NAXSI intercepts all accesses

Software version: 

centos 7
naxsi-0.55.3
tengine-2.2.2

nginx.conf file configuration, refer to official website document configuration, 

SecRulesEnabled;
LearningMode;
DeniedUrl "/403.html";

CheckRule "$SQL >= 8" BLOCK;
CheckRule "$RFI >= 8" BLOCK;
CheckRule "$TRAVERSAL >= 4" BLOCK;
CheckRule "$EVADE >= 4" BLOCK;
CheckRule "$XSS >= 8" BLOCK;

error_log logs/foo.log;

question: 



2018/03/29 23:26:05 [error] 902-sharp0: *10 NAXSI_FMT:ip=192.168.2.108&server=admin.zhengxin.com&
uri=/test&learning=1&vers=0.55.3&total_processed=5&total_blocked=5&block=1&
cscore0=$XSS&score0=24&zone0=HEADERS&
id0=1315&var_name0=cookie, client: 192.168.2.108, server: admin.zhengxin.com, 
request: "GET /test HTTP/1.1", host: "admin.zhengxin.com"


 CheckRule "$XSS >= 8" BLOCK  ;

question: 

 CheckRule "$XSS >= 8" BLOCK
Tengine nginx
Feb.28,2021

CheckRule "$XSS > = 8" BLOCK; add the following sentence BasicRule wl:1315 "mz:$HEADERS_VAR:Cookie";-sharp Disable rule-sharp1315 in Cookie

Previous: How to make js execute repeatedly

Next: How does the Submenu option in the navigation menu component of iview bind events that click on the title?

css mysql arrays josn react html typescript webpack npm sass R objective-c .net sql-server jquery python-3.x angularjs django angular excel regex iphone ajax linux xml pandas vba spring database wordpress string wpf xcode windows bash postgresql oracle multithreading eclipse list firebase algorithm macos forms image scala visual-studio azure bootstrap spring-boot react-native python-2.7 docker performance function winforms matlab powershell apache dataframe api sqlite numpy rest shell selenium flutter dart maven loops qt swing android-studio csv express file class tensorflow sorting codeigniter perl
© 2021 CodesHelper
Advertising Contact us About us
Menu