Ok, it’s me again. I’ve been checking the sampled logs on my cloudflare website and I’ve noticed some very particular requests:

Some context: I’m hosting my own static website (a personal blog) at home and serving it to the internet through a Cloudflare tunnel.

Upon inspecting them it seems like they are bots and web-crawlers trying to access directories and files that don’t exist on my server, (since I’m not using wordpress). While I don’t really have any credentials or anything to lose on my website and these attacks are harmless so far, this is kinda scary.

Should I worry? Is this normal internet behaviour? Should I expect even worse kinds of attacks? What can I do to improve security on my website and try to block these kinds of requests/attacks?

I’m still a noob, so this is a good opportunity for learning.

Thanks

  • hendrik@palaver.p3x.de
    link
    fedilink
    English
    arrow-up
    0
    ·
    14 days ago

    That looks like the internet. Every server gets bombarded with these requests. Generally: Use good passwords, make sure your software blocks bots brute-forcing passwords, after some sane amount of tries… Keep everything updated…

      • hendrik@palaver.p3x.de
        link
        fedilink
        English
        arrow-up
        0
        ·
        14 days ago

        Just make sure you actually enable the jails/filters for the services you use … I’ve seen people just install it and that will by default just protect ssh and leave everything else as is.

      • bizdelnick@lemmy.ml
        link
        fedilink
        English
        arrow-up
        0
        ·
        14 days ago

        With fail2ban single bot behind a NAT can make the site unaccessible for all users behind that NAT.

        • cron@feddit.org
          link
          fedilink
          English
          arrow-up
          0
          ·
          14 days ago

          That’s true, but might not really be a problem for most. Just set the jail time to something short (few minutes, maybe an hour).