Really weird server error

One of my apps just got this error message

anvil.server.NoServerFunctionError: API request routing failed. No @anvil.server.http_endpoint exists with path matching '/wp-admin/setup-config.php'

This particular app has no HTTP Endpoints setup, and HTTP calls are expected. So nothing that I can think of should be looking for a setup-config.php file… and there is no WordPress site that I have any interaction with.

Any idea’s how to troubleshoot this?

Here is a link to the session log

https://anvil.works/build/apps/CE2WOEY5XWM6YJXZ/sessions/RXLIYUA36Y4DYDY2ZHDYL2BW2SI45TBV#logs

Someone tried to access an endpoint that your app doesn’t have.
End of troubleshooting :slight_smile:

The more people use your apps and “advertise its domain”, the more bots will try plenty of http endpoints, hoping to find a site with security holes.

4 Likes

This is linked to this: Spam API Calls From Different IP's

There’s been a massive uptick recently in these, which suggests that somebody somewhere has clocked that Anvil is being used to build increasingly interesting stuff.

There’ll be a bot somewhere systematically hunting any and all active apps and working through a spray of all possible endpoints and endpoint variations, so: /u, /us, /use, /user, /users.

Looking at the structure of what I’ve been seeing, it seems apparent someone has been using ChatGPT to write the reconnaissance script. That does mean that anyone whose using ChatGPT to write their endpoints is likely to be in scope for getting pinged because the attack will be flavoured with the same endpoint suggestions.

Anyway, it’s not really a problem until they substantially raise their game - or someone leaves a door wide open.

thanks for the insights @socint & @stefano.menci!