Welcome! Log In Create A New Profile

Advanced

Obvious malware rejection module?

Skip Montanaro
February 14, 2022 08:44AM
I have a simple website with NGINX fronting Gunicorn and Flask. Of course,
within minutes of it going live, I started to get obvious crap, probing for
vulnerabilities. Nothing's gotten through yet, at least as far as I can
tell. Even so, it would be nice if such malware-type requests were rejected
by NGINX before they reach the backend.

Is there a module for NGINX which implements something like a blackhole
list similar to what you find on email servers, that is, offloading the
acceptance or rejection of certain paths to a community-managed database? I
scrolled through the list here:

https://www.nginx.com/resources/wiki/modules/

but didn't see anything obvious. I could establish my own rewrite rules
(and probably will) for some of the most egregious requests (anything
".php" would get dropped, for example), but was hoping something already
existed.

Thanks,

Skip Montanaro
_______________________________________________
nginx mailing list -- nginx@nginx.org
To unsubscribe send an email to nginx-leave@nginx.org
Subject Author Posted

Obvious malware rejection module?

Skip Montanaro February 14, 2022 08:44AM

Re: Obvious malware rejection module?

Sergey A. Osokin February 14, 2022 11:04AM

Re: Obvious malware rejection module?

Skip Montanaro February 14, 2022 11:34AM

Re: Obvious malware rejection module?

gariac February 14, 2022 12:08PM

Re: Obvious malware rejection module?

Skip Montanaro February 14, 2022 03:32PM

Re: Obvious malware rejection module?

gariac February 14, 2022 06:18PM

Re: Obvious malware rejection module?

noloader February 14, 2022 07:54PM

Re: Obvious malware rejection module?

Skip Montanaro February 14, 2022 08:32PM

Re: Obvious malware rejection module?

gariac February 14, 2022 09:54PM



Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 83
Record Number of Users: 8 on April 13, 2023
Record Number of Guests: 421 on December 02, 2018
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready