Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Not running behind as many reverse proxies as expected #1555

Open
3 tasks done
PhuketIsland opened this issue Jun 29, 2023 · 0 comments
Open
3 tasks done

Not running behind as many reverse proxies as expected #1555

PhuketIsland opened this issue Jun 29, 2023 · 0 comments
Labels
bug Something isn't working

Comments

@PhuketIsland
Copy link

Preflight Checklist

  • I agree to follow the Code of Conduct that this project adheres to.
  • I have searched the issue tracker for an issue that matches the one I want to file, without success.
  • I am not looking for support or already pursued the available support channels without success.

Version

1.12.0

Installation Type

Official Kubernetes

Service Name

DongTai-agent-java

Describe the details of the bug and the steps to reproduce it

企业微信截图_1688026469615
运行一段时间后洞态server的pod日志里面出现 Not running behind as many reverse proxies as expected
而且扫描靶场,同一个靶场,之前能检测出来好多漏洞,现在洞态一个漏洞都检测不出来
image

image

Additional Information

No response

Logs

[pid: 26|app: 0|req: 1508974/3064041] 10.18.2.54 () {48 vars in 1036 bytes} [Thu Jun 29 16:12:44 2023] POST /api/v1/report/upload => generated 60 bytes in 7 msecs (HTTP/1.0 200) 9 headers in 265 bytes (3 switches on core 1997)
Not running behind as many reverse proxies as expected.
The right value for XFF_TRUSTED_PROXY_DEPTH for this request is 2 and 20 is configured.
Not running behind as many reverse proxies as expected.
The right value for XFF_TRUSTED_PROXY_DEPTH for this request is 2 and 20 is configured.
INFO 2023-06-29 16:12:44,603 [report_handler_interface.handle:81] [SaasMethodPoolHandler] Report resolution start
INFO 2023-06-29 16:12:44,603 [report_handler_interface.has_permission:64] report_type : 36 agent_id: 585 has_permission: YES
INFO 2023-06-29 16:12:44,604 [saas_method_pool_handler.parse:97] start record method_pool : 585 /swagger-ui/null/swagger-resources/configuration/security GET
INFO 2023-06-29 16:12:44,604 [saas_method_pool_handler.add_new_api_route:455] 585, /swagger-ui/null/swagger-resources/configuration/security, GET
INFO 2023-06-29 16:12:44,604 [saas_method_pool_handler.add_new_api_route:460] found cache api_route-585-/swagger-ui/null/swagger-resources/configuration/security-GET ,skip its insert
INFO 2023-06-29 16:12:44,604 [report_handler_interface.handle:81] [SaasMethodPoolHandler] Report resolution start
INFO 2023-06-29 16:12:44,605 [report_handler_interface.has_permission:64] report_type : 36 agent_id: 585 has_permission: YES
INFO 2023-06-29 16:12:44,605 [saas_method_pool_handler.parse:97] start record method_pool : 585 /error GET
INFO 2023-06-29 16:12:44,605 [saas_method_pool_handler.send_to_engine:350] [+] send method_pool [9d577f22c64142ac9b2679b445e5d8b0] to engine for new record
INFO 2023-06-29 16:12:44,605 [saas_method_pool_handler.add_new_api_route:455] 585, /error, GET
INFO 2023-06-29 16:12:44,606 [saas_method_pool_handler.add_new_api_route:460] found cache api_route-585-/error-GET ,skip its insert
INFO 2023-06-29 16:12:44,606 [report_handler_interface.handle:89] [SaasMethodPoolHandler] Report Analysis Completed
INFO 2023-06-29 16:12:44,607 [saas_method_pool_handler.send_to_engine:350] [+] send method_pool [abd0d5895fe4424ea2ea626a8143d91c] to engine for new record
[pid: 26|app: 0|req: 1508975/3064042] 10.18.2.54 () {48 vars in 1037 bytes} [Thu Jun 29 16:12:44 2023] POST /api/v1/report/upload => generated 60 bytes in 7 msecs (HTTP/1.0 200) 9 headers in 265 bytes (3 switches on core 1997)
INFO 2023-06-29 16:12:44,608 [report_handler_interface.handle:89] [SaasMethodPoolHandler] Report Analysis Completed
[pid: 24|app: 0|req: 445095/3064043] 10.18.2.54 () {48 vars in 1037 bytes} [Thu Jun 29 16:12:44 2023] POST /api/v1/report/upload => generated 60 bytes in 8 msecs (HTTP/1.0 200) 9 headers in 265 bytes (3 switches on core 1996)
