Ok, it’s me again. I’ve been checking the sampled logs on my cloudflare website and I’ve noticed some very particular requests:

Some context: I’m hosting my own static website (a personal blog) at home and serving it to the internet through a Cloudflare tunnel.

Upon inspecting them it seems like they are bots and web-crawlers trying to access directories and files that don’t exist on my server, (since I’m not using wordpress). While I don’t really have any credentials or anything to lose on my website and these attacks are harmless so far, this is kinda scary.

Should I worry? Is this normal internet behaviour? Should I expect even worse kinds of attacks? What can I do to improve security on my website and try to block these kinds of requests/attacks?

I’m still a noob, so this is a good opportunity for learning.

Thanks

  • KazuchijouNo@lemy.lolOP
    link
    fedilink
    English
    arrow-up
    4
    ·
    8 days ago

    Yeah, it was kinda scary. I had never hosted anything online, and all of the sudden I get bombarded with scans and attacks from everywhere.

    But I know I can’t lose anything important, and that this is expected on the internet.

    It was just, uh… You know the feeling when someone tells you something is heavy, then they give it to you, and it’s a bit heavier than you expected? And they go: “I told you it was heavy”. And it’s not a big deal, because in the end you just adjust your strenght to match that weight. But there’s that one second of realisation where you go “ooop! What’s this?”. Yeah, it was kinda that.