Hi list! We run this service: https://ruggedinbox.com and are using squirrelmail (and roundcube) as the webmail published on both clearnet and darknet (as a Tor Hidden Service). Since yesterday we are getting a lot of requests to the file: src/redirect.php, so many that they distrupt the service under Tor and give problems to the web server (lighttpd). Currently we have disabled squirrelmail, redirect.php requests are still coming but they get a 404 file not found error and services are up again. The attack is targeting the HS, so we are getting traffic from Tor, which is impossible to discriminate and filter (all requests looks like they are coming from 127.0.0.1). That said .. do you have any suggestions ? What is the file redirect.php responsible for ? Thanks for supporting! RuggedInbox team ------------------------------------------------------------------------------ Dive into the World of Parallel Programming! The Go Parallel Website, sponsored by Intel and developed in partnership with Slashdot Media, is your hub for all things parallel software development, from weekly thought leadership blogs to news, videos, case studies, tutorials and more. Take a look and join the conversation now. http://goparallel.sourceforge.net ----- squirrelmail-users mailing list Posting guidelines: http://squirrelmail.org/postingguidelines List address: squirrelmail-users@xxxxxxxxxxxxxxxxxxxxx List archives: http://news.gmane.org/gmane.mail.squirrelmail.user List info (subscribe/unsubscribe/change options): https://lists.sourceforge.net/lists/listinfo/squirrelmail-users
