laravel 5.4 redis server ddos attack

Question

I setup Laravel 5.4 app with redis server. I got some ddos attack on my server and I got my redis server cache unknown info, like some-email|some-ip.

here's a screenshot :

I changed the old port and set require password. And I also changed redis folder permissions. But still I am getting this error.

My server is ubuntu 16 with nginx, node.js, php7 and redis server(phpredis).

How to secure my server from ddos attack?

score 0 · Answer 1 · answered Aug 24 '17 at 10:06

0

I like putting my sites through cloudflare.com. It protects from DDOS, and also caches assets like CSS and JS, speeding up your site.

Also, you can use a self signed SSL certificate, but because of Cloudflare you will get the full green padlock! :-)

answered Aug 24 '17 at 10:06

delboy1978uk

12,118
2
21
39

I used cloudflare.com and laravel mix for caching assets. But the attack is very huge. – Mido Mido Aug 24 '17 at 10:19
oh wow, this is happening WITH Cloudflare? Isn't there an emergency button you can hit? I think I saw that somewhere – delboy1978uk Aug 24 '17 at 10:20
i also choice i'm under attack but still get huge attack. i need something help with redis server. – Mido Mido Aug 24 '17 at 10:22
Is it only your own site connecting to redis? Can't you limit it to accepting connections from 127.0.0.1 only? – delboy1978uk Aug 24 '17 at 10:23
yes, i changed the redis.conf to bind 127.0.0.1 but still cache unknown info from outside. there is another away? – Mido Mido Aug 24 '17 at 10:26
Can't really help much more than that amigo, sorry, but good luck! – delboy1978uk Aug 24 '17 at 10:28

laravel 5.4 redis server ddos attack

1 Answers1