|
|
|
|
|
|
by tuetuopay
742 days ago
|
|
|
from what I can gather from the post, the specific attack vector using "retry unauthorized requests until they are" is very easy to spot in logs. so even the most basic log policy that logs the path, ip, and status code is enough (i.e. default in most web servers and frameworks) |
|
|