CloudFront and the Wild West of the Internet
The internet is truly amazing, but it is a Wild West.
The other day I was looking at my CloudFront Popular objects
and was supper curious, this is pointing to an S3 bucket with some static images and polly mp3 that are serving the mobile app.
What wp-login.php
and server-status
or login.action
.
The internet is a true place without many laws and if you have any IP or domain up and running, some crawler or bot will immediately try to find vulnerabilities and brute-force / exploit them.
Be aware, build safe infrastructure, hide vulnerabilities, and leverage AWS services like S3 and CloudFront, WAF and AWS Shield, load balancers, and private subnets. open as little as possible the ports and let the outlaws out of your walled garden. They are there and are not your friends.
Stay safe!