[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[EP-tech] Archive under attack, security issue
In the apache error log - possibly in /var/log/httpd/error_log - but that depends on which server you're running.
You might see something like 'Error contacting recaptcha' if that is the case.
From: eprints-tech-bounces at ecs.soton.ac.uk [mailto:eprints-tech-bounces at ecs.soton.ac.uk] On Behalf Of Alfredo Cosco
Sent: 04 January 2018 10:10
To: eprints-tech at ecs.soton.ac.uk
Subject: Re: [EP-tech] Archive under attack, security issue
sorry the right url is: http://www.rmoa.unina.it
@john: where do I find errors?
The server contains only eprints instances.
I try to upgrade the script, and I'll let you know.
2018-01-03 14:59 GMT+01:00 John Salter <J.Salter at leeds.ac.uk<mailto:J.Salter at leeds.ac.uk>>:
Is there anything in the error logs?
Can your server access other websites? It need to be able to contact the Recaptcha service to confirm the response.
It might also be worth looking at:
which updates the reCaptcha to v2, and has a configuration setting for a proxy - if you server uses on when trying to contact external services.
I think it should work OK on v3.3.14.
From: eprints-tech-bounces at ecs.soton.ac.uk<mailto:eprints-tech-bounces at ecs.soton.ac.uk> [mailto:eprints-tech-bounces at ecs.soton.ac.uk<mailto:eprints-tech-bounces at ecs.soton.ac.uk>] On Behalf Of Alfredo Cosco
Sent: 03 January 2018 13:34
To: eprints-tech at ecs.soton.ac.uk<mailto:eprints-tech at ecs.soton.ac.uk>
Subject: [EP-tech] Archive under attack, security issue
it's some days that one of my archives is under a flood of fake registrations.
I activated a re-captcha plug-in but nothing changed.
The Archive is: http://www.rmaos.unina.it
How can I stop this?
I need help
*** Options: http://mailman.ecs.soton.ac.uk/mailman/listinfo/eprints-tech
*** Archive: http://www.eprints.org/tech.php/
*** EPrints community wiki: http://wiki.eprints.org/
*** EPrints developers Forum: http://forum.eprints.org/
-------------- next part --------------
An HTML attachment was scrubbed...