<div dir="ltr">My take on the incident was it was a brute force against the XML-RPC API for wordpress. Intent was probably (imho) to gain access, but because server is not configured that great, it caused DoS.<div><br></div>
<div>I'm going to do some basic config of the Varnish cache to aggressively cache the static web content & block access to the WP API.</div><div><br></div><div>If anyone has any other (modest) requests for the Varnish config please reply to this email.</div>
<div><br></div><div>Thanks!</div><div><br></div><div>-louis</div></div><div class="gmail_extra"><br><br><div class="gmail_quote">On Tue, Aug 19, 2014 at 5:15 PM, Justin Clift <span dir="ltr"><<a href="mailto:justin@gluster.org" target="_blank">justin@gluster.org</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">On 19/08/2014, at 10:03 PM, Michael Scherer wrote:<br>
<snip><br>
<div class="">> - we do not have proper alerting ( like nagios, etc )<br>
<br>
</div>Btw, Louis has just set up pingdom for us, which will sent alerts to<br>
gluster-infra when the <a href="http://www.gluster.org" target="_blank">www.gluster.org</a> site goes down. And let us<br>
know when it comes back up too. :)<br>
<br>
+ Justin<br>
<br>
--<br>
GlusterFS - <a href="http://www.gluster.org" target="_blank">http://www.gluster.org</a><br>
<br>
An open source, distributed file system scaling to several<br>
petabytes, and handling thousands of clients.<br>
<br>
My personal twitter: <a href="http://twitter.com/realjustinclift" target="_blank">twitter.com/realjustinclift</a><br>
<br>
_______________________________________________<br>
Gluster-infra mailing list<br>
<a href="mailto:Gluster-infra@gluster.org">Gluster-infra@gluster.org</a><br>
<a href="http://www.gluster.org/mailman/listinfo/gluster-infra" target="_blank">http://www.gluster.org/mailman/listinfo/gluster-infra</a><br>
</blockquote></div><br></div>