I just bought hosting service and I received the following message from the hosting co. support for one of my sites The site is a general web directory powered by phplinkdirectory script and in a subdirectory /topsites/ is powered aardvarktopsitesphp .. what can I do about this?
Hi You should verify the code you have on that page and try to understand why they chose to attack that page. The only reason for this I can think of is that it is a page with database access. It causes a lot of memory usage above all if your code doesn't close connections as soon as it is no more needed. The only thing you can do is to ask your hosting to review your code and try fixing it or just try to move your site to another server
Being a topsite the sites on your topsite display your button, they do so with an IMG take that pulls the image off your server (through button.php). If that site is getting A LOT of hits then its very possible that URL will get hit many times from different IP addresses. It may not be a DOS attack at all but the general running of the topsite.
let them install : APF/BFD/Mod_Evasive Mod evasice should do the work : after xx connections , the ip get blocked.