Recently, one of my servers came under attack by DDoSing it. After inspection of access logs, I can only find one common denominator: Referrer.
All of request come with (I assume) fake referrer:
- https://www.baidu.com
- https://www.bing.com
- https://www.facebook.com
- https://www.gmail.com
- https://www.google.com
- https://www.google.com/
- https://www.qq.com
- https://www.reddit.com
- https://www.yahoo.com
- https://www.youtube.com
Obviously, all of these are legitimate websites, so I was wondering what would sound strategy against those?
I read an article about a similar attack:
https://www.qurium.org/alerts/colombia/la-nueva-prensa-attacked-for-operacion-jaque-documentary/
