{"id":133472,"date":"2023-04-16T12:24:34","date_gmt":"2023-04-16T10:24:34","guid":{"rendered":"https:\/\/blog.wedos.cz\/?p=133472"},"modified":"2023-04-24T10:33:34","modified_gmt":"2023-04-24T08:33:34","slug":"waf-report-z-wedos-global-protection-za-brezen-2023","status":"publish","type":"post","link":"https:\/\/blog.wedos.com\/cs\/waf-report-z-wedos-global-protection-za-brezen-2023","title":{"rendered":"WAF report z WEDOS Global Protection za b\u0159ezen 2023"},"content":{"rendered":"\n

V b\u0159eznu pokra\u010dovalo testov\u00e1n\u00ed pravidel pro WAF (Web Application Firewall). Dostali jsme se u\u017e do f\u00e1ze, \u017ee WAF byl automaticky nasazen pro v\u0161echny nov\u011b p\u0159idan\u00e9 weby na WEDOS Global Protection<\/a> a pomalu jsme se p\u0159ipravovali na nasazen\u00ed pro v\u0161echny.<\/p>\n\n\n\n\n\n\n\n

WEDOS Global – dal\u0161\u00ed nov\u00e9 body v b\u0159eznu<\/h2>\n\n\n\n

WEDOS Global Protection je prvn\u00ed slu\u017ebou, kterou rozj\u00ed\u017ed\u00edme na na\u0161\u00ed glob\u00e1ln\u00ed infrastruktu\u0159e WEDOS Global. Jedn\u00e1 se o s\u00ed\u0165 postavenou na technologi\u00edch BGP Anycast a reverzn\u00edch proxy. Slu\u017ebu stav\u00edme pouze na na\u0161em vlastn\u00edm hardware (aktu\u00e1ln\u011b v\u00edce jak tis\u00edc fyzick\u00fdch server\u016f), kter\u00e9 m\u00e1me v datacetrech zaru\u010duj\u00edc\u00edch n\u00e1m budouc\u00ed \u0161k\u00e1lov\u00e1n\u00ed a minim\u00e1ln\u00ed konektivitu 100 Gbps v ka\u017ed\u00e9m bod\u011b. <\/p>\n\n\n\n

Nov\u00fd bod v Sofii (Bulharsko)<\/h3>\n\n\n\n

Dne 6. b\u0159ezna 2023 v 14:31 jsme spustili dal\u0161\u00ed bod v Evrop\u011b. Tento bod se nach\u00e1z\u00ed v bulharsk\u00e9 metropoli Sofii a bude m\u00edt na starosti hlavn\u011b provoz z jihov\u00fdchodu Evropy.<\/p>\n\n\n\n

\"\"<\/a>
V pond\u011bl\u00ed 6. b\u0159ezna 2023 v 14:31 jsme spustili dal\u0161\u00ed bod WEDOS Global v Evrop\u011b. Tentokr\u00e1t v Bulharsku v Sofii. M\u00e1me tam 2x Moonshot, tj. 90 fyzick\u00fdch server\u016f a konektivitu 100 Gbps. <\/figcaption><\/figure>\n\n\n\n

Nov\u00fd bod disponuje dv\u011bma servery Moonshot, co\u017e znamen\u00e1 90 fyzick\u00fdch server\u016f s konektivitou o rychlosti 100 Gbps. Tato kapacita by m\u011bla do\u010dasn\u011b pomoci zvl\u00e1dat celkem siln\u00e9 \u00fatoky ze severn\u00ed Afriky a jihoz\u00e1padn\u00ed \u010d\u00e1sti Asie, se kter\u00fdmi jsme se v minulosti pot\u00fdkali. Ty v budoucnosti bude \u0159e\u0161it bod v Turecku a je\u0161t\u011b jeden dal\u0161\u00ed na Bl\u00edzk\u00e9m v\u00fdchod\u011b.<\/p>\n\n\n\n

