Hacker News new | ask | show | jobs
by locksley 4613 days ago
No self-respecting DDoS attacker would fail to spoof the User-Agent. This is even Web Scraping 101.

Attacks these days are getting rather sophisticated, where significant amount of attacks are using javascript enabled headless browsers. (http://www.darkreading.com/attacks-breaches/ddos-attack-used...)
1 comments
im3w1l 4613 days ago
So what about checking for valid session cookies from before the ddos started?
link