gnyman's avatargnyman's Twitter Archive—№ 885

  1. So many scanners looking after wp-login.php, who am I to deny them? Sadly I don't run Wordpress so they will have to do with this 5 MiB random html file courtesy of Googles Domato DOM fuzzer.
    oh my god twitter doesn’t include alt text from images in their API
    1. …in reply to @gnyman
      .@geek_at 1UP:ed my 5 MiB random page returned to scanners looking for wp-login.php with his exploding-gzip page :-) Stole that idea and implemented it on my personal server now. It's possible to do with pure Caddy headers {} without using php blog.haschek.at/2017/how-to-defend-your-website-with-zip-bombs.html