Running a site using Nginx, as part of vulnerability scanning, we are getting reports of a DNS proxy form of exploit.
Essentially, it is possible to inject DNS lookups as part of the uri, GET request payload or even in Refer section of the HTTP header.
From Nginix perspective, wanted to know, if there is a way to prevent Nginix to attempt to resolve any DNS requests provided as part of URI, HTTP Refer or even User Agent attribute?