You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Everybody that has a webapp knows that some bots are out there try to get secrets through some paths, like /.env or wp/admin....
Of course, we are not that dumm and are protected from these attacks. But it reaches oft through our alias query the database, making so unnecessary calls to it. We could simply block such requests, that we know we won't never have as alias.
Everybody that has a webapp knows that some bots are out there try to get secrets through some paths, like
/.envorwp/admin....Of course, we are not that dumm and are protected from these attacks. But it reaches oft through our alias query the database, making so unnecessary calls to it. We could simply block such requests, that we know we won't never have as alias.
See serlo/api.serlo.org#1573 (comment)
The text was updated successfully, but these errors were encountered: