{"id":299300,"date":"2023-09-27T10:37:18","date_gmt":"2023-09-27T08:37:18","guid":{"rendered":"https:\/\/blog.wedos.cz\/?p=299300"},"modified":"2023-09-27T10:37:24","modified_gmt":"2023-09-27T08:37:24","slug":"jak-vyuzivame-agregaci-dat-k-hledani-utoku","status":"publish","type":"post","link":"https:\/\/blog.wedos.com\/cs\/jak-vyuzivame-agregaci-dat-k-hledani-utoku","title":{"rendered":"Jak vyu\u017e\u00edv\u00e1me agregaci dat k hled\u00e1n\u00ed \u00fatok\u016f"},"content":{"rendered":"\n<p>Dneska v\u00e1m uk\u00e1\u017eeme, jak vyu\u017e\u00edv\u00e1me agregaci dat k vyhodnocov\u00e1n\u00ed \u00fatok\u016f.<\/p>\n\n\n\n<!--more-->\n\n\n\n<p>V\u010dera (26. z\u00e1\u0159\u00ed 2023) v odpoledn\u00edch hodin\u00e1ch z\u0159ejm\u011b napaden\u00fd server hledal u n\u00e1s weby s PHP webov\u00fdm shellem &#8222;Alpha team shell tesla&#8220;, kter\u00fd vyu\u017e\u00edvaj\u00ed \u00fato\u010dn\u00edci k ovl\u00e1d\u00e1n\u00ed kompromitovan\u00fdch server\u016f bez autentizace. D\u00e1le hledali \u00fato\u010dn\u00edci &#8222;wp-plain.php&#8220;, co\u017e by mohl b\u00fdt backdoor.<\/p>\n\n\n\n<p>Jak vid\u00edte na obr\u00e1zku stihli za 15 vte\u0159in poslat 43109 request\u016f. Co\u017e jsme okam\u017eit\u011b identifikovali jako \u00fatok a p\u0159ev\u00e1\u017en\u00e1 v\u011bt\u0161ina po\u017eadavk\u016f skon\u010dila na captcha. \u00dato\u010dn\u00edci to tedy rychle vzdali, proto\u017ee weby schovan\u00e9 za WEDOS Global Protection u\u017e nedok\u00e1zali proch\u00e1zet robotem.<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><a href=\"https:\/\/blog.wedos.cz\/wp-content\/uploads\/2023\/09\/20230926-ukazka-agregace-dat-1.png\" target=\"_blank\" rel=\"noopener\"><img decoding=\"async\" width=\"1024\" height=\"486\" data-src=\"https:\/\/blog.wedos.cz\/wp-content\/uploads\/2023\/09\/20230926-ukazka-agregace-dat-1-1024x486.png\" alt=\"\" class=\"wp-image-299308 lazyload\" data-srcset=\"https:\/\/blog.wedos.com\/wp-content\/uploads\/2023\/09\/20230926-ukazka-agregace-dat-1-1024x486.png 1024w, https:\/\/blog.wedos.com\/wp-content\/uploads\/2023\/09\/20230926-ukazka-agregace-dat-1-300x142.png 300w, https:\/\/blog.wedos.com\/wp-content\/uploads\/2023\/09\/20230926-ukazka-agregace-dat-1-768x365.png 768w, https:\/\/blog.wedos.com\/wp-content\/uploads\/2023\/09\/20230926-ukazka-agregace-dat-1-1536x729.png 1536w, https:\/\/blog.wedos.com\/wp-content\/uploads\/2023\/09\/20230926-ukazka-agregace-dat-1.png 1573w\" data-sizes=\"(max-width: 767px) 89vw, (max-width: 1000px) 54vw, (max-width: 1071px) 543px, 580px\" src=\"data:image\/svg+xml;base64,PHN2ZyB3aWR0aD0iMSIgaGVpZ2h0PSIxIiB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciPjwvc3ZnPg==\" style=\"--smush-placeholder-width: 1024px; --smush-placeholder-aspect-ratio: 1024\/486;\" \/><\/a><\/figure>\n\n\n\n<p>Nicm\u00e9n\u011b v\u0161imli jsme si toho jen d\u00edky agregaci dat ze v\u0161ech web\u016f v re\u00e1ln\u00e9m \u010dase. Jak vid\u00edte na obr\u00e1zku \u00fato\u010dn\u00edci pos\u00edlaj\u00ed na ka\u017ed\u00fd web jen p\u00e1r po\u017eadavk\u016f. U n\u00e1s to bylo 2 &#8211; 16 na jednu dom\u00e9nu. Co\u017e u 2407 (sub)dom\u00e9n dalo dohromady t\u011bch 43109.<\/p>\n\n\n\n<p>Pokud m\u00e1te jeden web, tak si toho v logu nem\u00e1te \u0161anci v\u0161imnout, nato\u017e na to zareagovat. A takov\u00fdch \u00fatok\u016f prob\u00edh\u00e1 denn\u011b nespo\u010det. V\u0161echny p\u0159itom &#8222;pro\u017e\u00edraj\u00ed&#8220; v\u00fdpo\u010detn\u00ed v\u00fdkon, kter\u00fd si plat\u00edte a v nejhor\u0161\u00edm p\u0159\u00edpad\u011b mohou objevit n\u011bjakou zranitelnost. <\/p>\n\n\n\n<p>My m\u00e1me spousty dat a pracujeme s nimi. Jedn\u00e1 se o stovky tis\u00edc (sub)dom\u00e9n na na\u0161ich hostingov\u00fdch slu\u017eb\u00e1ch a tis\u00edce chr\u00e1n\u011bn\u00fdch WEDOS Global Protection. \u010c\u00edm v\u00edce web\u016f bude WEDOS Global Protection chr\u00e1nit, t\u00edm lep\u0161\u00ed, efektivn\u011bj\u0161\u00ed a rychlej\u0161\u00ed na\u0161e filtry budou. Infrastruktura WEDOS Global je \u00fa\u017easn\u00fd n\u00e1stroj nejen k ochran\u011b web\u016f, ale jsou to pr\u00e1v\u011b ta data, d\u00edky kter\u00fdm je tak efektivn\u00ed. <\/p>\n","protected":false},"excerpt":{"rendered":"<p>Dneska v\u00e1m uk\u00e1\u017eeme, jak vyu\u017e\u00edv\u00e1me agregaci dat k vyhodnocov\u00e1n\u00ed \u00fatok\u016f.<\/p>\n","protected":false},"author":2,"featured_media":299305,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[112],"tags":[200,186,177],"class_list":["post-299300","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-bezpecnost","tag-waf","tag-wedos-global","tag-wedos-global-protection"],"_links":{"self":[{"href":"https:\/\/blog.wedos.com\/cs\/wp-json\/wp\/v2\/posts\/299300","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.wedos.com\/cs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.wedos.com\/cs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.wedos.com\/cs\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.wedos.com\/cs\/wp-json\/wp\/v2\/comments?post=299300"}],"version-history":[{"count":1,"href":"https:\/\/blog.wedos.com\/cs\/wp-json\/wp\/v2\/posts\/299300\/revisions"}],"predecessor-version":[{"id":299319,"href":"https:\/\/blog.wedos.com\/cs\/wp-json\/wp\/v2\/posts\/299300\/revisions\/299319"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/blog.wedos.com\/cs\/wp-json\/wp\/v2\/media\/299305"}],"wp:attachment":[{"href":"https:\/\/blog.wedos.com\/cs\/wp-json\/wp\/v2\/media?parent=299300"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.wedos.com\/cs\/wp-json\/wp\/v2\/categories?post=299300"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.wedos.com\/cs\/wp-json\/wp\/v2\/tags?post=299300"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}