Servery v Turecku se n\u00e1m st\u00e1le neda\u0159\u00ed spustit. Situace je zde komplikovan\u00e1.<\/p>\n\n\n\n

Nov\u00fd bod v Torontu (Kanada)<\/h3>\n\n\n\n

V pond\u011bl\u00ed 13. b\u0159ezna 2023 jsme v 20:52 spustili bod WEDOS Global v Torontu v Kanad\u011b. I zde m\u00e1me 2 Moonshoty, tedy 90 fyzick\u00fdch server\u016f a 4 switche. Aktu\u00e1ln\u011b p\u0159es tento bod moc provozu nejde. V\u011bt\u0161ina je z Kanady a \u010d\u00e1st ze severu USA. <\/p>\n\n\n\n

\"\"<\/a>
V pond\u011bl\u00ed 13. b\u0159ezn\u011b 2023 jsme v 20:52 spustili bod WEDOS Global v Torontu v Kanad\u011b. <\/figcaption><\/figure>\n\n\n\n

Pom\u016f\u017ee n\u00e1m hlavn\u011b s \u00fatoky a zrychlen\u00edm web\u016f z\u00e1kazn\u00edk\u016f d\u00edky automatick\u00e9mu cachov\u00e1n\u00ed statick\u00e9ho obsahu a p\u0159esm\u011brov\u00e1n\u00ed. Divili byste se, kolik WordPress\u016f m\u00e1 \u0161patn\u011b ud\u011blan\u00e9 p\u0159esm\u011brov\u00e1n\u00ed, kdy je nutn\u00e9 na\u010d\u00edst cel\u00e9 j\u00e1dro. <\/p>\n\n\n\n

Nov\u00e9 body v USA – Silicon Valley a Atlanta<\/h3>\n\n\n\n

V r\u00e1mci prvn\u00ed f\u00e1ze budov\u00e1n\u00ed WEDOS Global bylo napl\u00e1nov\u00e1no pro USA celkem 5 bod\u016f a m\u00e1me hotovo! Dva zb\u00fdvaj\u00edc\u00ed body byly spu\u0161t\u011bny a to v Atlant\u011b a Silicon Valley. Atlantsk\u00fd bod byl spu\u0161t\u011bn 27. \u00fanora 2023. Nejzaj\u00edmav\u011bj\u0161\u00ed bylo, \u017ee hned p\u0159evzal v\u011bt\u0161inu po\u017eadavk\u016f od spole\u010dnosti Automattic na jejich plugin Jetpack pro WordPress. Tento bod odbavuje p\u0159ev\u00e1\u017en\u011b provoz z USA, Braz\u00edlie, Britsk\u00fdch Panensk\u00fdch ostrov\u016f, Antiguy a Barbudy a Argentiny.<\/p>\n\n\n\n

\"\"<\/a>
V 9:02 27. \u00fanora 2023 jsme spustili \u010dtvrt\u00fd bod v USA – Atlanta.<\/figcaption><\/figure>\n\n\n\n

Druh\u00fd bod v Silicon Valley byl spu\u0161t\u011bn v polovin\u011b b\u0159ezna a WEDOS Global tak nyn\u00ed disponuje 90 fyzick\u00fdmi servery v t\u00e9to oblasti. I kdy\u017e tento bod zat\u00edm zpracov\u00e1v\u00e1 pouze necel\u00e9 1,5 % celkov\u00e9ho provozu WEDOS Global, p\u0159ev\u00e1\u017en\u011b se jedn\u00e1 o po\u017eadavky ze server\u016f Amazon, kde m\u00e1 sv\u00e9 endpointy \u0159ada API t\u0159et\u00edch stran. <\/p>\n\n\n\n

\"\"<\/a>
V polovin\u011b b\u0159ezna (16. \u00fanora 2023) jsme pak spustili dal\u0161\u00ed prozat\u00edm posledn\u00ed pl\u00e1novan\u00fd bod v USA tentokr\u00e1t na strategick\u00e9m m\u00edst\u011b Silicon Valley. <\/figcaption><\/figure>\n\n\n\n

