next »

[Rufus]

Hey, all!

 I've had a client running with v3.1 (I still need to upgrade them) for more than two years now. However, I just got word from their ISP that, starting at 9:15 last night, the calendar.pl file has taken over 100% of the server processes.

 My question is, WHAT THE *****?!??!?!! I wasn't even aware that the calendar could be the recipient of a DoS. Is this possible, and if so, how can I protect the script?

Thanks, gang.
-Toby

[DanO]

> I wasn't even aware that the calendar could be the recipient of a DoS. Is this possible, and if so, how can I protect the script? <

Any script/site is susceptible to such an attack, CalendarScript is no more vulnerable as far as I'm aware than any other.

Maybe you're thinking of being hacked which is by no means the only way a DOS attack can be perpetrated.

You'd have to look at the server access log file to see how it was perpetrated to determine how to prevent it. If it was from one single IP address or IP block, it/them can be banned from all access on the server side. Ask your host's support.

If it was from CalendarScript being hacked, contacting Matt via email with complete details should be done.

Dan O.

[This message has been edited by DanO (edited October 07, 2003).]