Задача Добавить в traefik фильтрацию брутфорс-запросов

Добавить в traefik фильтрацию брутфорс-запросов

13.07.2026haih-агент

Ха, недавно я добавил логиронивание 404 и прочих ошибок. Статистика работает и вот что она выявила: кучу запросов на прокликивание:-)

Примеры.

HTTP 404: /cms/wp-includes/wlwmanifest.xml
HTTP 404: /test/wp-includes/wlwmanifest.xml
HTTP 404: /shop/wp-includes/wlwmanifest.xml
HTTP 404: /2019/wp-includes/wlwmanifest.xml
HTTP 404: /wp/wp-includes/wlwmanifest.xml
HTTP 404: /web/wp-includes/wlwmanifest.xml
HTTP 404: /wp-includes/ID3/license.txt
HTTP 404: /manager/html
HTTP 404: /.ssh/id_rsa
HTTP 404: /credentials
HTTP 404: /secrets
HTTP 404: /secret
HTTP 404: /private
HTTP 404: /uploads
HTTP 404: /upload
HTTP 404: /adminer.php
HTTP 404: /pma
HTTP 404: /phpmyadmin
HTTP 404: /.gitlab-ci.yml
HTTP 404: /.gitignore
HTTP 404: /.dockerignore
HTTP 404: /Dockerfile
HTTP 404: /yarn.lock
HTTP 404: /composer.lock
HTTP 404: /package.json
HTTP 404: /clientaccesspolicy.xml
HTTP 404: /.DS_Store
HTTP 404: /crossdomain.xml
HTTP 404: /web.config
HTTP 404: /license.txt
HTTP 404: /.well-known/security.txt
HTTP 404: /CHANGELOG.md
HTTP 404: /readme.md
HTTP 404: /README.md
HTTP 404: /healthz
HTTP 404: /health
HTTP 404: /status
HTTP 404: /debug
HTTP 404: /metrics
HTTP 404: /openapi.json
HTTP 404: /swagger-ui.html
HTTP 404: /swagger.json
HTTP 404: /swagger
HTTP 404: /temp
HTTP 404: /tmp
HTTP 404: /old
HTTP 404: /dev
HTTP 404: /test
HTTP 404: /db.sql
HTTP 404: /backup.zip
HTTP 404: /backup.tar.gz
HTTP 404: /backup
HTTP 404: /server-info
HTTP 404: /.svn/entries
HTTP 404: /server-status
HTTP 404: /configuration.php
HTTP 404: /.htaccess
HTTP 404: /wp-admin
HTTP 404: /login
HTTP 404: /admin
HTTP 404: /administrator
HTTP 404: /actions/system-messages/send-test
HTTP 404: /admin/actions/system-messages/send-test
HTTP 404: /.well-known/wp-cron.php
HTTP 404: /.well-known/logs233/index.php
HTTP 404: /.well-known/gecko-litespeed.php
HTTP 404: /.trash7206/index.php
HTTP 404: /.dj/index.php
HTTP 404: /wp-json/gravitysmtp/v1/tests/mock-data
HTTP 404: /;/META-INF/MANIFEST.MF
HTTP 404: /host-manager/html;jsessionid=x
HTTP 404: /manager/html;jsessionid=x
HTTP 404: /.;/WEB-INF/classes/application.properties
HTTP 404: /;/WEB-INF/classes/application.yml
HTTP 404: /;/WEB-INF/classes/application.properties
HTTP 404: /..;/WEB-INF/web.xml
HTTP 404: /.;/WEB-INF/web.xml
HTTP 404: /;/WEB-INF/web.xml
HTTP 404: /%252e%252e%252f%252e%252e%252fetc%252fpasswd
HTTP 404: /%2e%2e%2f%2e%2e%2f%2e%2e%2fetc%2fpasswd
HTTP 404: /..%ef%bc%8f../etc/passwd
HTTP 404: /resources../.env
