Django Security issue

[deepak gupta]

Hi All,

When ever we are opening a public IP on our server (CentOS and our application developed on Django 1.9.7, Angular 1.5).

Inbound port is enabled on 8080, there is no port configuration for outbound traffic.

We found once we enable public IP, it start generating huge outbound HTTP traffic, event though nobody access the server.

do anyone has idea about any similar security issues/fix. what could be the possible cause and how to trace the issue?

Thanks,

Deepak

[Aaron C. de Bruyn]

It's a little un-clear how you are setting up your Django deployment,
but the 'dev server' shouldn't be exposed directly to the internet.

Have you read through the deployment guides?

https://docs.djangoproject.com/en/1.10/howto/deployment/

-A

> --
> You received this message because you are subscribed to the Google Groups
> "Django users" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to django-users...@googlegroups.com.
> To post to this group, send email to django...@googlegroups.com.
> Visit this group at https://groups.google.com/group/django-users.
> To view this discussion on the web visit
> https://groups.google.com/d/msgid/django-users/CAP%3DkbM3jPjgZbL7nUJRdbD7sLFmh9fPnfRewAAZn%3DP74h9xcJw%40mail.gmail.com.
> For more options, visit https://groups.google.com/d/optout.