Not running behind as many reverse proxies as expected.
The right value for XFF_TRUSTED_PROXY_DEPTH for this request is 2 and 20 is configured.
INFO 2023-06-29 16:12:44,646 [report_handler_interface.handle:81] [SaasMethodPoolHandler] Report resolution start
INFO 2023-06-29 16:12:44,646 [report_handler_interface.has_permission:64] report_type : 36 agent_id: 585 has_permission: YES
INFO 2023-06-29 16:12:44,647 [saas_method_pool_handler.parse:97] start record method_pool : 585 /swagger-ui/null/swagger-resources GET
INFO 2023-06-29 16:12:44,647 [saas_method_pool_handler.add_new_api_route:455] 585, /swagger-ui/null/swagger-resources, GET
INFO 2023-06-29 16:12:44,647 [saas_method_pool_handler.add_new_api_route:460] found cache api_route-585-/swagger-ui/null/swagger-resources-GET ,skip its insert
INFO 2023-06-29 16:12:44,648 [saas_method_pool_handler.send_to_engine:350] [+] send method_pool [49ab770605cc4a99bc60f8ef2f66ca05] to engine for new record
INFO 2023-06-29 16:12:44,649 [report_handler_interface.handle:89] [SaasMethodPoolHandler] Report Analysis Completed
[pid: 26|app: 0|req: 1508976/3064044] 10.18.2.54 () {48 vars in 1037 bytes} [Thu Jun 29 16:12:44 2023] POST /api/v1/report/upload => generated 60 bytes in 7 msecs (HTTP/1.0 200) 9 headers in 265 bytes (3 switches on core 1997)
Not running behind as many reverse proxies as expected.
The right value for XFF_TRUSTED_PROXY_DEPTH for this request is 2 and 20 is configured.
INFO 2023-06-29 16:12:44,656 [report_handler_interface.handle:81] [SaasMethodPoolHandler] Report resolution start
INFO 2023-06-29 16:12:44,657 [report_handler_interface.has_permission:64] report_type : 36 agent_id: 585 has_permission: YES
INFO 2023-06-29 16:12:44,657 [saas_method_pool_handler.parse:97] start record method_pool : 585 /error GET
INFO 2023-06-29 16:12:44,657 [saas_method_pool_handler.add_new_api_route:455] 585, /error, GET
INFO 2023-06-29 16:12:44,658 [saas_method_pool_handler.add_new_api_route:460] found cache api_route-585-/error-GET ,skip its insert
INFO 2023-06-29 16:12:44,659 [saas_method_pool_handler.send_to_engine:350] [+] send method_pool [d379775df03544ef85d62752bccc5bbf] to engine for new record
INFO 2023-06-29 16:12:44,660 [report_handler_interface.handle:89] [SaasMethodPoolHandler] Report Analysis Completed
[pid: 26|app: 0|req: 1508977/3064045] 10.18.2.54 () {48 vars in 1038 bytes} [Thu Jun 29 16:12:44 2023] POST /api/v1/report/upload => generated 60 bytes in 8 msecs (HTTP/1.0 200) 9 headers in 265 bytes (3 switches on core 1997)
Not running behind as many reverse proxies as expected.
The right value for XFF_TRUSTED_PROXY_DEPTH for this request is 2 and 20 is configured.
INFO 2023-06-29 16:12:44,719 [report_handler_interface.handle:81] [SaasMethodPoolHandler] Report resolution start
INFO 2023-06-29 16:12:44,720 [report_handler_interface.has_permission:64] report_type : 36 agent_id: 585 has_permission: YES
INFO 2023-06-29 16:12:44,720 [saas_method_pool_handler.parse:97] start record method_pool : 585 /error GET
INFO 2023-06-29 16:12:44,720 [saas_method_pool_handler.add_new_api_route:455] 585, /error, GET
INFO 2023-06-29 16:12:44,720 [saas_method_pool_handler.add_new_api_route:460] found cache api_route-585-/error-GET ,skip its insert
INFO 2023-06-29 16:12:44,721 [saas_method_pool_handler.send_to_engine:350] [+] send method_pool [19c516c8bd2c4e40ac7e99a202e79620] to engine for new record
Not running behind as many reverse proxies as expected.
The right value for XFF_TRUSTED_PROXY_DEPTH for this request is 2 and 20 is configured.
INFO 2023-06-29 16:12:44,723 [report_handler_interface.handle:89] [SaasMethodPoolHandler] Report Analysis Completed
[pid: 26|app: 0|req: 1508978/3064046] 10.18.2.54 () {48 vars in 1036 bytes} [Thu Jun 29 16:12:44 2023] POST /api/v1/report/upload => generated 60 bytes in 7 msecs (HTTP/1.0 200) 9 headers in 265 bytes (3 switches on core 1997)