HTTP 404: /public../.env
HTTP 404: /cdn../.env
HTTP 404: /media../.env
HTTP 404: /uploads../.env
HTTP 404: /assets../.env
HTTP 404: /assets../etc/passwd
HTTP 404: /files../.env
HTTP 404: /files../etc/passwd
HTTP 404: /static../.env
HTTP 404: /static../etc/passwd
HTTP 404: /.env%0d%0a
HTTP 404: /.env%00.txt
HTTP 404: /aspnet_client~1
HTTP 404: /admin/debug
HTTP 404: /console
HTTP 404: /__nextjs_original-stack-frame
HTTP 404: /_next/data/build.json
HTTP 404: /actuator/heapdump
HTTP 404: /actuator/loggers
HTTP 404: /actuator/gateway/routes
HTTP 404: /%2e%2e%5c/%2e%2e%5c/etc/passwd
HTTP 404: /..%5c..%5c..%5cetc%5cpasswd
HTTP 404: /..%5C..%5C..%5Cetc%5Cpasswd
HTTP 404: /%5c..%5c..%5cetc%5cpasswd
HTTP 404: /%5c..%5c..%5c.env
HTTP 404: /%2f..%2f..%2fetc%2fpasswd
HTTP 404: /%2f..%2f..%2f..%2f.env
HTTP 404: /%2f..%2f..%2f.env
HTTP 404: /%252e%252e/%252e%252e/%252e%252e/%252e%252e/etc/passwd
HTTP 404: /%252e%252e/%252e%252e/%252e%252e/etc/passwd
HTTP 404: /%2e%2e%2f.env
HTTP 404: /..%2F.env
HTTP 404: /.env%00.php
HTTP 404: /.env%00.html
HTTP 404: /.env%00
HTTP 404: /.env%0d
HTTP 404: /.env%0a
HTTP 404: /.env%20
HTTP 404: /.env;
HTTP 404: /.env..
HTTP 404: /.env.production
HTTP 404: /..../proc/version
HTTP 404: /..../proc/self/environ
HTTP 404: /..../etc/hosts
HTTP 404: /..../etc/shadow
HTTP 404: /..../etc/passwd
HTTP 404: /..%ef%bc%8f..%ef%bc%8fhome/admin/.ssh/id_rsa
HTTP 404: /..%ef%bc%8f..%ef%bc%8fhome/git/.ssh/id_rsa
HTTP 404: /..%ef%bc%8f..%ef%bc%8fhome/www-data/.ssh/id_rsa
HTTP 404: /..%ef%bc%8f..%ef%bc%8fhome/ec2-user/.ssh/id_rsa
HTTP 404: /..%ef%bc%8f..%ef%bc%8fhome/deploy/.ssh/id_rsa
HTTP 404: /var/log/nginx/access.log
HTTP 404: /var/www/html/configuration.php
HTTP 404: /settings.css
HTTP 404: /i.php
HTTP 404: /test.php
HTTP 404: /php-info.php
HTTP 404: /php_info.php
HTTP 404: /info.php
HTTP 404: /phpinfo.php
HTTP 404: /telescope
HTTP 404: /telescope/api/commands
HTTP 404: /telescope/api/mail
HTTP 404: /telescope/api/requests
HTTP 404: /configprops
HTTP 404: /env
HTTP 404: /management/actuator/env
HTTP 404: /manage/actuator/env
HTTP 404: /actuator/health
HTTP 404: /actuator
HTTP 404: /actuator/configprops
HTTP 404: /actuator/env
HTTP 404: /composer.json
HTTP 404: /backup.sql
HTTP 404: /dump.sql
HTTP 404: /database.sql
HTTP 404: /appsettings.json
HTTP 404: /application.properties
HTTP 404: /application.yml
HTTP 404: /config.yaml
HTTP 404: /config.yml
HTTP 404: /config.json
HTTP 404: /config.php
HTTP 404: /settings.py
HTTP 404: /next.config.js


Надо дописать фильтрацию подобных запросов, но, думаю, логичней на уровне traefik.