search

dotnet-architecture / eShopOnContainers

Cross-platform .NET sample microservices and container based application that runs on Linux Windows and macOS. Powered by .NET 7, Docker Containers and Azure Kubernetes Services. Supports Visual Studio, VS for Mac and CLI based environments with Docker CLI, dotnet CLI, VS Code or any other code editor. Moved to https://github.com/dotnet/eShop.
https://dot.net/architecture
24.53k stars 10.35k forks source link

[Feature Request] More endpoint security #538

Closed SychevIgor closed 6 years ago

SychevIgor commented 6 years ago

After deploying fully cloud version - via application insights I had recognized that after 5 minutes since the deployment, app was started attacking. Nothing special, just requests to default pages like GET //pma/scripts/setup.php GET //myadmin/scripts/setup.php HEAD /phpMyAdmin/scripts/setup.php from locations like Tampa/US or Libya.

I had checked books attached to a repo and didn't find much about endpoint protection from external attacks, only one sentence about- gateway and azure application gateway. It would be nice to have azure application gateway deployment script here or some hints from bruteforce attacks and so on.

If it's out of scope- fine, it's just my feedback

CESARDELATORRE commented 6 years ago

Good feedback. Whenever we can invest more in Azure assets for the microservices app, we’ll take that point into account. Thanks. :)