mhoyeMar 17

"we caught one" god. Luxurious.

Once again, I strongly advise you to set up fail2ban so that anyone you serve a 404 catches at least a full day ban, and if you don't care about talking to other people's services, do your best to fully block the IP ranges associated with all the major hosting companies.

https://exple.tive.org/blarg/2025/10/21/raised-shields/

https://infosec.exchange/@foobardevs/116246141464905287

Show threadAndrew ZonenbergMar 17

@mhoye a single 404 is very aggressive, all it takes is one fatfingered link in a page pointing to your site and you're banning visitors en masse.

after 5-10 404s in a row for different URLs, different story.

Show threadmhoyeMar 17
@azonenberg Nobody is fat-fingering their way to .env or backdoor .asp files.
Show threadrlonstein
@mhoye @azonenberg *cough* qualys *cough*

(who made up 80% of that crap in my logs before I blocked their ranges)
Mar 18 at 2:05amWeb