Hello!
I use Route 53 public record associated with Application Load Balancer in order to forward HTTPS traffic to my application backend deployed to EKS.
Recently backend received an odd request (UTC+03:00):
2023-06-05T13:10:26.208Z INFO 1 --- [nio-8081-exec-6] o.apache.coyote.http11.Http11Processor : The host [irancell2.co.nokia.com.co.uk.do_yo.want_to.clash_with.this.microsoft.com.there_is_no.place_nano.localhost.bing.com.count_with_me.cyou.com.now_sudo.rm_rf.ddns.net.aaagain_to_fight.with_everyone.i_am.the_internet.special_waym.s-s.ghodratmandaneridim.store] is not valid
Is this some kind of a hack attempt? If so, what actions should be taken in order to protect public DNS record and AWS services?
Thank you.
