Strange domain in supercache folder!!
-
Hello,
I’ve noticed strange domain name in supercache folder creating my main website page as index-https.html file!
I tought it was due to the x-frame option header in nginx as it was set to GOFORIT byt after I tried to replicate the issue I wasn’t able to create such domain directory from another domain I have by html file that contain iframe to my website home page!
Does my website hacked! any ideas how could this happen as I’m shocked!
-
Fixed it!
Adding this at the very top part to your domain config file under /etc/nginx/conf.d
server {
listen 80 default_server;
server_name _;
return 404;
}server {
listen 443 ssl default_server;
server_name _;
resolver 127.0.0.1 [::1]:5353 valid=30s;
ssl_stapling on;
ssl_stapling_verify on;
ssl_trusted_certificate <path to trusted cert>;ssl_certificate <path to cert>;
ssl_certificate_key <path to key>;
include path to <ssl.conf>;
ssl_dhparam path to <ssl-dhparams.pem>;
return 404;
}Seems that this is the only solution for such issue, this domain is pointing to my server ip!! I don’t know why! maybe he was trying to use my smtp server to send spam emails as I noticed some failed logins yesterday! so I allowed only local host to access the MTA mail server and blocked him!
For any one have similar issue with wp super cache plugin, don’t panic this is not a big breach issue as i first though 🙂
Here is another resource for what this issue about.
https://serverfault.com/questions/372662/how-to-make-nginx-only-respond-to-one-domain
The topic ‘Strange domain in supercache folder!!’ is closed to new replies.
