We have an Ofbiz application where orders were obviously placed by a ‘spam bot’. The payment Gateways thankfully rejected the credit card transactions. We were able to trace the IP address of these visits back to a cloud hosted provider; unlikely a legitimate customer. As a short term fix we can block a specific range of IP addresses at the Web Server level and not allow entry of these IP’s to the application server. However as long term fix a solution that is able to detect these types of attacks would be the way to go.
Is anyone in the community aware of a DOS (Denial of Service) attack detection, which can be used at either the application or web server levels?
Len Shein
[hidden email]
http://bigfish.solveda.com
Office: 516.742.7888 ext.225
Home Office: 732.333.4303
Cell: 917.882.8515
Locked
