Liste des IP qui exploitent la faille : editBlackAndWhiteList : Chine & Corée du Nord

Voici la liste des IP ;

39.79.94.197 - admin [03/Jun/2022:12:13:29 +0200] "POST /editBlackAndWhiteList HTTP/1.1" 302 239 "-" "Mozila/5.0"
119.119.99.238 - admin [03/Jun/2022:14:36:51 +0200] "POST /editBlackAndWhiteList HTTP/1.1" 302 241 "-" "Mozila/5.0"
120.237.210.179 - admin [03/Jun/2022:14:56:25 +0200] "POST /editBlackAndWhiteList HTTP/1.1" 302 239 "-" "Mozila/5.0"
113.116.170.23 - admin [02/Jun/2022:06:50:53 +0200] "POST /editBlackAndWhiteList HTTP/1.1" 302 239 "-" "Mozila/5.0"
58.145.68.217 - admin [02/Jun/2022:09:37:28 +0200] "POST /editBlackAndWhiteList HTTP/1.1" 302 241 "-" "Mozila/5.0"
220.79.44.139 - admin [02/Jun/2022:12:53:38 +0200] "POST /editBlackAndWhiteList HTTP/1.1" 302 241 "-" "Mozila/5.0"

J’ai donc bloqué toutes ses IP :

# iptables -A INPUT -s 39.79.94.197 -j DROP
# iptables -A INPUT -s 119.119.99.238 -j DROP
# iptables -A INPUT -s 120.237.210.179 -j DROP
# iptables -A INPUT -s 113.116.170.23 -j DROP
# iptables -A INPUT -s 58.145.68.217 -j DROP
# iptables -A INPUT -s 220.79.44.139 -j DROP
# /usr/sbin/iptables-save > /etc/iptables/rules.v4

Quelques localisation ;

IP Address Country Region City
39.79.94.197 China Shandong Dongying
ISP Organization Latitude Longitude
China Unicom Shandong Province Network Not Available
IP Address Country Region City
119.119.99.238 China Liaoning Shenyang
ISP Organization Latitude Longitude
China Unicom Liaoning Province Network Not Available 41.7922 123.4328
IP Address Country Region City
120.237.210.179 China Guangdong Huizhou
ISP Organization Latitude Longitude
China Mobile Communications Corporation Not Available 23.0833 114.4000
IP Address Country Region City
113.116.170.23 China Guangdong Shenzhen
ISP Organization Latitude Longitude
ChinaNet Guangdong Province Network Not Available 22.5455 114.0683
IP Address Country Region City
58.145.68.217 Korea (Republic of) Gyeonggi-do Mansan
ISP Organization Latitude Longitude
SK Broadband Co Ltd Not Available 37.6795 127.1108
IP Address Country Region City
220.79.44.139 Korea (Republic of) Gyeonggi-do Seongnam
ISP Organization Latitude Longitude
KT Corporation Not Available 37.4201 127.1267

Laisser un commentaire

Votre adresse e-mail ne sera pas publiée. Les champs obligatoires sont indiqués avec *

Time limit is exhausted. Please reload CAPTCHA.