Pracujeme na dal\u0161\u00edch lokalit\u00e1ch a lad\u00edme peering<\/h3>\n\n\n\n

Servery WEDOS Global jsou aktu\u00e1ln\u011b ve 23 lokalit\u00e1ch v 18 st\u00e1tech na 5 kontinentech. Aktivn\u011b pracujeme na 3 dal\u0161\u00edch lokalit\u00e1ch, kter\u00e9 by ji\u017e brzy mohly b\u00fdt aktivn\u00ed. Ale nen\u00ed to tak jednoduch\u00e9 jako zajistit housing pro jeden server. Pro n\u00e1s je minimum 45 fyzick\u00fdch server\u016f a konektivita 100 Gbps. To v\u00e1m v\u0161ude jen tak nedaj\u00ed \ud83d\ude42<\/p>\n\n\n\n

Za\u010dali jsme tak\u00e9 ladit peeringy. Hodn\u011b n\u00e1m s t\u00edm pomohla konference CloudFest v N\u011bmecku, kde jsme z\u00edskali cenn\u00e9 kontakty<\/a>. \u0158ada v\u011bc\u00ed se dala do pohybu rychleji, ne\u017e jsme to v\u016fbec m\u011bli v pl\u00e1nu. <\/p>\n\n\n\n

\"\"<\/a>
Odezva WEDOS Global po sv\u011bt\u011b k 11.04.2023.<\/figcaption><\/figure>\n\n\n\n

Aktu\u00e1ln\u011b, co se t\u00fdk\u00e1 sv\u011btov\u00e9ho \u017eeb\u0159\u00ed\u010dku nejv\u011bt\u0161\u00edch provozovatel\u016f DNS na sv\u011bt\u011b, tak jsme se d\u00edky WEDOS Global dostali mezi TOP 10 v Evrop\u011b. Bude to ale o dost lep\u0161\u00ed. Hodn\u011b n\u00e1m pr\u016fm\u011br kaz\u00ed p\u00e1r lokalit, kter\u00e9 vy\u0159e\u0161\u00edme. Dostat se mezi TOP 5 je re\u00e1ln\u00e9 u\u017e v prvn\u00ed f\u00e1zi.<\/p>\n\n\n\n

Celosv\u011btov\u011b jsme TOP 27. Nicm\u00e9n\u011b \u0159ada lokalit je teprve v pl\u00e1nu a na v\u011bt\u0161in\u011b st\u00e1vaj\u00edc\u00edch jsme je\u0161t\u011b neza\u010dali \u0159e\u0161it peeringy. Dlouhodob\u00fd c\u00edl je dostat se do TOP 10 \ud83d\ude42<\/p>\n\n\n\n

Provoz p\u0159es WEDOS Global za b\u0159ezen<\/h2>\n\n\n\n

Na WEDOS Global u\u017e je v\u00edce jak 2 tis\u00edce dom\u00e9n, kter\u00e9 jsou chr\u00e1n\u011bny p\u0159ed r\u016fzn\u00fdmi druhy \u00fatok\u016f. <\/p>\n\n\n\n

V b\u0159eznu bylo zaznamen\u00e1no celkem 1,9 miliardy po\u017eadavk\u016f<\/strong> z 8,7 milion\u016f unik\u00e1tn\u00edch IP adres<\/strong>, kter\u00e9 sm\u011b\u0159ovaly na chr\u00e1n\u011bn\u00e9 dom\u00e9ny. Jedn\u00e1 se o po\u017eadavky o\u010di\u0161t\u011bn\u00e9 o DDoS \u00fatoky na L3 a L4 a o v\u0161echen provoz, kter\u00fd m\u00e1me na blacklistech. <\/p>\n\n\n\n

\"\"<\/figure>
\n

DDoS \u00fatoky na L3 a L4 vrstv\u011b se zam\u011b\u0159uj\u00ed na s\u00ed\u0165ovou a transportn\u00ed vrstvu a vyu\u017e\u00edvaj\u00ed r\u016fzn\u00e9 techniky, jak zahlcovat c\u00edlov\u00e9 servery nebo za\u0159\u00edzen\u00ed.

S\u00ed\u0165ov\u00e1 vrstva (L3) – zaji\u0161\u0165uje sm\u011brov\u00e1n\u00ed dat mezi r\u016fzn\u00fdmi s\u00edt\u011bmi pomoc\u00ed logick\u00fdch adres (IP).

Transportn\u00ed vrstva (L4) – zaji\u0161\u0165uje spolehliv\u00fd a \u0159\u00edzen\u00fd p\u0159enos dat mezi koncov\u00fdmi body pomoc\u00ed protokol\u016f jako TCP nebo UDP.
<\/p>\n<\/div><\/div>\n\n\n\n

D\u00e1le bylo zablokov\u00e1no 10,8 milion\u016f po\u017eadavk\u016f pomoc\u00ed WAF<\/strong> (firewallu pro webov\u00e9 aplikace), kter\u00fd chr\u00e1n\u00ed weby p\u0159ed \u00fatoky na aplika\u010dn\u00ed \u00farovni (L7). WAF byl b\u011bhem b\u0159ezna postupn\u011b nasazov\u00e1n u v\u0161ech nov\u011b p\u0159idan\u00fdch dom\u00e9n. Dal\u0161\u00ed L7 \u00fatoky pak zastavily chytr\u00e9 filtry, kter\u00e9 pracuj\u00ed s aktu\u00e1ln\u00edm provozem.<\/p>\n\n\n\n

\"\"<\/figure>
\n

\u00datoky na L7 jsou typy kybernetick\u00fdch \u00fatok\u016f, kter\u00e9 se sna\u017e\u00ed znemo\u017enit nebo zt\u00ed\u017eit p\u0159\u00edstup k webov\u00fdm str\u00e1nk\u00e1m, API atd. Na Aplika\u010dn\u00ed vrstv\u011b (L7) jede nap\u0159\u00edklad HTTP.<\/p>\n\n\n\n

\u00datoky na L7 jsou obt\u00ed\u017en\u011b odhaliteln\u00e9 a odli\u0161iteln\u00e9 od norm\u00e1ln\u00edho provozu, proto\u017ee pou\u017e\u00edvaj\u00ed stejn\u00e9 protokoly a metody jako legitimn\u00ed u\u017eivatel\u00e9. K jejich eliminaci je pot\u0159eba pou\u017e\u00edt speci\u00e1ln\u00ed n\u00e1stroje a techniky a d\u016fkladnou anal\u00fdzu s\u00ed\u0165ov\u00e9ho provozu.
<\/p>\n<\/div><\/div>\n\n\n\n

Infrastruktura WEDOS Global odbavila nejv\u00edce po\u017eadavk\u016f z \u010ceska<\/strong> (1 259 milion\u016f), USA<\/strong> (190 milion\u016f) a Slovenska<\/strong> (93 milion\u016f).<\/p>\n\n\n\n

\"\"<\/a>
Provoz p\u0159es WEDOS Global podle zem\u00ed – b\u0159ezen 2023<\/figcaption><\/figure>\n\n\n\n

Vizualizace, na kter\u00e9 body se p\u0159ipojuj\u00ed n\u00e1v\u0161t\u011bvn\u00edci z jednotliv\u00fdch zem\u00ed pak vypad\u00e1 n\u00e1sledovn\u011b. Zde je je\u0161t\u011b dost co zlep\u0161ovat, ale postupn\u011b na tom za\u010d\u00edn\u00e1me pracovat.<\/p>\n\n\n\n

\"\"<\/a>
Vizualizace, na kter\u00e9 body se v b\u0159eznu 2023 p\u0159ipojovali n\u00e1v\u0161t\u011bvn\u00edci z jednotliv\u00fdch zem\u00ed.<\/figcaption><\/figure>\n\n\n\n

Z \u010desk\u00fdch poskytovatel\u016f jsou u n\u00e1s nejaktivn\u011bj\u0161\u00ed z\u00e1kazn\u00edci O2<\/strong> (234 milion\u016f), T-Mobile<\/strong> (145 milion\u016f) a Vodafone<\/strong> (89 milion\u016f).<\/p>\n\n\n\n

Google (67 milion\u016f) p\u0159edehnal Seznam (22 milion\u016f) trojn\u00e1sobn\u011b, nicm\u00e9n\u011b je t\u0159eba dodat, \u017ee z IP adres Google nechod\u00ed jen jejich roboti, ale jsou tam i servery a slu\u017eby jejich z\u00e1kazn\u00edk\u016f. <\/p>\n\n\n\n

\"\"<\/a>
Provoz p\u0159es WEDOS Global podle poskytovatele – b\u0159ezen 2023<\/figcaption><\/figure>\n\n\n\n

Na nejv\u011bt\u0161\u00ed chr\u00e1n\u011bn\u00fd web na WEDOS Global Protection \u0161lo 92 milion\u016f po\u017eadavk\u016f, na druh\u00fd 44 milion\u016f a t\u0159et\u00ed 38 milion\u016f. Nejv\u00edce po\u017eadavk\u016f zablokoval WAF u jednoho z\u00e1kazn\u00edka 3,37 milionu, u druh\u00e9ho 1,49 a t\u0159et\u00ed je n\u00e1\u0161 \u010desk\u00fd web s 1,46 miliony. N\u00e1\u0161 web v\u0161ak m\u011bl WAF zapnut\u00fd cel\u00fd b\u0159ezen. V t\u011bchto statistik\u00e1ch nejsou dal\u0161\u00ed ochrany na L7.<\/p>\n\n\n\n

\n
\"\"<\/a>
Tabulka web\u016f za WEDOS Global za b\u0159ezen podle po\u010dtu po\u017eadavk\u016f.<\/figcaption><\/figure>\n\n\n\n
\"\"<\/a>
Tabulka web\u016f za WEDOS Global za b\u0159ezen podle po\u010dtu unik\u00e1tn\u00edch IP adres.<\/figcaption><\/figure>\n\n\n\n
\"\"<\/a>
Tabulka web\u016f za WEDOS Global za b\u0159ezen podle po\u010dtu zablokovan\u00fdch po\u017eadavk\u016f na WAF.<\/figcaption><\/figure>\n<\/figure>\n\n\n\n

Nutno podotknout, \u017ee v\u011bt\u0161ina web\u016f v tabulce jede na na\u0161em sd\u00edlen\u00e9m webhostingu NoLimit\/Extra a vyu\u017e\u00edv\u00e1 cachov\u00e1n\u00ed obsahu a vybran\u00fdch po\u017eadavk\u016f p\u0159\u00edmo na jednotliv\u00fdch bodech WEDOS Global. D\u00edky tomu jsou schopni ut\u00e1hnout bez v\u011bt\u0161\u00edch komplikac\u00ed takov\u00fd provoz. A\u017e na v\u00fdjimky je v\u0161e automatizovan\u00e9, tak\u017ee a\u0165 m\u00e1te hosting kdekoliv, tak WEDOS Global v\u00e1m u\u017e te\u010f v\u00fdrazn\u011b pom\u016f\u017ee. Pro jeho vyu\u017eit\u00ed nemus\u00edte m\u00edt \u017e\u00e1dn\u00e9 dal\u0161\u00ed slu\u017eby u n\u00e1s. Sta\u010d\u00ed nasm\u011brovat dom\u00e9nu na DNS WEDOS Global. Zkuste to<\/a>, vr\u00e1tit se to d\u00e1 v\u017edy (sta\u010d\u00ed p\u0159ehodit DNS zp\u011bt).<\/p>\n\n\n\n

Nejsiln\u011bj\u0161\u00ed \u00fatoky<\/h2>\n\n\n\n

B\u0159ezen byl celkem klidn\u00fd co se t\u00fdk\u00e1 \u00fatok\u016f. DDoS \u00fatoky do 10 Gbps na L3\/L4 ne\u0159e\u0161\u00edme, ty zvl\u00e1d\u00e1 automatika a jen se zapisuj\u00ed do log\u016f. D\u00edky WEDOS Global jsou nav\u00edc rozprost\u0159en\u00e9 do jednotliv\u00fdch lokalit, tak\u017ee v jednom bod\u011b p\u0159es 10 Gbps je jen v\u00fdjime\u010dn\u011b. Pokud u\u017e se objev\u00ed tak je kr\u00e1tk\u00fd, automatika jej vy\u0159e\u0161\u00ed \u010dasto d\u0159\u00edve ne\u017e technik zareaguje na SMS. \u00dato\u010dn\u00edky jsme asi p\u0159estali bavit a hledaj\u00ed si jin\u00e9 c\u00edle.<\/p>\n\n\n\n

Zato L7 jsou st\u00e1le obl\u00edben\u011bj\u0161\u00ed a ob\u010das n\u00e1s p\u0159ekvap\u00ed, jak siln\u00fd provoz dok\u00e1\u017eou \u00fato\u010dn\u00edci nejen vygenerovat, ale hlavn\u011b sesynchronizovat.<\/p>\n\n\n\n

1. m\u00edsto \u00fatok na eshop – p\u0159es 1,3M po\u017eadavk\u016f za minutu<\/h3>\n\n\n\n

K nejsiln\u011bj\u0161\u00edmu \u00fatoku do\u0161lo za\u010d\u00e1tkem b\u0159ezna. Ve \u0161pi\u010dce m\u011bl p\u0159es 1,3 milion\u016f po\u017eadavk\u016f za minutu. Kdy\u017e \u00fato\u010dn\u00edci zjistili, c\u00edlov\u00fd eshop neshod\u00ed, tak \u00fatok ukon\u010dili. P\u0159ekvapilo n\u00e1s jak dok\u00e1zali p\u011bkn\u011b \u00fatok sesynchronizovat. Na to \u017ee se jednalo o 2289 IP adres, tak za\u010dal doslova b\u011bhem 1 – 2 vte\u0159in.<\/p>\n\n\n\n

\"\"<\/a>
Nejsiln\u011bj\u0161\u00ed L7 DDoS \u00fatok za b\u0159ezen 2023.
<\/figcaption><\/figure>\n\n\n\n

C\u00edlov\u00fd web byl v dob\u011b za\u010d\u00e1tku \u00fatoku pomalej\u0161\u00ed, p\u00e1r tis\u00edc po\u017eadavk\u016f pro\u0161lo i na webserver, ale NoLimit toho ut\u00e1hne hodn\u011b.<\/p>\n\n\n\n

2. m\u00edsto \u00fatok na eshop – p\u0159es 1,2M po\u017eadavk\u016f za minutu<\/h3>\n\n\n\n

Stejn\u00fd \u00fato\u010dn\u00edk m\u00e1 na sv\u011bdom\u00ed z\u0159ejm\u011b i dal\u0161\u00ed \u00fatok ze za\u010d\u00e1tku b\u0159ezna. Proveden\u00ed bylo velice podobn\u00e9 a to i v\u010detn\u011b s\u00edly, kter\u00e1 byla t\u00e9m\u011b\u0159 1,3M po\u017eadavk\u016f za minutu. \u00dato\u010dilo v\u0161ak „jen“ 779 unik\u00e1tn\u00edch IP adres. Jak vid\u00edte na grafu, \u00fato\u010dn\u00edk opravdu cht\u011bl shodit sv\u016fj c\u00edl a ke konci tam tla\u010dil po\u017eadavky, co to jen \u0161lo.<\/p>\n\n\n\n

