patterns/waf_patterns/nginx/initialization.conf

# Nginx WAF rules for INITIALIZATION
# Automatically generated from OWASP rules.
# Include this file in your server or location block.

map $request_uri $waf_block_initialization {
    default 0;
    "~*@eq 1" 1;
    "~*^.*$" 1;
    "~*@eq 100" 1;
    "~*@eq 0" 1;
    "~*!@rx (?:URLENCODED|MULTIPART|XML|JSON)" 1;
    "~*^[a-f]*([0-9])[a-f]*([0-9])" 1;
}

if ($waf_block_initialization) {
    return 403;
    # Log the blocked request (optional)
    # access_log /var/log/nginx/waf_blocked.log;
}
Automated update: OWASP CRS to Caddy and Nginx WAF rules [Sat Dec 21 00:30:30 UTC 2024] 2024-12-21 00:30:30 +00:00			`# Nginx WAF rules for INITIALIZATION`
nginx generation improved 2025-01-16 13:49:54 +01:00			`# Automatically generated from OWASP rules.`
			`# Include this file in your server or location block.`
Automated update: OWASP CRS to Caddy and Nginx WAF rules [Sat Dec 21 00:30:30 UTC 2024] 2024-12-21 00:30:30 +00:00
nginx generation improved 2025-01-16 13:49:54 +01:00			`map $request_uri $waf_block_initialization {`
			`default 0;`
Update: [Sun Jan 26 00:25:41 UTC 2025] 2025-01-26 00:25:41 +00:00			`"~*@eq 1" 1;`
			`"~^.$" 1;`
			`"~*@eq 100" 1;`
Update: [Mon Jan 20 00:26:12 UTC 2025] 2025-01-20 00:26:12 +00:00			`"~*@eq 0" 1;`
Update: [Sat Jan 25 00:24:31 UTC 2025] 2025-01-25 00:24:31 +00:00			`"~*!@rx (?:URLENCODED\|MULTIPART\|XML\|JSON)" 1;`
Update: [Fri Jan 24 00:25:21 UTC 2025] 2025-01-24 00:25:21 +00:00			`"~^[a-f]([0-9])[a-f]*([0-9])" 1;`
nginx generation improved 2025-01-16 13:49:54 +01:00			`}`
Update: [Thu Jan 9 00:26:35 UTC 2025] 2025-01-09 00:26:35 +00:00
nginx generation improved 2025-01-16 13:49:54 +01:00			`if ($waf_block_initialization) {`
			`return 403;`
			`# Log the blocked request (optional)`
			`# access_log /var/log/nginx/waf_blocked.log;`
Automated update: OWASP CRS to Caddy and Nginx WAF rules [Sat Dec 21 00:30:30 UTC 2024] 2024-12-21 00:30:30 +00:00			`}`
nginx generation improved 2025-01-16 13:49:54 +01:00