Comments (3)
Hello @thelittlefireman, thanks for your suggestion.
From what I understand, teler is only detecting and not preventing. The database of resources is hosted at kitabisa/teler-resources and consists of :
- Common Web Attack from PHPIDS : this is outdated and ModSecurity+CRS should cover this
- CVE from nuclei-templates : looks interesting
- Bad IP & bad referrer from nginx ultimate bad bot blocker
- Bad crawlers from Crawler-Detect : might be useful too
- Directory bruteforce from dirsearch : bunkerized-nginx already offers rate limiting + fail2ban, I think it should be enough
We already download bad User-Agent list from nginx-ultimate-bad-bot-blocker. They also have bad IP and referrer lists, I will look into it deeper.
The Fail2Ban.WebExploits list contains too much generic urls like /admin, /blog, /demo, ... and will surely lead to FPs as you said. Fail2ban setup with 404 error codes should be enough IMO.
Let's keep this issue open while we integrate interesting stuff from these projects.
from bunkerweb.
Thanks a lot, that's perfect :)
from bunkerweb.
Hello @thelittlefireman,
We added the "bad referrers" blacklist that can be set with the BLOCK_REFERRER
environment variable (default to yes). We also added the Crawler-Detect "bad User-Agents" to the existing one. Thanks !
from bunkerweb.
Related Issues (20)
- [BUG] Error 500 webui HOT 3
- clamav and virustotal plugin does't work HOT 1
- [BUG] NGINX Crashing with error - shdict.lua:490: attempt to compare boolean with number HOT 5
- [BUG] HOT 2
- [FEATURE] Official support for REHL 9? HOT 4
- [DOC] Country security feature HOT 2
- [FEATURE] Add option to force redirect to https when inbound request scheme is http. HOT 1
- [question] Bunkerweb & mailcow: How can I mount the generated certs for an external service? Where are they saved ? HOT 6
- [BUG] using an underscore as server_name in the env vars fails LE and all sites. HOT 3
- [BUG] letsencrypt handshake not working on IPv6 only HOT 3
- [FEATURE] support uwsgi_params in reverse proxy default configuration HOT 5
- [FEATURE] adding open-appsec HOT 2
- [BUG] REVERSE_PROXY_URL results in too many redirects HOT 2
- [BUG] scheduler error _getdefaultlocale HOT 5
- [BUG] Scheduler Crash on Reloading Plugins HOT 3
- [BUG] Get empty page after reload page with challenge HOT 4
- [BUG] After the first unsuccessful attempt to complete the captcha challenge, the remaining attempts become failures HOT 2
- [DOC] Web-UI K8S "Advanced Installation" bunkerweb-ui isn't using correct serviceaccount HOT 6
- [FEATURE] allow to modify nginx default buffer setting to handle "upstream sent too big header" HOT 1
- [BUG] IPs in WHITELIST_IP gets banned for Bad Behavior in the middle of the night HOT 10
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from bunkerweb.