A server is running a nodejs application to handle API requests.
The API requests are having the form of "https://domain.com/stuff/otherstuff+PASSWORD.
Right now the application is rejecting the wrong password requests for few requests. However, if the load of wrong passwords increases, the server crashes.
A solution needs to be implemented by adding an external layer to block IP address of of users sending multiples requests with wrong passwords. As it cannot be done at code level.
Server is running on AWS, Passwords are stored and updated the MySQL DB
9 freelancers are bidding on average $139 for this job
Hello, I'm expert in the AWS, I've wide experience for more than 7 years. I'll resolve all your issues. I can easily do this task! Ping me asap and discuss the details. Also look over my profile! Thanks
Why not a fail2ban with a custom rule for nginx log ? I assume that your webserver will log the GET request and the HTTP error code, so you can create a custom rule to ban everything you want. S
Hi, I have experience in Linux system admin. I can help block IP addresses of users sending invalid http requests . Please discuss to start. Thank you