Illegal download token

myc818

New Member
YetiShare User
YetiShare Supporter
Dec 24, 2020
7
1
3
I recently discovered large number of illegal download token, which caused the server network to be exhausted and nginx 502 error.
View all malicious attack IPs of the download token IP address, how to solve the problem?
 

Attachments

adam

Administrator
Staff member
Dec 5, 2009
1,972
84
48
A number of options:

- Block the IPs or IP ranges.
- Limit the download tokens by IP address. (although this will stop documents from being previewed at the moment)
- Limit download threads per token.
- Set your Nginx config with request limits.
- Ensure you have a captcha on download.