Open christinach opened 6 months ago
On 3/14/24, we added a Content Security Policy to the DSS Catalog nginxplus config to allow for libwizard.com to embed the DSS Catalog into tutorials on its site, as part of a request from a librarian (see #4673). We have also added exceptions in nginxplus configs for the main library website (see #4743) and the library catalog (see #4764). In DACS standup today, we discussed whether this might be related to these Honeybadger errors, but the error timeline seems to suggest that this incident has been happening sporadically since February, which is before we made these changes.
ActionDispatch::RemoteIp::IpSpoofAttackError: IP spoofing attack?! HTTP_CLIENT_IP="10.235.113.36" HTTP_X_FORWARDED_FOR="128.112.203.145"
Honeybadger error url
Notes: