performance hit in using too many if's

Alt nginx-forum at forum.nginx.org
Mon Sep 26 08:43:23 UTC 2016


Hello,

I don't agree with Robert Paprocki: adding modules like naxsi or modsecurity
to nginx is not a solution. They have bugs, performance hits, need patch
when there's new versions of nginx,...

gariac, you say you send 444 to hackers then use a script to display those.
Why not use fail2ban to scan the logs and ban them for some time. But of
course, fail2ban could also be a performance hit if you have tons of logs to
scan :-(

Posted at Nginx Forum: https://forum.nginx.org/read.php?2,269808,269848#msg-269848



More information about the nginx mailing list