stackoom
  简体   繁体   中英

How do I add a ModSecurity rule to block certain http requests?

 原文  2022-05-16 13:18:31       nginx/ firewall/ mod-security/ web-application-firewall/ mod-security2

Question

I want to create a rule that blocks all http requests (get,post,put, literally all of them) and only allow certain ones that I specify. Specifically, Get, Put and Post. I am running ModSecurity V3.

If there is a rule that can do something like this, if someone wouldn't mind sharing the syntax, I would greatly appreciate it.

Note: Currently I am getting a 403 (Forbidden) response when I attempt to request for a POST/PUT. Not sure why this is.

Thanks!

1 answers

solution1
 2  2022-05-17 14:12:02

Using ModSecurity, try this rule (last 2 lines are optional):

SecRule REQUEST_METHOD "!@within GET POST PUT" \
    "id:20,\
    phase:1,\
    deny,\
    msg:'Method is not allowed by policy',\
    logdata:'%{MATCHED_VAR}'"

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How do I prevent owasp/modsecurity Docker container from overwriting my nginx.conf Nginx: how to add a rewrite rule to redirect all the requests for a file type? How do I redirect all requests that does NOT contain certain string to 400 using nginx How do I redirect all requests that contains a certain string to 404 in nginx? Adding exceptions (SecRuleUpdateTargetById) in ModSecurity rule does not work? how do I choose the AWS server for load balancer in terms of memory, CPU, disk in order to handle certain number of concurrent requests How to block Nginx requests where http_referer matches requested URL Does defult server still exist after I add a server block to http block? how about the ModSecurity Dos Protection? how to block url using page rule in cloudflare?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM