Comment on How are people discovering random subdomains on my server?
kumi@feddit.online 1 week ago
You say you have a wildcad cart but just to make sure: I don’t suppose you’ve used ACME for Letsencrypt or some other publicly trusted CA to issue a cert including the affected name? If so it will be public in Certificate Transparency Logs.
BonkTheAnnoyed@lemmy.blahaj.zone 1 week ago
The random name is not in the public log. Someone else suggested that earlier. I checked CRT.sh and while my primary domain is there, the random one isn’t.
kumi@feddit.online 1 week ago
My next suspicion from what you’ve shared so far would be something out of the http server loop.
Have you used some free public DNS server and inadvertently queried it with the name from a container or something? Developer tooling building some app with opt-out analytics? Any locally connected AI agents having access to it?