AAAH SPIDERS

My Sunday night has turned to one of those fun server configuration nightmares. I was planning on playing some games in my private server only to be hit by unbareable server performance. I SSH into my server only to see my Git server instance using massive amounts of CPU.

I take down the Git server temporarily in order to inspect the situation, as well update the server docker image that is likely out of date. Restarting the instance had done nothing. Suspicious, I say to my self, checking the server logs only to see that multiple web crawlers (from our favorite AI overlords) sending many request per second to my server.

On top of all this, it seems some malicious actors have figured out my SSH port (not that difficult, to be fair) and have been brute forcing some names on it. I have now set up rate limiting for the SSH server (as it has many many URLs) under it, as well as fail2ban in order to catch some skid software trying to cause trouble on my server.

The crawlers have decided to calm down after receiving 429 Too Many Requests responses as well as a few banned IPs for the SSH port. Moral of the story, set up rate limiting and automatic bans.

Good night.

          (
           )
          (
   /\  .-"""-.  /\
  //\\/  ,,,  \//\\
  |/\| ,;;;;;, |/\|
  //\\\;-"""-;///\\
 //  \/   .   \/  \\
(| ,-_| \ | / |_-, |)
  //`__\.-.-./__`\\
 //    /   _   \    \\
(|   /   (_)   \   |)
  \\  \   '-'   /  //
   \\  \_______/  //
    `\_________/`