The only real mitigation strategy that is sensible towards these sorts of attacks is to block them at the edge or core community or even for the provider already.That’s awesome that you just determine that OpenVZ companies might use fewer effective servers than KVM, it’s something to find out and to check. By no means checked this, as my OpenVZ