\"\"<\/a>
Druh\u00fd nejsiln\u011bj\u0161\u00ed L7 DDoS \u00fatok za b\u0159ezen 2023.<\/figcaption><\/figure>\n\n\n\n

3. m\u00edsto \u00fatok na n\u00e1\u0161 web wedos.cz – p\u0159es 756tis\u00edc po\u017eadavk\u016f za minutu<\/h3>\n\n\n\n

T\u0159et\u00ed nejsiln\u011bj\u0161\u00ed b\u0159eznov\u00fd \u00fatok m\u011bl s\u00edlu p\u0159es 756 tis\u00edc po\u017eadavk\u016f za minutu ve \u0161pi\u010dce a \u0161el z 2299 unik\u00e1tn\u00edch IP adres. Na rozd\u00edl od p\u0159edchoz\u00edch, kter\u00e9 trvaly p\u00e1r minut, tento trval zhruba 24 minut. <\/p>\n\n\n\n

\"\"<\/a>
T\u0159et\u00ed nejsiln\u011bj\u0161\u00ed L7 DDoS \u00fatok za b\u0159ezen 2023.<\/figcaption><\/figure>\n\n\n\n

Nejzaj\u00edmav\u011bj\u0161\u00ed \u00fatok – 277 tis\u00edc po\u017eadavk\u016f za minutu jen z TOR<\/h3>\n\n\n\n

V b\u0159eznu ur\u010dit\u011b bylo z \u010deho vyb\u00edrat, ale nejzaj\u00edmav\u011bj\u0161\u00ed \u00fatok byl \u010dist\u011b p\u0159es s\u00ed\u0165 TOR, kter\u00e1 poskytuje \u00fato\u010dn\u00edkovi bezplatnou anonymitu. \u00datok sm\u011b\u0159oval na eshop. Byl proveden pouze z 10 unik\u00e1tn\u00edch IP adres, kter\u00e9 pat\u0159ili exit TOR nod\u016fm. Ve \u0161pi\u010dce vygeneroval 277 tis\u00edc po\u017eadavk\u016f za minutu.<\/p>\n\n\n\n

\"\"<\/a>
DDoS \u00fatok ze s\u00edt\u011b TOR na eshop v b\u0159eznu 2023.<\/figcaption><\/figure>\n\n\n\n

TOR je k \u00fatok\u016fm zneu\u017e\u00edv\u00e1n pom\u011brn\u011b \u010dasto. Vlastn\u011b p\u0159ev\u00e1\u017en\u00e1 v\u011bt\u0161ina provozu je \u0161kodliv\u00e1 (hled\u00e1n\u00ed zranitelnost\u00ed, koment\u00e1\u0159ov\u00fd spam, brute force \u00fatoky). Proto jej tak\u00e9 \u0159ada hostingov\u00fdch spole\u010dnost\u00ed blokuje.<\/p>\n\n\n\n

P\u0159em\u00fd\u0161leli jsme, co s TOR na WEDOS Global. Nakonec jsme se rozhodli, \u017ee v\u0161echen provoz bude chr\u00e1n\u011bn captcha. Pokud jej n\u011bkdo chce vyu\u017e\u00edvat pro anonymn\u00ed proch\u00e1zen\u00ed webu, tak m\u016f\u017ee, ale pokud bude cht\u00edt nav\u0161t\u00edvit web chr\u00e1n\u011bn\u00fd WEDOS Global Protection, mus\u00ed vyplnit jednoduchou captchu.<\/p>\n\n\n\n

