Uploaded image for project: 'Statuspage'
  1. Statuspage
  2. STATUS-718

Utilizing proxy(load balancer) can result in blocked ip's

XMLWordPrintable

    • 3
    • Severity 3 - Minor

      Issue Summary

      If utilizing proxy/load balancer you may notice a blocked proxy IP which could result in page viewers being unable to load the page

      Steps to Reproduce

      1. Signup and utilize google proxy/load balancer
      2. Start receiving bot spam traffic

      Expected Results

      We expect the site to work fine and not block the proxy ip's. 

      Actual Results

      If malicious traffic comes in and passes through the proxy there is a chance our security scanners will activate and block IP's from the used IP's by the proxy

      Workaround

      The current workaround is to block the traffic in which we block malicious traffic for on the proxy end:

      https://cloud.google.com/knowledge/kb/how-to-block-traffic-for-a-specific-url-000004799

      The traffic we are blocking is for queries sent to the SP site. ex: https://status.thetest.agency?q=

              'sample@email.tst',
              'win.ini',
              '555-666-0606',
              'etc/passwd',
              'alihack.com'
            
              'pg_sleep',
              'dbms_pipe.receive_message',
              'jndi',
              '${lower:j}ndi',
              'j}ndi'
            

       

        1. image-2023-12-27-09-41-31-100.png
          32 kB
          Chris DeGidio

            Unassigned Unassigned
            cdegidio@atlassian.com Chris DeGidio
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated: