req.url that does not belong to my domain

Question

I got requests from china,

The problem is that the req.url does not belong to my domain

Usually it is / or /login, etc

Was I hacked? I'd like to know a rationale for this

const logger = function (req, res, next) {
    let { url, ip, method, statusCode } = req

    console.log(`${moment().format("L - hh:mm:ss")} `.red + `${method} `.green + `From: ` + `${ip?.replace("::ffff:", "")?.replace("::1", "localhost")} (${geoip.lookup(ip)?.country || "No IP"})`.cyan + ` : ` + `${req.user?.id || null} `.yellow + `At: ` + `${url} `.cyan)
    next()
}
app.use(logger)

You are probably under DOS attack – omidh Jan 30 '22 at 18:16 — omidh, Jan 30 '22 at 18:16

score 0 · Accepted Answer · answered Jan 30 '22 at 18:34

0

No, somebody merely sent proxy requests to you. They are directed to your server but request a full URL instead of a path. Protocol-wise they'd look like GET http://google.com/ HTTP/1.1 instead of just GET / HTTP/1.1 as you are used to. If your server were (mis)configured to honor such requests as proxy, it'd send another request itself to http://google.com/ and forward the response, but that doesn't happen in your case anyway so you can just ignore it.

See also this answer.

answered Jan 30 '22 at 18:34

CherryDT

25,571
5
49
74

Does this lead to security problems and breaches? Can that be resolved? – abdooo9 Jan 31 '22 at 14:46
You can't stop people from sending nonsense to your server. It's not a problem if your apps are configured properly. – CherryDT Jan 31 '22 at 16:06

req.url that does not belong to my domain

1 Answers1