DEV Community

Discussion on: 3 things you might see in your logs once your site is public

Collapse
kylegalbraith profile image
Kyle Galbraith

Nice write-up Danny. It might also be worth talking about how things like AWS WAF can be used to prevent some of these scans/attacks.

Collapse
intricatecloud profile image
Danny Perez Author

Funny story about WAF. We had enabled it and were piping the logs to our splunk instance - a few days later we had found that WAF was dumping 300GB/day! It very helpfully drops the full request context which was great albeit a little verbose.