Ranter
Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
Comments
-
Wack61915y@NoToJavaScript on our server in Switzerland I get a ton of these Wordpresslogin fuckers. Thought about adding a PHP script that just sleeps for 5 sec. or so on a post request...
-
asgs112755y@Wack wouldn't sleeping be counter productive to your server? Assume the attacker thinks their script is not working and then decides to bombard even more? Now your server is running more threads doing nothing and could lead to starvation, unless I misread what you mean by sleeping
-
Root797755y@asgs The overwhelming majority of attacks are automated, so a 30sec threaded sleep would throttle the botnet, if ever so slightly. Ultimately pointless, but you may as well just to spite them.
If they're trying to steal information instead, I would happily oblige and give them garbage data. -
asgs112755y@Root I totally get that. I liked the idea that somebody proposed - redirect them to 127.0.0.1 or something
-
Root797755y@asgs Amusingly, most botnet attackers aren't hardened -- because they were infected, too. So you could return the favor and gain access to them instead, and more than likely pretty easily. It's like an invitation. 😊
It would be fun to write counter-malware that kills malware. I'd name it Dexter!
These script kiddies fuck with my error metrics! I want 0 !
I swear I'll find them! Even enabled IP log for every request contain “.php”.
Needless to say, app is not even in PHP and PHP isn’t even present on server
rant