External/patterns
1
0
Fork 0
mirror of https://github.com/fabriziosalmi/patterns.git synced 2025-12-17 17:55:48 +00:00
Code Issues Packages Projects Releases Wiki Activity
patterns/waf_patterns/nginx
History
Fabrizio Salmi 6bcca53eae Fix CI workflow and clarify Nginx WAF usage 
- Remove redundant 'gh auth login' command in CI workflow (fixes exit code 1 error)
- Use GH_TOKEN env var instead of GITHUB_TOKEN for gh CLI
- Update Nginx README to clarify that individual category .conf files should not be included directly
- Document that users must use waf_maps.conf (http block) + waf_rules.conf (server block)

Fixes #17
2025-12-09 07:59:25 +01:00
..
attack.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
bots.conf
Update: [Thu Feb 27 01:41:26 UTC 2025]
2025-02-27 01:41:26 +00:00
correlation.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
enforcement.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
evaluation.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
exceptions.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
fixation.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
generic.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
iis.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
initialization.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
java.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
leakages.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
php.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
rce.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
README.md
Fix CI workflow and clarify Nginx WAF usage
2025-12-09 07:59:25 +01:00
rfi.conf
Update: [Sun Jan 26 00:25:41 UTC 2025]
2025-01-26 00:25:41 +00:00
shells.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
sql.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
sqli.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00
waf_maps.conf
Update: [Fri Feb 28 10:03:59 UTC 2025]
2025-02-28 10:03:59 +00:00
waf_rules.conf
Update: [Fri Feb 28 10:03:59 UTC 2025]
2025-02-28 10:03:59 +00:00
xss.conf
Update: [Tue Jan 28 00:25:35 UTC 2025]
2025-01-28 00:25:35 +00:00

README.md

Nginx WAF Configuration

This directory contains Nginx WAF configuration files generated from OWASP rules. You can include these files in your existing Nginx configuration to enhance security.

Usage

Important: You should only include the two main configuration files (waf_maps.conf and waf_rules.conf). The individual category files (e.g., attack.conf, xss.conf) are provided for reference only and should not be included directly, as they contain both map and if directives that cannot be used in the same Nginx context.

  1. Include the waf_maps.conf file in your nginx.conf inside the http block: 
    http {
    include /path/to/waf_patterns/nginx/waf_maps.conf;
    # ... other http configurations ...
}
  2. Include the waf_rules.conf file in your server block: 
    server {
    # ... other server configurations ...
    include /path/to/waf_patterns/nginx/waf_rules.conf;
}
  3. Reload Nginx to apply the changes: 
    sudo nginx -t && sudo systemctl reload nginx

Notes

  • The map directives (defined in waf_maps.conf) must be placed in the http context.
  • The if rules (defined in waf_rules.conf) must be placed in a server or location context.
  • Do not try to include individual category files like attack.conf directly - they are auto-generated for reference and viewing purposes only.
  • Blocked requests return a 403 Forbidden response by default.
  • You can enable logging for blocked requests by uncommenting the access_log line.