Easy way to stop spammers/dos-attacks using lighttpd
First, enable mod_evasive, then add: evasive.max-conns-per-ip = X, where X is some integer.
This works, however if the same domain hosts images and files alike, it could lead to false positives. If a pagehit requires 90 requests, and the clientbrowser is set up to allow more concurrent requests to the site than max-conns-per-ip is set to, [...]