stackoom
  简体   繁体   中英

How to protect Malicious attack on django website

 原文  2021-01-31 10:09:40       php/ django/ amazon-ec2/ server-side-attacks

Question

My company's site is hosted on AWS. I have 3 months experience so I don't know what is:

Not Found: //admin/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
Not Found: //api/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
Not Found: //backup/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
Not Found: //beta/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
Not Found: //blog/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
Not Found: //cms/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
Not Found: //demo/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
Not Found: //dev/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
Not Found: //laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php

The problem is the server automatically stopped running. I thought possible reason can be that the code is going inside some loop so I decided to check logs. What I found is:

Not Found: //admin/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
Not Found: //api/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
Not Found: //backup/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
Not Found: //beta/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
Not Found: //blog/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
Not Found: //cms/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
Not Found: //demo/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
Not Found: //dev/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
Not Found: //laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
Not Found: //lib/phpunit/Util/PHP/eval-stdin.php
Not Found: //lib/phpunit/phpunit/Util/PHP/eval-stdin.php
Not Found: //lib/phpunit/phpunit/src/Util/PHP/eval-stdin.php
Not Found: //lib/phpunit/src/Util/PHP/eval-stdin.php
Not Found: //new/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
Not Found: //old/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
Not Found: //panel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php
Not Found: //phpunit/Util/PHP/eval-stdin.php

I don't know what is this and how to deal with it. I already searched on google I found that it is some kind of malicious attack, I am not sure. I want to know what is this. The site is Django web framework.

1 answers

solution1
 1  2021-01-31 11:03:58

If there is some kind of malicious attack happening. There are couple of things you should do

  1. Enable AWS Guard Duty to detect the resources under attack.
  2. Put your web server behind an application loadbalancer and enable waf on alb. This will act as a firewall for your webserver. Make sure you test this solution in your uat environment before implementing it into production

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to protect against this type of attack? How to protect my PHP website from the .htaccess URL redirect malware script attack? How to protect from file upload attack in php? How to protect against Encoded URL XSS Attack How to protect from malicious use of jQuery post handler? How to securely test malicious code injected in a website? How to protect wp-login from attack on apache/nginx Protect against PHP file attack Website hacked, how to remove malicious code with SED / GREP How can I better protect my php, jquery, ajax requests from malicious users
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM