Linguist@lemmy.world to Selfhosted@lemmy.worldEnglish · 9 months agotrashmessage-square18fedilinkarrow-up179arrow-down12
arrow-up177arrow-down1message-squaretrashLinguist@lemmy.world to Selfhosted@lemmy.worldEnglish · 9 months agomessage-square18fedilink
minus-squaredraughtcyclist@lemmy.worldlinkfedilinkEnglisharrow-up15·9 months agoIf I had to guess after managing enterprise WAF across hundreds of domains… It’s either a crowler or vulnerability scanner, and may be scanning by IP address. I don’t think you configured anything wrong. You may want to add some form of captcha or user agent based filter to get rid of it. Good news is that it’s not necessarily something to worry about. I’d avoid IP based blocking. It’s only temporarily effective.
If I had to guess after managing enterprise WAF across hundreds of domains…
It’s either a crowler or vulnerability scanner, and may be scanning by IP address. I don’t think you configured anything wrong.
You may want to add some form of captcha or user agent based filter to get rid of it. Good news is that it’s not necessarily something to worry about.
I’d avoid IP based blocking. It’s only temporarily effective.