Brute force attack
Hi, I've had some sort of brute force attack on my back end server, ~5000 attempts within 10min, Get and Post requests trying various api end points e.g. /api/v4/users/9, /xmlrpc.php, /adminer.php, /api/api/schema, ... all from the same ip
Three questions:
a) Is there a place this should be reported to and
b) Is there a way to find out if an end point was hit successfully?
c) Do you have any recommendations or is there functionality within railway to guard against / block these sorts of attacks?
Thanks!
Solution:Jump to solution
Guarding against this would be your responsibility. I think they have some pretty basic ddos stuff that they block but generally everything is on your own to make sure you are handling. Would recommend you put something like cloudflare in front to setup firewall rules to try and stop any botted traffic.
6 Replies
Project ID:
20f06db8-c92f-453a-8720-e5ca0547115b20f06db8-c92f-453a-8720-e5ca0547115b
Solution
Guarding against this would be your responsibility. I think they have some pretty basic ddos stuff that they block but generally everything is on your own to make sure you are handling. Would recommend you put something like cloudflare in front to setup firewall rules to try and stop any botted traffic.
110% agree with everything unsmart said
in fact its such a perfect answer that im marking it as the solution before they even reply 😆
:Bloberoji_CoolGlasses: