I'm having trouble with another website stealing all my blog content. I know that happens all the time, but this new attack is taking down my server.
Looking at my access logs I see he is hitting me from multiple IP address. I can't block them all. Wondering how to block by domain name.
I have full access to my server so I would like to block with iptables, but not sure that is possible.
Also, how do I shut them down, it's a private registration with godaddy. I called them but no help at all.
probably belongs on superuser.com, BUT in code, you could do a quick IP hash map that keeps a running count of visits by IP in the last 10 minutes, then 404's if there are over X number of them. You could then log out the IP's that you are 404ing to, and dump them into iptables to block.
I agree to user Matt that alot of RSS content can be easily get from Internet. But, maybe you can try out monitoring the IP address belongs to which country, and directly block that country. Other suggestion I can provide is you filter the IP address and block them away or redirect them to other places. You can try out geolocation products from IP2location.com to inquiry how to block a server by domain name from attacking the website.