Protection Against DDoS Attack With LiteSpeed Web Server 2019-10-01 18:03:52 LiteSpeed Web Server mitigates denial of service attacks. Efficiently impose limits with LSWS’s event-driven architecture and customizable features.

LiteSpeed Web Server mitigates
denial of service attacks

Efficiently impose limits with LSWS’s event-driven architecture and customizable features

Main Features

  • per ip throttling

    Per-IP Throttling

    LiteSpeed Web Server has per-IP connection, request, and bandwidth throttling. With these customizable features, IPs that make too many connections or requests or ask for too much bandwidth will be blocked, stopping attackers before they overrun your server.
  • scalability


    LiteSpeed Web Server handles much more traffic with far less resources, allowing it to survive larger attacks than less scalable solutions. This is especially important for very distributed attacks, where it is harder to isolate and block each attacker. Against such attacks, the best defense may be a scalable server.
  • ssl renegotiation protection

    SSL Renegotiation Protection

    Generating an SSL key incurs substantial overhead, and may bring down a server if executed continuously. LiteSpeed Web Server's SSL Renegotiation Protection caps the number of times a client can renegotiate SSL materials, closing this loophole.
  • ssl renegotiation protection


    Our server-side reCAPTCHA implementation is scalable, unlike application-level plugins. Provide protection for your entire server without the overhead of PHP! LiteSpeed reCAPTCHA is flexible and rewrite-rule-controlled.
  • ModSecurity


    Enabling extensive WAF rulesets on other servers can result in a prohibitively high CPU load, but LiteSpeed's ModSecurity implementation is different. LSWS gives you all of the protection of ModSecurity rulesets with minimal CPU impact.  Learn more.


How it Works

LiteSpeed Web Server's event-driven architecture handles all connections with a single process (or very few processes). Because of this, LiteSpeed is able to easily gather connection and bandwidth data from an IP, allowing the server to impose limits with efficiency.

Thread- or processed-based applications, like Apache, have trouble implementing such security features, because they must collect information across many processes. By the time these applications know which IP to block, it's too late.

accelerate internet

Accelerate Your Internet Now!