Could not get get UUID for given host

Question

Could not get get UUID for given host

Django-BOfH opened this issue 7 years ago · comments

I've updated to the latest version and now I receive this error-message:

/usr/bin/php ./check_nextcloud.php -H nextcloud.nausch.org -u /

WARNING: Could not get get UUID for given host nextcloud.nausch.org/. Aborting.

If I check my site manually at scan.nextcloud.com it works:
https://scan.nextcloud.com/results/71668138-b6a3-46bd-aafc-555c06507cef

any hints or suggestions?

Clasko commented 6 years ago

same here

Nicolai · Answer 1 · Wed May 24 2017 00:29:25 GMT+0800 (China Standard Time)

I've tried to reproduce your error, but worked for me with php 5.4.16 and php 7.0.19. Which os and php version has your system?

The error indicates an problem while getting the results from https://scan.nextcloud.com/api/queue. Could you try the following:

curl -H 'Content-type: application/x-www-form-urlencoded' -H 'X-CSRF: true' --data-urlencode url=nextcloud.nausch.org https://scan.nextcloud.com/api/queue

Django · Answer 2 · Fri Jun 02 2017 04:43:43 GMT+0800 (China Standard Time)

I'm using CentOS 7.3 with PHP Version => 5.4.16
On this host it works:
# curl -H 'Content-type: application/x-www-form-urlencoded' -H 'X-CSRF: true' --data-urlencode url=nextcloud.nausch.org https://scan.nextcloud.com/api/queue
{"uuid":"71668138-b6a3-46bd-aafc-555c06507cef"}

BUT on my production system I have:
I'm using CentOS 7.3 with PHP Version PHP Version => 7.0.19
# curl -H 'Content-type: application/x-www-form-urlencoded' -H 'X-CSRF: true' --data-urlencode url=nextcloud.nausch.org https://scan.nextcloud.com/api/queue
"Too many instances queued."

Django · Answer 3 · Sat Jun 03 2017 22:01:49 GMT+0800 (China Standard Time)

's still not working

Nicolai · Answer 4 · Mon Jun 05 2017 22:45:52 GMT+0800 (China Standard Time)

Looks like a Problem with IP / the nextcloud API, but not like a problem with this plugin.

Do the both hosts share the same external IP (eg. NAT) or are they different?

Django · Answer 5 · Thu Jun 22 2017 21:38:05 GMT+0800 (China Standard Time)

Hmmm, both hosts has different external IPs, as you assumed. But my check worked fine till 17th May:

Mittwoch, Mai 17, 2017
OK
20:27:36
[ 1/5 ] OK: A+ rating for nextcloud.nausch.org, 0 vulnerabilities identified, last scan: 17.05.2017 - 13:43:52h

Since May18th the check is broken. :/ And I've nothing changed like updates or anything else.

Nicolai · Answer 6 · Sun Jul 30 2017 19:12:12 GMT+0800 (China Standard Time)

Yesterday the problem started to occur at one of our instances. Investigations shows that despite our check_interval of 24h seems great enough, the rate limit is hitting. @janvonde do you know any documentation of the (inofficial API) or time limits?

Jan Vonde · Answer 7 · Sun Oct 08 2017 16:37:02 GMT+0800 (China Standard Time)

@nbuchwitz I am sorry but no. I had contact with @LukasReschke via twitter and he told me about the ~250 post limit per day... maybe it is per year?

Django · Answer 8 · Sat Oct 14 2017 17:59:31 GMT+0800 (China Standard Time)

Do you know, if there is a way to check if a site is rate-limited or blocked?

Django · Answer 9 · Sat Oct 14 2017 21:52:32 GMT+0800 (China Standard Time)

I've ask Nextclouders via Twitter:

@Nextclouders Your secuity-scanners seems broken. May you fix it? Since 2017-07-22 I can't (re)check sites! :/

The answer:
Replying to @Pirat_Django
we know, sorry about that. Sadly the flood of complains (many automated) has blocked us from scanning... We are looking for a solution.

Ben Jones · Answer 10 · Sun Apr 22 2018 11:37:07 GMT+0800 (China Standard Time)

Is this still broken?

Max · Answer 11 · Fri Sep 14 2018 15:24:55 GMT+0800 (China Standard Time)

This just occurred on my system. Is there a solution?