Dear Azure IP address,
Uncategorized
17
Posts
8
Posters
3
Views
-
@stefano I've seen this stupid crap. wtf! really.
@indyradio @stefano it's a vulnerability scanner. There's a lot of broken php out there, and someone is looking for low hanging fruit. If you don't run php, putting a fail2ban rule in for requests for php files is a pretty reasonable thing to do. It's on my todo list.
-
@indyradio @stefano it's a vulnerability scanner. There's a lot of broken php out there, and someone is looking for low hanging fruit. If you don't run php, putting a fail2ban rule in for requests for php files is a pretty reasonable thing to do. It's on my todo list.
@overeducatedredneck @stefano
I hate that. I also have some ancient php running behind a reverse proxy. The dickheads try to abrogate the proxy. They are not scanning the internet as a favor to you, as you well know. -
@overeducatedredneck @stefano
I hate that. I also have some ancient php running behind a reverse proxy. The dickheads try to abrogate the proxy. They are not scanning the internet as a favor to you, as you well know.@indyradio @stefano They're usually looking for a few different products: old wordpress, old phpmyadmin and a few other things. If there's one or more you don't use, add those paths to trigger the autoblock.
And yeah, as someone who does defensive infosec, they aren't trying to make the world a better place.
-
@indyradio @stefano They're usually looking for a few different products: old wordpress, old phpmyadmin and a few other things. If there's one or more you don't use, add those paths to trigger the autoblock.
And yeah, as someone who does defensive infosec, they aren't trying to make the world a better place.
@overeducatedredneck @stefano I should do that, I've been doing it manually.
-
@stefano I bet they are requesting .env and .conf too.
-
@stefano For a long while I've added IP's requesting *.php files (along with a bunch of other suspicious things) to a pf table I block.
@stefano OK, I just checked, and I have removed that regex, but I block a lot of PHP webapp specific requests.
-
Dear Azure IP address,
please stop requesting a.php and other php files. The Mastodon BSD Cafe domain won't serve them, you're just wasting power and polluting the planet.
Thank you,
Stefano@stefano we need a bot that automatically reports those IPs to the Azure abuse contact 😄
-
@stefano we need a bot that automatically reports those IPs to the Azure abuse contact 😄
@paride5745 eheh probably. But would it have any effect?
-
@paride5745 eheh probably. But would it have any effect?
@stefano when I worked for rackspace in 2013 we used to notify the IP owners of abuse activity. Pretty much all public clouds forbid port scanning, I would be surprised if nothing happens.
-
@stefano when I worked for rackspace in 2013 we used to notify the IP owners of abuse activity. Pretty much all public clouds forbid port scanning, I would be surprised if nothing happens.
@paride5745 I did it in the past. Some providers were good enough to stop those things quite soon. Others just didn't care. The last time I tried, Azure didn't care at all...
Feed RSS
Gli ultimi otto messaggi ricevuti dalla Federazione
-
-
@oblomov @lxo @Jirikiha @macacator @MyWoolyMastadon @john @engel @everton137
ahhh. mmm. wow. yes. ahhh
-
-
-
@oblomov @lxo @Jirikiha @macacator @MyWoolyMastadon @john @engel @everton137
oblomov you've sent me a number of links. i haven't clicked a single one of them
the purpose of a shitposting thread is the interaction, not academic citations
-
@benroyce @lxo @Jirikiha @macacator @MyWoolyMastadon @john @engel @everton137
I'm procrastinating doing a boring task.
You should probably purge the reply list because I doubt anyone else is interested in the banter.
-
“Ma io non avevo paura”
Io, futurista di Roman Jakobson
-
AWOOOOOOpsidaisy
