repository, which kills it (due to maximum workers limit passed). I've deactivated the repository and I'm banning IPs still trying to access it, and in less than an hour I have already ~17000 unique IPs banned.
That really looks like a DDoS even if I have no idea why somebody would attack my server.
How can I deal with that? Note that I don't want to use Cloudflare.
TIA
Daniel Gultsch
in reply to Goffi • • •Anubis maybe? I've heard that (some) AI bots now have the ability to bypass that but maybe worth a shot?
github.com/TecharoHQ/anubis
GitHub - TecharoHQ/anubis: Weighs the soul of incoming HTTP requests to stop AI crawlers
GitHubGoffi
in reply to Daniel Gultsch • • •@daniel yeah, thinking about it, but I'm not sure about consequences on accessibility. Also in this case I'm still having requests when I've blocked the URL, it's returning 403 (but still creating workers, which at the end block Apache).
I may have to move to NGINX, it should handle better this kind of things.