INFO 2023-06-29 16:12:44,724 [report_handler_interface.handle:81] [SaasMethodPoolHandler] Report resolution start
INFO 2023-06-29 16:12:44,725 [report_handler_interface.has_permission:64] report_type : 36 agent_id: 585 has_permission: YES
INFO 2023-06-29 16:12:44,725 [saas_method_pool_handler.parse:97] start record method_pool : 585 /swagger-ui/null/swagger-resources/configuration/ui GET
INFO 2023-06-29 16:12:44,725 [saas_method_pool_handler.add_new_api_route:455] 585, /swagger-ui/null/swagger-resources/configuration/ui, GET
INFO 2023-06-29 16:12:44,725 [saas_method_pool_handler.add_new_api_route:460] found cache api_route-585-/swagger-ui/null/swagger-resources/configuration/ui-GET ,skip its insert
INFO 2023-06-29 16:12:44,726 [saas_method_pool_handler.send_to_engine:350] [+] send method_pool [a76096c0fc324ed9a040d511b484e184] to engine for new record
INFO 2023-06-29 16:12:44,728 [report_handler_interface.handle:89] [SaasMethodPoolHandler] Report Analysis Completed
[pid: 27|app: 0|req: 924681/3064047] 10.18.2.54 () {48 vars in 1037 bytes} [Thu Jun 29 16:12:44 2023] POST /api/v1/report/upload => generated 60 bytes in 8 msecs (HTTP/1.0 200) 9 headers in 265 bytes (3 switches on core 1995)
Not running behind as many reverse proxies as expected.
The right value for XFF_TRUSTED_PROXY_DEPTH for this request is 2 and 20 is configured.
Not running behind as many reverse proxies as expected.
The right value for XFF_TRUSTED_PROXY_DEPTH for this request is 2 and 20 is configured.
INFO 2023-06-29 16:12:44,790 [report_handler_interface.handle:81] [SaasMethodPoolHandler] Report resolution start
INFO 2023-06-29 16:12:44,790 [report_handler_interface.handle:81] [SaasMethodPoolHandler] Report resolution start
INFO 2023-06-29 16:12:44,790 [report_handler_interface.has_permission:64] report_type : 36 agent_id: 585 has_permission: YES
INFO 2023-06-29 16:12:44,790 [saas_method_pool_handler.parse:97] start record method_pool : 585 /error GET
INFO 2023-06-29 16:12:44,791 [saas_method_pool_handler.add_new_api_route:455] 585, /error, GET
INFO 2023-06-29 16:12:44,791 [report_handler_interface.has_permission:64] report_type : 36 agent_id: 585 has_permission: YES
INFO 2023-06-29 16:12:44,791 [saas_method_pool_handler.parse:97] start record method_pool : 585 /swagger-ui/null/swagger-resources/configuration/security GET
INFO 2023-06-29 16:12:44,791 [saas_method_pool_handler.add_new_api_route:460] found cache api_route-585-/error-GET ,skip its insert
INFO 2023-06-29 16:12:44,791 [saas_method_pool_handler.add_new_api_route:455] 585, /swagger-ui/null/swagger-resources/configuration/security, GET
INFO 2023-06-29 16:12:44,792 [saas_method_pool_handler.add_new_api_route:460] found cache api_route-585-/swagger-ui/null/swagger-resources/configuration/security-GET ,skip its insert
INFO 2023-06-29 16:12:44,792 [saas_method_pool_handler.send_to_engine:350] [+] send method_pool [b1a6defd5bdb43988e51f6a6c1a1e2d6] to engine for new record
INFO 2023-06-29 16:12:44,793 [saas_method_pool_handler.send_to_engine:350] [+] send method_pool [c041903d275c4323ac5c61bbef3c4fad] to engine for new record
INFO 2023-06-29 16:12:44,793 [report_handler_interface.handle:89] [SaasMethodPoolHandler] Report Analysis Completed
[pid: 24|app: 0|req: 445096/3064048] 10.18.2.54 () {48 vars in 1037 bytes} [Thu Jun 29 16:12:44 2023] POST /api/v1/report/upload => generated 60 bytes in 8 msecs (HTTP/1.0 200) 9 headers in 265 bytes (3 switches on core 1996)
INFO 2023-06-29 16:12:44,794 [report_handler_interface.handle:89] [SaasMethodPoolHandler] Report Analysis Completed
[pid: 26|app: 0|req: 1508979/3064049] 10.18.2.54 () {48 vars in 1036 bytes} [Thu Jun 29 16:12:44 2023] POST /api/v1/report/upload => generated 60 bytes in 8 msecs (HTTP/1.0 200) 9 headers in 265 bytes (3 switches on core 1997)
