security - django page got hacked - how to react? -


my original page http://www.stahlbaron.de/

since 2 days, http://www.joma-topflex.ru/ pointing page. realized , added allowed_hosts = ['.stahlbaron.de'], didnot help. bad url still pointing page.

what can do? used nginx, uwsgi deploy page. ngix doesnot have deny www.joma-topflex.ru; option unfortunately.

there 2 possibilities:

  1. the owner of copy stole code , database, unlikely. can checked — add change page on website , see if appears on doppelgaenger. if copy independent nothing change there. don't forget use ctrl+f5 avoid seeing cached contents.

    if case, can report abuse copy's hosting provider. in fact, should in case.

  2. if copy proxied mirror website, blocking ip solve problem. can in nginx modifying configuration this:

    geo $bad_client {     default                    0;      78.47.49.3/32              1; }  server {     ...      if ($bad_client) {         return 403;     }      add_header x-frame-options sameorigin;      ... }

this idea set header x-frame-options sameorigin (see example above), guarantees nobody make copy of site on domain using iframe.

edit:

and gets funny. happens here this: (probably long) time ago bought hosting package hetzner, registered domain www.joma-topflex.ru , pointed ip hetzner had given him or her. , ip was, might have guessed now, 78.47.49.3.

after while person lost interest project , stopped paying hetzner. hetzner, in turn, reassigned ip new client — you. domain name www.joma-topflex.ru had never been pointed ip domain's owner, happens abandoned projects.

so, there no bad guy here. owner of www.joma-topflex.ru doesn't know domain works once again.

the real problem here nginx configuration, proxies request server django application. need explicitly set domain acceptable server name this:

server {     # delete other server_name find around , add this:     server_name www.stahlbaron.de;      ... }

the funny part is, can use domain www.joma-topflex.ru long points server. example, can add server block nginx configuration, set directive server_name "www.joma-topflex.ru" , use django application, or whatever else like.

edit 2:

incidentally, domain joma-topflex.ru paid till 2015.04.26 , not prolonged. in other words, can nothing , problem solve in 2 days.


-

Popular posts from this blog

c# - ODP.NET Oracle.ManagedDataAccess causes ORA-12537 network session end of file -

overview i want replace oracle.dataaccess orcale. managed dataaccess, opening connection latter throws ora-12537 network session end of file exception. exception message / stack trace {oracleinternal.network.networkexception (0x000030f9): ora-12537 : netzwerksession: dateiende @ oracleinternal.network.readerstream.read(orabuf ob) @ oracleinternal.ttc.orabufreader.getdatafromnetwork() @ oracleinternal.ttc.orabufreader.read(boolean bignoredata) @ oracleinternal.ttc.marshallingengine.unmarshalub1(boolean bignoredata) @ oracleinternal.ttc.ttcprotocolnegotiation.readresponse()} i trying connect oracle 11g database , not have client installed on local machine. working test application (unmanaged) using oracle.dataaccess works fine . using system; using oracle.dataaccess.client; namespace app.odp.unmanaged { internal class program { private static void main(string[] args) { //dummy connection string
Read more

matlab - Compression and Decompression of ECG Signal using HUFFMAN ALGORITHM -

i want compress , decompress ecg signal stored text message text file , find out file size, cr,prd ratio,and qs. here code compression , decompression of ecg signal using huffman algorithm. i'm trying find out file size, compression ratio,prd ratio,qs. but error i'm getting the ecg file in text format. %clearing variables , screen enter code here clear all; close all; clc; [file1]=uigetfile('*.txt'); %fprintf('enter ecg file name :%s',file1); p=file1; t=sprintf('%s',p); b1=dlmread([file1]); len=length(b1); lead=input('enter lead number :'); %lead=str2double(lead); col2=b1(1:end,lead); e=fix(sqrt(len)); m=1; i=1:e j=1:e g2(i,j)=fix(col2(m)*1000); %amplifying 1000 m=m+1; end end g3=g2; i=1:e j=1:e
Read more

utf 8 - split utf-8 string into bytes in python -

i trying split utf-8 string bytes in python 3. problem is, when use bytearray, byte, encode etc functions array size of element 14 bytes, not 1 byte expected. need split text file sequence of bytes , send them byte after byte using sockets. tried this: infile = open (file, "r") str = infile.read() byte_str = bytes(str, 'utf-8') print("size of byte_str",sys.getsizeof(byte_str[0])) print gives me 14, need 1... suggestion? quoting official documentation : sys.getsizeof(object[, default]) return size of object in bytes. object can type of object. built-in objects return correct results, not have hold true third-party extensions implementation specific. only memory consumption directly attributed object accounted for, not memory consumption of objects refers to. if given, default returned if object not provide means retrieve size. otherwise typeerror raised. getsizeof() calls object’s __sizeof__ method , adds
Read more