5

nginx: How To Block Exploits, SQL Injections, File Injections, Spam, User Agents, Etc.

view full story
linux-howto

http://www.howtoforge.com – nginx: How To Block Exploits, SQL Injections, File Injections, Spam, User Agents, Etc. This short article explains how you can block the most common exploits, SQL injections, file injections, spam and user agents used by hackers and bandwidth hoggers from your nginx vhosts with some simple configuration directives. This configuration is far from being complete, but it's a good starting point. You will have to watch your logs for attempted break-in attempts and then ty to modify/complete the ruleset. (HowTos)

sine's picture
Submitted by sine on 08/06/2012 – Made popular on 08/06/2012

Stories similar to nginx: How To Block Exploits, SQL Injections, File Injections, Spam, User Agents, Etc.

What's the configuration to serve a static message (text or through a file) to all user agents which are IE7 AND below. I don't want IE7, 6, 5, 4, etc visiting my site.

I am looking to turn off logging in the Nginx access log file from specific requests from http user agents.

Basically from the Amazon ELB Health Check and our external (Pingdom) monitoring.

Nginx user/group config 17 weeks 3 days ago

I'm new to nginx, but over the past couple of days I've been learning about the features and all it has to offer. I'm running nginx in Centos 6.3.

I've installed nginx with php-fpm but have a few questions about users and groups.

When I install nginx it sets the user/group to nginx. I've set up my box to have all the server block accounts (vhosts) in /accounts/example.com/public_html.

nginx not blocking user agents 13 weeks 2 days ago

I have this in my .conf file for my website in attempt to block 2 user agents from constantly probing my server.

## Block http user agent - morpheus fucking scanner ## if ($http_user_agent ~* "morfeus fucking scanner|ZmEu") { return 403; }

Ive also tried the following, with no luck:

if ($http_user_agent ~* ("morfeus fucking scanner|ZmEu")) if ($http_user_agent ~* (morfeus fucking scanner|Zm

Hello;

An account at our host sends spam permanently. There is a block system via time like a user can send 100 mail in an hour. So this spam spents sending rights in a hour and the real users cannot send because of the block system.

How can i block this outgoing spam mails?

Auto ban failed hack attempts? 1 year 36 weeks ago

I'm getting log notices of activity's such as users trying to access /js/cache/'+opts.iframeSrc+' and other suspicious looking failed Javascript and MYSQL injections. However these seem to come from an ip addresses that changes daily. (maybe proxies or just a different connection.)

How should I deal with this? Is there a way I can add them to an ip blacklist on Apache for 24 hours, or something?

Nginx Init.d script 36 weeks 1 day ago

Hey i need some help with the Init.d script for Nginx This is my Nginx files locations -

nginx path prefix: "/usr/local/nginx" nginx binary file: "/usr/local/nginx/nginx" nginx configuration prefix: "/usr/local/nginx" nginx configuration file: "/usr/local/nginx/nginx.conf" nginx pid file: "/usr/local/nginx/nginx.pid" nginx error log file: "/usr/local/nginx/logs/error.log" nginx http

Apache has a patch to block the Do Not Track header for Internet Explorer 10. What Nginx configuration change can I use to do the same?

General spam messages 30 weeks 6 days ago

I've had my EVO for one week now. I've gotten a few spam messages, from spam bots (hey I'm 19 and single, wanna chat?) to best buy saying I won a gift card. They aren't affiliated with a number so I can't block them. Anyone else have these issues and how do I block them? Thanks.