How to compel a hosting provider to stop an attack issuing from their net?
-
For the past week, I have had what looks like an ongoing attempt to exploit my /xmlrpc.php (roughly 80,000 of these per day xxx.xxx.xxx.xxx https://www.mysite.com – [25/May/2013:16:28:00 +0200] “POST /xmlrpc.php HTTP/1.1” 403 332 “-” “-“)
The vast majority of this traffic (over 97%) comes from three IP addresses all within the IP allocation of the same mutual/dedicated hosting provider. Thus far, my attempts to have them stop the traffic from their side, through their own abuse@, have been unsuccessful.
In the meantime, I’ve 403’d xmlrpc using .htaccess, as the attack is ongoing, but I would ideally be able to use it…
Is there anything practical that I can do to compel the hosting company to keep their house in order? (I’m based in Europe and they’re in the USA, and so – for example – I’d really like to avoid the expense and complexity of litigation)
Cheers
Charlie
- The topic ‘How to compel a hosting provider to stop an attack issuing from their net?’ is closed to new replies.