Question

Have a client site that keeps getting overloaded with spam. Anyone have experience with this? Mysqld hits 400% CPU and dies. I’ve tried a lot. but nothing seems to be working.  

Answer 1

Cloud flare and wordfence

Answer 2

Use wordfence and block countries where spam originates

Comments

@hadik28 wordfence has been awesome for us

Answer 3

Google Recaptcha v3 has saved so many of my clients databases and my own included! Although one or two get through, there is nowhere near as many as before

Answer 4

If these are spam comments then turn off spam. If these are contact form spam then add some questions to the forms, although you'll have to change them every now and then. If the spam is really brute force dictionary attacks trying to log in, then rename the login page. Running a firewall via PHP script is CPU-expensive. If they control their own server they should have a firewall running. Learn how to tweak it.  

Answer 5

Sucuri Firewall (not the plugin, the actual service) or one of the paid Cloudflare plans. Or if money is no object, Encapsula or Akamai. Sounds like a DDOS.  

Answer 6

Vps? Contact your provider they might help you

Answer 7

Had a similar problem used cleantalk it's cheap and effective.  

Comments

@roadway definitely agree cleantalk does the job and clients are happy bunnies  

---

I like cleantalk!  

Answer 8

Cloudflare will help loads

Answer 9

First figure out the what n where and then take care of that. Cloudflare will def help in rooting out this.  

Answer 10

Thanks guys it is a ddos level 7

Comments

We use Wordfence & Clean Talk nine times out of ten it works for most attacks. If it's advanced and it still isn't resolved use cloudflare but I personally dislike cloudflare on most websites.