Battling a flood of requests from Microsoft IP addresses

In case you’re wondering why this blog has been unavailable the last couple of days: My domain seems to get hit excessively by a couple of IP addresses belonging to Microsoft (mainly). I don’t know why or how, but my host (Dreamhost) has decided that I now have to pay for private hosting (their DreamhostPS product).

I’m trying to block the IP address range that has been causing this, but I have no idea when my host will unilaterally decide to shut my domain down again (I suppose it isn’t nice of me to turn it back on without telling them, but they didn’t tell me they would shut it down either.) Apparently it is my responsibility to monitor the access logs and detect excessive activity and deal with it. I’m not aware of any tools they provide that help me do so, nor do they provide any kind of alerts that would help me be more responsible (if you can call finding yourself in a situation that you didn’t cause and dealing with it being “more responsible”.)

Of course, they’re in the clear, because the terms of service state that they can do whatever they want if my site causes problems for other customers on the shared web server box.

I’ve contacted Microsoft’s abuse email address and sent them access log “greps” that prove the problem. I’ve also tried to find access logs for other addresses the host claims have caused issues, but those logs seem to have been deleted by now. So now I’ve embarrassed myself with an abuse email to an ISP without having the ability to back up my claim. Nice.

Anyone have any advice on what else I can do?

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.