FYI, we get DDoS'd every week. And, most of the time, the attacks are on the Leader's page (the one that lists all the Moderators, etc.)

Any way to make it more ... static? :-)

How are you getting DDoS'd via the mod team page? O_o

I'd like to know also, especially since the query count for that page is quite low and most of the queries should already use indexes.

I have no idea- but most of the times we get DDoS'ed (via a botnet of 1000s of computers), it's the Leaders page that is targetted.

Maybe some kind of flood control for that (or better still only allow those who can see the memberlist to view it) :cool:

That way you can stop guests viewing it by selecting them not to view the memberlist.

I'm not really clear on why they would target that page over any other. There isn't a way for us to stop a ddos attack - you should look into a firewall that will throttle the traffic when it detects things like that, which would be a lot more secure than us trying to stop multiple hits to a page over a short period (the overhead in tracking that sort of thing would be a lot more resource intensive than a simple firewall on the server).