Aborting malicious requests
Friscia, Michael
michael.friscia at yale.edu
Mon Mar 19 12:31:20 UTC 2018
Just a thought before I start crafting one. I am creating a location{} block with the intention of populating it with a ton of requests I want to terminate immediately with a 444 response. Before I start, I thought I’d ask to see if anyone has a really good one I can use as a base.
For example, we don’t serve PHP so I’m starting with
Location ~* .php {
Return 444;
}
Then I can just include this into all my server blocks so I can manage the aborts all in one place. This alone reduces errors in the logs significantly. But now I will have to start adding in all the wordpress stuff, then onto php myadmin, etc. I will end up with something like
Location ~* (.php|wp-admin|my-admin) {
Return 444;
}
I can imagine the chunk inside the parenthesis is going to be pretty huge which is why I thought I’d reach out to see if anyone has one already.
Thanks,
-mike
___________________________________________
Michael Friscia
Office of Communications
Yale School of Medicine
(203) 737-7932 - office
(203) 931-5381 - mobile
http://web.yale.edu<http://web.yale.edu/>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.nginx.org/pipermail/nginx/attachments/20180319/7f5262a7/attachment.html>
More information about the nginx
mailing list