{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 【Aperson】 的问题《my google compute engine commiting DOS attack》','https://www.manongdao.com/q-1152660.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I got the following from google: This project appears to be committing denial of service attacks.
The VM is running Ubuntu 16.04 with latest updates, Apache, PHP 7.0, MySQL 5.7 and Docker.
I would like to know what to look out for to mitigate this please.
I'm leaving here some interesting resources you can check to secure your Google Compute Engine instance:
General security advice for Google Cloud Platform instances:
To diagnose trouble with GCE instances, serial port output from the instance can be useful.
You can check the serial port output by clicking on the instance name and then on "Serial port 1 (console)". Note that this logs are wipped when instances are shutdown & rebooted, and the log is not visible when the instance is not started.
Stackdriver monitoring is also helpful to provide an audit trail to diagnose problems.
Here are some hints you can check on keeping GCP projects secure.