\"\"<\/figure>
\n

TOR (The Onion Router) je softwarov\u00fd projekt, kter\u00fd umo\u017e\u0148uje anonymn\u00ed komunikaci na internetu. Pou\u017e\u00edv\u00e1 se k ochran\u011b soukrom\u00ed u\u017eivatel\u016f t\u00edm, \u017ee p\u0159epos\u00edl\u00e1 s\u00ed\u0165ov\u00fd provoz p\u0159es n\u011bkolik proxy server\u016f, kter\u00e9 zakr\u00fdvaj\u00ed p\u016fvodn\u00ed zdrojovou IP adresu u\u017eivatele. Tato s\u00ed\u0165 proxy server\u016f je \u0159e\u0161ena jako vrstvy cibule (onion layers), co\u017e znamen\u00e1, \u017ee ka\u017ed\u00fd proxy server zn\u00e1 pouze p\u0159edchoz\u00ed a n\u00e1sleduj\u00edc\u00ed proxy server v \u0159et\u011bzci, ale nezn\u00e1 identitu samotn\u00e9ho u\u017eivatele nebo kone\u010dn\u00e9ho c\u00edle komunikace.<\/p>\n\n\n\n

TOR m\u016f\u017ee b\u00fdt pou\u017e\u00edv\u00e1n k p\u0159\u00edstupu k obsahu na internetu, kter\u00fd je cenzurov\u00e1n nebo blokov\u00e1n, ale tak\u00e9 k ochran\u011b citliv\u00fdch dat, jako jsou nap\u0159\u00edklad bankovn\u00ed \u00fadaje, nebo k anonymn\u00ed komunikaci nap\u0159\u00edklad pro politickou aktivitu nebo whistleblowing. <\/p>\n<\/div><\/div>\n\n\n\n

Z\u00e1v\u011br<\/h2>\n\n\n\n

WEDOS Global je jedn\u00edm z na\u0161ich nejv\u011bt\u0161\u00edch a nejn\u00e1ro\u010dn\u011bj\u0161\u00edch projekt\u016f. Postupn\u011b celou s\u00ed\u0165 budujeme a posouv\u00e1me d\u00e1l. P\u0159ib\u00fdv\u00e1 n\u00e1m dat a zlep\u0161ujeme se i v jejich anal\u00fdze a vyhodnocov\u00e1n\u00ed, tak\u017ee p\u0159\u00ed\u0161t\u00ed reporty mohou b\u00fdt je\u0161t\u011b detailn\u011bj\u0161\u00ed a zaj\u00edmav\u011bj\u0161\u00ed. <\/p>\n","protected":false},"excerpt":{"rendered":"

V b\u0159eznu pokra\u010dovalo testov\u00e1n\u00ed pravidel pro WAF (Web Application Firewall). Dostali jsme se u\u017e do f\u00e1ze, \u017ee WAF byl automaticky nasazen pro v\u0161echny nov\u011b p\u0159idan\u00e9 weby na WEDOS Global Protection a pomalu jsme se p\u0159ipravovali na nasazen\u00ed pro v\u0161echny.<\/p>\n","protected":false},"author":9,"featured_media":133485,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[112],"tags":[122,200,186,177],"class_list":["post-133472","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-bezpecnost","tag-ddos","tag-waf","tag-wedos-global","tag-wedos-global-protection"],"_links":{"self":[{"href":"https:\/\/blog.wedos.com\/cs\/wp-json\/wp\/v2\/posts\/133472","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.wedos.com\/cs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.wedos.com\/cs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.wedos.com\/cs\/wp-json\/wp\/v2\/users\/9"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.wedos.com\/cs\/wp-json\/wp\/v2\/comments?post=133472"}],"version-history":[{"count":11,"href":"https:\/\/blog.wedos.com\/cs\/wp-json\/wp\/v2\/posts\/133472\/revisions"}],"predecessor-version":[{"id":134595,"href":"https:\/\/blog.wedos.com\/cs\/wp-json\/wp\/v2\/posts\/133472\/revisions\/134595"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/blog.wedos.com\/cs\/wp-json\/wp\/v2\/media\/133485"}],"wp:attachment":[{"href":"https:\/\/blog.wedos.com\/cs\/wp-json\/wp\/v2\/media?parent=133472"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.wedos.com\/cs\/wp-json\/wp\/v2\/categories?post=133472"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.wedos.com\/cs\/wp-json\/wp\/v2\/tags?post=133472"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}