Not running behind as many reverse proxies as expected.
The right value for XFF_TRUSTED_PROXY_DEPTH for this request is 2 and 20 is configured.
Not running behind as many reverse proxies as expected.
The right value for XFF_TRUSTED_PROXY_DEPTH for this request is 2 and 20 is configured.
INFO 2023-06-29 16:12:44,876 [report_handler_interface.handle:81] [SaasMethodPoolHandler] Report resolution start
INFO 2023-06-29 16:12:44,876 [report_handler_interface.has_permission:64] report_type : 36 agent_id: 585 has_permission: YES
INFO 2023-06-29 16:12:44,877 [saas_method_pool_handler.parse:97] start record method_pool : 585 /error GET
INFO 2023-06-29 16:12:44,877 [saas_method_pool_handler.add_new_api_route:455] 585, /error, GET
INFO 2023-06-29 16:12:44,877 [report_handler_interface.handle:81] [SaasMethodPoolHandler] Report resolution start
INFO 2023-06-29 16:12:44,877 [saas_method_pool_handler.add_new_api_route:460] found cache api_route-585-/error-GET ,skip its insert
INFO 2023-06-29 16:12:44,878 [report_handler_interface.has_permission:64] report_type : 36 agent_id: 585 has_permission: YES
INFO 2023-06-29 16:12:44,878 [saas_method_pool_handler.parse:97] start record method_pool : 585 /swagger-ui/null/swagger-resources GET
INFO 2023-06-29 16:12:44,878 [saas_method_pool_handler.add_new_api_route:455] 585, /swagger-ui/null/swagger-resources, GET
INFO 2023-06-29 16:12:44,878 [saas_method_pool_handler.add_new_api_route:460] found cache api_route-585-/swagger-ui/null/swagger-resources-GET ,skip its insert
INFO 2023-06-29 16:12:44,878 [saas_method_pool_handler.send_to_engine:350] [+] send method_pool [de54f07b6d374ef58e406255d906e7d4] to engine for new record
INFO 2023-06-29 16:12:44,879 [saas_method_pool_handler.send_to_engine:350] [+] send method_pool [2b40d99e2124454d87bdd4bc4961189d] to engine for new record
INFO 2023-06-29 16:12:44,880 [report_handler_interface.handle:89] [SaasMethodPoolHandler] Report Analysis Completed
[pid: 27|app: 0|req: 924682/3064050] 10.18.2.54 () {48 vars in 1037 bytes} [Thu Jun 29 16:12:44 2023] POST /api/v1/report/upload => generated 60 bytes in 7 msecs (HTTP/1.0 200) 9 headers in 265 bytes (3 switches on core 1995)
INFO 2023-06-29 16:12:44,881 [report_handler_interface.handle:89] [SaasMethodPoolHandler] Report Analysis Completed
[pid: 26|app: 0|req: 1508980/3064051] 10.18.2.54 () {48 vars in 1035 bytes} [Thu Jun 29 16:12:44 2023] POST /api/v1/report/upload => generated 60 bytes in 8 msecs (HTTP/1.0 200) 9 headers in 265 bytes (3 switches on core 1997)
Not running behind as many reverse proxies as expected.
The right value for XFF_TRUSTED_PROXY_DEPTH for this request is 2 and 20 is configured.
Not running behind as many reverse proxies as expected.
The right value for XFF_TRUSTED_PROXY_DEPTH for this request is 2 and 20 is configured.
INFO 2023-06-29 16:12:44,907 [report_handler_interface.handle:81] [SaasMethodPoolHandler] Report resolution start
INFO 2023-06-29 16:12:44,908 [report_handler_interface.has_permission:64] report_type : 36 agent_id: 354 has_permission: YES
INFO 2023-06-29 16:12:44,908 [saas_method_pool_handler.parse:97] start record method_pool : 354 /error GET
INFO 2023-06-29 16:12:44,908 [saas_method_pool_handler.add_new_api_route:455] 354, /error, GET
INFO 2023-06-29 16:12:44,908 [saas_method_pool_handler.add_new_api_route:460] found cache api_route-354-/error-GET ,skip its insert
INFO 2023-06-29 16:12:44,909 [saas_method_pool_handler.send_to_engine:350] [+] send method_pool [5cd6e1d71aee4c26b9a17b54911af053] to engine for new record
INFO 2023-06-29 16:12:44,912 [report_handler_interface.handle:89] [SaasMethodPoolHandler] Report Analysis Completed
@PhuketIsland PhuketIsland added the bug Something isn't working label Jun 29, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@PhuketIsland