We have noticed over the past few days that around this time (starting approximately 30 minutes ago), a bot has been heavily attacking our infrastructure, causing the Management Console to become very slow. We have now implemented rate limiting through Cloudflare.
If you are in the US and were wondering why the Management Console has been unstable, it may be due to this regular attack, which typically begins around 22:00 German time.
Jermuk
09/18/2024, 9:08 PM
And to clarify: all of your UMH instances / „data infrastructure“ are unaffected by this as only the webinterface can be impacted.
b
Brian Pribe
09/18/2024, 9:24 PM
That sucks to hear. Sadly this will be a new normal for this decade.
d
Diederik
09/18/2024, 9:45 PM
anything we can do? :p
f
Ferdinand
09/19/2024, 7:48 AM
@Diederik Only if you happen to be the owner of the ec2 instance at us-west-2 that did the attacks 😉
d
Diederik
09/19/2024, 7:49 AM
It was coming from one certain place?
just blacklist the ip? :p
f
Ferdinand
09/19/2024, 7:50 AM
we added rate limiting and other cloudflare rules, ips change all the time.
Ferdinand
09/19/2024, 7:50 AM
i think with ec2 by default it changes every restart (if you dont pay for a dedicated static ip)