jlepine Posted March 11, 2023 Share Posted March 11, 2023 bonjour Mon panier prestashop s'implémente de façon aléatoire et à la vitesse de 10 paniers par minute D'avance merci JL Link to comment Share on other sites More sharing options...
Eolia Posted March 11, 2023 Share Posted March 11, 2023 Vous subissez une attaque. Link to comment Share on other sites More sharing options...
jlepine Posted March 11, 2023 Author Share Posted March 11, 2023 Comment réagir SVP ? Link to comment Share on other sites More sharing options...
Eolia Posted March 11, 2023 Share Posted March 11, 2023 Généralement ça ne dure pas trop longtemps. Vous pouvez regarder vos logs d'accès et bloquer l'ip attaquante. Les requêtes sont du genre: Citation 178.130.55.221 - - [08/Mar/2023:20:50:59 +0100] "GET /fr/panier?add=1&id_product=12199%29%2F%2A%2A%2FORDER%2F%2A%2A%2FBY%2F%2A%2A%2F1--%2F%2A%2A%2FRXre&token=221e3fa84728468d13b9da2dbd40e5ef HTTP/1.1" 302 5969 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/532.0 (KHTML, like Gecko) Chrome/4.0.204.0 Safari/532.0" 178.130.55.221 - - [08/Mar/2023:20:50:59 +0100] "GET /fr/commande?ipa=12199 HTTP/1.1" 200 22242 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/532.0 (KHTML, like Gecko) Chrome/4.0.204.0 Safari/532.0" 178.130.55.221 - - [08/Mar/2023:20:51:00 +0100] "GET /fr/panier?add=1&id_product=12199%29%2F%2A%2A%2FORDER%2F%2A%2A%2FBY%2F%2A%2A%2F5050--%2F%2A%2A%2FDXOU&token=221e3fa84728468d13b9da2dbd40e5ef HTTP/1.1" 302 5967 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/532.0 (KHTML, like Gecko) Chrome/4.0.204.0 Safari/532.0" 178.130.55.221 - - [08/Mar/2023:20:51:00 +0100] "GET /fr/commande?ipa=12199 HTTP/1.1" 200 22242 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/532.0 (KHTML, like Gecko) Chrome/4.0.204.0 Safari/532.0" 178.130.55.221 - - [08/Mar/2023:20:51:00 +0100] "GET /fr/panier?add=1&id_product=12199%2F%2A%2A%2FORDER%2F%2A%2A%2FBY%2F%2A%2A%2F1--%2F%2A%2A%2FlvsL&token=221e3fa84728468d13b9da2dbd40e5ef HTTP/1.1" 302 5967 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/532.0 (KHTML, like Gecko) Chrome/4.0.204.0 Safari/532.0" 178.130.55.221 - - [08/Mar/2023:20:51:01 +0100] "GET /fr/commande?ipa=12199 HTTP/1.1" 200 22240 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/532.0 (KHTML, like Gecko) Chrome/4.0.204.0 Safari/532.0" 178.130.55.221 - - [08/Mar/2023:20:51:01 +0100] "GET /fr/panier?add=1&id_product=12199%2F%2A%2A%2FORDER%2F%2A%2A%2FBY%2F%2A%2A%2F4491--%2F%2A%2A%2FOWUl&token=221e3fa84728468d13b9da2dbd40e5ef HTTP/1.1" 302 5965 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/532.0 (KHTML, like Gecko) Chrome/4.0.204.0 Safari/532.0" Link to comment Share on other sites More sharing options...
jlepine Posted March 11, 2023 Author Share Posted March 11, 2023 Et comment je bloque l'attaque ? Link to comment Share on other sites More sharing options...
jlepine Posted March 11, 2023 Author Share Posted March 11, 2023 j'ai trouvé tous les logs ! Et après ? Link to comment Share on other sites More sharing options...
Eolia Posted March 11, 2023 Share Posted March 11, 2023 Sur un serveur dédié on a des outils, sur un mutu vous pouvez juste bloquer l'ip dans le htaccess en ajoutant une ligne avant les commentaires Prestashop (#####) deny from xxx.xxx.xxx.xxx deny from yyy.yyy.yyy.yyy xxx..., yyy... sont les IP à bloquer. Link to comment Share on other sites More sharing options...
jlepine Posted March 11, 2023 Author Share Posted March 11, 2023 Merci beaucoup mais les fichiers du robot se permettent de modifier les droits du fichier htaccess ! Link to comment Share on other sites More sharing options...
Eolia Posted March 11, 2023 Share Posted March 11, 2023 Je ne comprends pas ce que vous dites... Link to comment Share on other sites More sharing options...
jlepine Posted March 11, 2023 Author Share Posted March 11, 2023 Le fichier log contien du code qui se permet de modifier les droit du .htaccess ! (copie d'écran) Link to comment Share on other sites More sharing options...
Eolia Posted March 11, 2023 Share Posted March 11, 2023 Oulà... là vous êtes sur une IP interne dans les logs du ftp, rien à voir avec les logs d'accès WEB Link to comment Share on other sites More sharing options...
jlepine Posted March 11, 2023 Author Share Posted March 11, 2023 C'est le fichier sftp.log dans le dossier /logs de prestashop Jl Link to comment Share on other sites More sharing options...
Eolia Posted March 11, 2023 Share Posted March 11, 2023 ben c'est access.log qu'il faut regarder. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now