Website is not loading nov2121.com

Keywords: LAMP/MAMP/WAMP - AWS - Technical issue - Secure Connections (SSL/HTTPS)

bnsupport ID: bdfacd5e-825c-8ddd-63a0-2bd763d1f22a

bndiagnostic output:

? Apache: Found possible issues
? Connectivity: Found possible issues
? Resources: Found possible issues
https://docs.bitnami.com/general/apps/wordpress/troubleshooting/debug-errors-apache/
https://docs.bitnami.com/bch/apps/moodle/troubleshooting/deny-connections-bots-apache/
https://docs.bitnami.com/general/faq/administration/use-firewall/

bndiagnostic failure reason: I do not know how to perform the changes explained in the documentation

Description:
My website nov2121.com is not loading.

For the support tool I had to stop ctlscripts.sh and then run the tool hence the issues. I have now activated the ctlscripts.sh

This was the support tool generated before turning off ctlscripts.sh

https://drive.google.com/file/d/1TOtvdhyKaVo_Gp8RECNj_gYnUfWQ5SJR/view?usp=sharing

I’ve noticed my website now suddenly show the default bitnami page and not my website. All settings are identical and all other websites on the same instance are working as expected except this one.

Kindly support.

Hi @huzanforbes,

There are error messages in the Apache log that could indicate that your site is being attacked:

[Thu Oct 21 21:31:37.200469 2021] [core:error] [pid 2764:tid 139910279317248] [client 45.146.164.110:42808] AH00126: Invalid URI in request 'bin/sh' 'POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1'
[Fri Oct 22 04:03:08.240505 2021] [core:error] [pid 7244:tid 139910396651264] [client 185.170.144.50:60936] AH00126: Invalid URI in request 'etc/passwd' 'GET /%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwd HTTP/1.1'

I recommend the following guide to detect and block access from suspicious IP’s:

https://docs.bitnami.com/bch/apps/moodle/troubleshooting/deny-connections-bots-apache/

Regards,
Michiel

I have a similar issue: “deny from ” not working for Lightspeed AWS/Django

I’ve been seeing the exact same IP (45.146.164.110) and attack in my logs.

Unfortunately, the linked Guide to “block access from suspicious IP” doesn’t seem to prevent these bots apparently.

Here’s some additional information:

Yes, the ‘probe’ requests do have a small impact on the server (as it has to tell them apart from the inoffensive ones), but it is minimal. In any case, if you want to go a step further and filter out those requests from even reaching your Apache server, you can also enforce tighter firewall rules on your instance. Although we do not have any guide covering the exact process, we have a similar guide that shows how to access the Firewall interface and list the Inbound rules:

https://docs.bitnami.com/aws/faq/administration/use-firewall/#close-server-ports-and-deny-remote-access

Credit to Jose Antonio Carmona - Thanks Bitnami friends~~~!

Hi @michiel

I am not sure how this will help, because the website used to work on the default IP. When I starting pointing it to the domain it stopped and it shows the default Bitnami LAMP page.

Hi @michiel

I have added the IPs which looked malicious.

My website is not loading properly. The default Bitnami LAMP page is opening. http://nov2121.com

I’ve added a dummy page which is also not opening http://nov2121.com/huzan.html

Kindly help.
Support tool dump |

Support tool: 2f33b9fc-1132-f305-bb8b-f2a5bf51a843
Kindly note the ctlscript.sh was stopped to generate the above code and is now activated

Hi @huzanforbes,

Why did you stop the services? It should not be necessary for the bndiagnostic tool to run. Could you start the services again and then run the bndiagnostic tool?

Regards,
Michiel

Hi @michiel

When I run the support tool with the code doesn’t get generated. Hence I was advised to turn off the ctlscript.sh and then run the tool.

Here’s the dump of the support tool: https://drive.google.com/file/d/1ShOdyt6UNO3FRrYF4x1tikcUBLDki0sX/view?usp=sharing

Hi @huzanforbes,

Please run the bndiagnostic tool with sudo with the services running. It should not give any error.

sudo /opt/bitnami/bndiagnostic-tool

If it does give an error please paste it here.

Regards,
Michiel

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.