External/patterns
1
0
Fork 0
mirror of https://github.com/fabriziosalmi/patterns.git synced 2025-12-17 17:55:48 +00:00
Code Issues Packages Projects Releases Wiki Activity
patterns/waf_patterns/nginx/iis.conf
github-actions[bot] 1f2291133b Update: [Mon Jan 20 00:26:12 UTC 2025]
2025-01-20 00:26:12 +00:00

19 lines
715 B
Plaintext
Raw Blame History

# Nginx WAF rules for IIS
# Automatically generated from OWASP rules.
# Include this file in your server or location block.
map $request_uri $waf_block_iis {
default 0;
"~*[a-z]:x5cinetpubb" 1;
"~*(?:Microsoft OLE DB Provider for SQL Server(?:</font>.{1,20}?error '800(?:04005|40e31)'.{1,40}?Timeout expired| (0x80040e31)<br>Timeout expired<br>)|<h1>internal server error</h1>.*?<h2>part of the server has crashed or it has a configuration error.</h2>|cannot connect to the server: timed out)" 1;
"~*!@rx ^404$" 1;
"~*bServer Error in.{0,50}?bApplicationb" 1;
}
if ($waf_block_iis) {
return 403;
# Log the blocked request (optional)
# access_log /var/log/nginx/waf_blocked.log;
}
Reference in New Issue View Git Blame Copy Permalink