Welcome! Log In Create A New Profile

Advanced

Re: shellshock probing

Cole Tierney
April 01, 2015 05:08PM
Thanks mex, I’ll check it out.

> On Apr 1, 2015, at 4:50 PM, mex <nginx-forum@nginx.us> wrote:
>
> hi cole,
>
> if implemetable you couldd use naxsi https://github.com/nbs-system/naxsi
> for this, there exists a rule to detect and block
> shellshock-exploit-attempts:
>
> MainRule "str:() {" "msg:Possible Remote code execution through Bash
> CVE-2014-6271" "mz:BODY|HEADERS" "s:$ATTACK:8" id:42000393 ;
>
> see -> http://spike.nginx-goodies.com/rules/view/42000393
>
> there is also an extended ruleset available
> -> https://bitbucket.org/lazy_dogtown/doxi-rules
>
> cheers,
>
> mex

_______________________________________________
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Subject Author Posted

2 maps for one 1 variable?

Cole Tierney April 01, 2015 03:08PM

Re: 2 maps for one 1 variable?

GreenGecko April 01, 2015 03:24PM

Re: 2 maps for one 1 variable?

Cole Tierney April 01, 2015 04:04PM

shellshock probing

Cole Tierney April 01, 2015 04:26PM

Re: shellshock probing

mex April 01, 2015 04:50PM

Re: shellshock probing

Cole Tierney April 01, 2015 05:08PM

Re: shellshock probing

mex April 01, 2015 05:17PM

Re: shellshock probing

itpp2012 April 02, 2015 07:21AM

Re: shellshock probing

Cole Tierney April 02, 2015 09:34AM

Re: shellshock probing

B.R. April 02, 2015 10:50AM



Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 83
Record Number of Users: 8 on April 13, 2023
Record Number of Guests: 500 on July 15, 2024
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready