albin antony
Reputation: 179
Unusual request activity log found in django server
Following is the screenshot of the server activity log.I can see that many requests are automatically raised in the server.How can I avoid this.? 
Upvotes: 2
Views: 92
Answers (1)
mattjegan
Reputation: 2884
It looks like someone is fuzzing your website and scanning to find any common file names or extensions that commonly have security vulnerabilities. One way to limit this behaviour is to implement rate limiting whereby you might limit the number of requests a user makes that result in HTTP 404 Not Found during some time period before giving them a temporary ban. Note: this solution doesn't stop this from happening but it does buy you time and may deter the attacker or researcher
Upvotes: 2
Related Questions
- Django logging requests
- where does this specific log output from django runserver come from
- Suspicious Operation Django
- Set to none suspicious operation RequestDataTooBig
- How did a hacker produce this GET request?
- When I check nginx access.log, unknown HEAD requests come in periodically
- Django verbose request logging
- Django-rest-framework serializer makes a lot of queries
- Interpreting Django server request log
- The logs of POST/GET requests from Django application on Apache