Hacker Newsnew | comments | show | ask | jobs | submit login
Ask HN: Mitigating malicious AWS bandwidth usage
4 points by mneumegen 934 days ago | 3 comments
I'm using CloudFront to host a number of files for a web application. Some of these files are ~ 20MB. What can I do to mitigate the risk of a massive bandwidth bill if someone set up a script to request these files repetitively?

You could set up Splunk to pull all your logs together, calculate bandwidth, and then make email alerts for when you hit various thresholds.

It might help to firewall out BOGOB IPs and known malicious IPs. These lists have to be actively maintained on the firewall.

mod_qos prevents some abuse: http://opensource.adnovum.ch/mod_qos/


CloudFlare has unlimited bandwidth. I'm not affiliated, and it doesn't exactly answer your question, but perhaps this is a useful thought.


Signed requests!


Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | DMCA | Apply to YC | Contact