I have a health monitor on my ASP.NET site, I saw several attacks on my site using
http://SiteName/Page.aspx/Comment.asp?Id=76 (each request the ID is changing)
The Comment.asp page is not part of my site, it is used by an attacker, not sure what he is doing. If I open my site by adding comment.asp comment (http://sitename/page.aspx/comment.asp?id=1) , then this is my aspx page, which is strange to me. on my page.aspx pageload event I'm trying to catch request.URL where comment.asp does not appear in this case.
Request exception information:
Should I worry about attacks like this, how can I prevent them. I have already given IP restrictions, but every time a request comes from different IP addresses. However, I did not see any consequences of this attack on my site. according to IP, all bad requests come from China (according to IP search).
at ASP.xxxxxxxx_aspx.ProcessRequest(HttpContext context)
which line is higher in the stack trace? thats my aspx page, an asp.net engine process like this? did not see it. Every day I get this attack with a notification about the detection of a dangerous form through the healthmonitor.
source share