With apache, you can use modsecurity quite easily, and you can block all
azure (and other cloud providers ranges) from certain services like
wordpress, or contact forms etc.. (you can even do dns based checks or
rbldnsd) ..
Unless desktop in the cloud becomes more prevalent, you should make sure
that resources designed to be accessed by end users only, dont accept
connections from potentially compromised servers, or the bad actors
throwing up relays..
and yes, Azure, Googlecloud, Amazon threat activity is severely on the rise
On 2021-06-04 10:06 a.m., Alan Hodgson via mailop wrote:
On Fri, 2021-06-04 at 11:45 -0500, Scott Mutter via mailop wrote:
Not to hijack this thread and send it off-topic, but I'm also seeing a
lot of brute force attempts (mostly WordPress login attempts) from
various and wide-ranging subnets of Microsoft IPs.
Has Microsoft's network been compromised?
Azure.
_______________________________________________
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
--
"Catch the Magic of Linux..."
------------------------------------------------------------------------
Michael Peddemors, President/CEO LinuxMagic Inc.
Visit us at http://www.linuxmagic.com @linuxmagic
A Wizard IT Company - For More Info http://www.wizard.ca
"LinuxMagic" a Registered TradeMark of Wizard Tower TechnoServices Ltd.
------------------------------------------------------------------------
604-682-0300 Beautiful British Columbia, Canada
This email and any electronic data contained are confidential and intended
solely for the use of the individual or entity to which they are addressed.
Please note that any views or opinions presented in this email are solely
those of the author and are not intended to represent those of the company.
_______________________________________________
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
