极客观点
项目管理
HarmonyOS
软件版本:
centos 7
naxsi-0.55.3
tengine-2.2.2
nginx.conf 文件配置,参考 官网文档配置的,
SecRulesEnabled;
LearningMode;
DeniedUrl "/403.html";
CheckRule "$SQL >= 8" BLOCK;
CheckRule "$RFI >= 8" BLOCK;
CheckRule "$TRAVERSAL >= 4" BLOCK;
CheckRule "$EVADE >= 4" BLOCK;
CheckRule "$XSS >= 8" BLOCK;
error_log logs/foo.log;
问题:
直接访问域名(不带任何参数)都被拦截了,如何解决
2018/03/29 23:26:05 [error] 902#0: *10 NAXSI_FMT:ip=192.168.2.108&server=admin.zhengxin.com&
uri=/test&learning=1&vers=0.55.3&total_processed=5&total_blocked=5&block=1&
cscore0=$XSS&score0=24&zone0=HEADERS&
id0=1315&var_name0=cookie, client: 192.168.2.108, server: admin.zhengxin.com,
request: "GET /test HTTP/1.1", host: "admin.zhengxin.com"
测试了,是 CheckRule "$XSS >= 8" BLOCK 引起的,注释这一行就不会;
疑问:
CheckRule "$XSS >= 8" BLOCK 这一行是什么意思,不注释的话,如何解决无法访问的问题
CheckRule "$XSS >= 8" BLOCK;下面加一句BasicRule wl:1315 "mz:$HEADERS_VAR:Cookie"; # Disable rule #1315 in Cookie