ngx_lua_waf
ngx_lua_waf copied to clipboard
oneinstack
ngx_lua_waf是一个基于lua-nginx-module的web应用防火墙
After automating the installation of waf using addons.sh in oneinstack, the command `sudo systemctl restart nginx.service` failed to start Nginx, so use `sudo systemctl status nginx.service -l` to view the...
lua waf都有这个问题,301 跳转后,如果用curl http://xxx.xxx.xx/phpmyadmin/aaa.html攻击后,不会拦截!! nginx301 跳转防护失效,测试没有拦截,也没有拦截日志 去掉 301 后就正常能拦截 这个可以修复吗?比如,80跳转HTTPS访问,80如果被攻击,不会记录攻击日志 if ($server_port = 80) { return 301 https://$host$request_uri; }
2020/10/20 18:06:08 [error] 127#127: *1407 lua entry thread aborted: runtime error: /waf/init.lua:187: bad argument #1 to 'pairs' (table expected, got nil) stack traceback: coroutine 0: [C]: in function 'pairs' /waf/init.lua:187:...
我在本地测试CC频率设置为一分钟内2次触发拦截config_cc_rate = "2/60" 访问http://127.0.0.1:81/刷新2三次触发重定向到http://127.0.0.1:81/captcha-waf.html?continue=aHR0cDovLzEyNy4wLjAuMS8=验证,有一个小问题是ajax验证成功之后回调函数会重定向url,这url不带端口,以下是我稍作修改之后的: success: function(res){ var targetUrl = new URLSearchParams(location.search).get('continue') targetUrl = atob(targetUrl) //location.href = targetUrl; var targetUrlObj = new URL(targetUrl); if (!targetUrlObj.port) { targetUrlObj.port = location.port; } location.href...
