hacker used a vulnerability in litespeed to find out the real IP address behind cloudflare

Cold-Egg

Administrator
#4
I guess those are optimized CSS and JS files, it's not a problem, and it is also not real IP related. You can try to deactivate the LSCache plugin and see how it goes.
 
#5
I guess those are optimized CSS and JS files, it's not a problem, and it is also not real IP related. You can try to deactivate the LSCache plugin and see how it goes.
Yes sir, that are CSS and JS file. I think LScache plugin working in server side, so hacker can detected real ip. Two day ago, I turn off plugin and it not leak real ip. I can't confirm it's LSCache, but I can't find another reason.
 

Cold-Egg

Administrator
#6
Hi,

I am still not sure if it has anything to do with it. But if you can reproduce it by enabling the LSCWP again and get those IPs, maybe we can take a look or just share the log here so we may have a better idea.
 
Top