Is this an attack or a normal request?
Anderson dos Santos Donda
andersondonda at gmail.com
Mon Aug 24 11:22:50 UTC 2020
I’m new in the webserver world, and I have a very basic knowledge about
Nginx, so I want apologize in advance if I'm making a stupid question.
I have a very basic webserver hosting a WordPress webpage and in the past 3
days I have receiving thousands of below request:
22.214.171.124 - - [24/Aug/2020:12:30:41 +0200]
126.96.36.199 - - [24/Aug/2020:12:30:41 +0200] "P\xCE
400 173 "-" "-”
This comes from a hundred of different IPs and in many requests at same
Is this kind of DDOS attack or a legitimate request(which my server returns
400 for them)?
If is an attack, has a specific name that I can search and try to
understand it better and mitigate it?
Thank so much for the help.
*" **Mar calmo não cria bom marinheiro, muito menos bom capitão.**"*
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the nginx