starred/nginx-proxy-manager-NginxProxyManager
1
0
Fork 0
mirror of https://github.com/NginxProxyManager/nginx-proxy-manager.git synced 2026-04-25 09:25:55 +03:00
Code Issues 937 Projects Releases 10 Packages Wiki Activity

[GH-ISSUE #601] Block common exploits funtion. #507

New issue
Closed
opened 2026-02-26 06:33:11 +03:00 by kerem · 5 comments
kerem commented 2026-02-26 06:33:11 +03:00
Owner
Copy link

Originally created by @investlab on GitHub (Sep 10, 2020).
Original GitHub issue: https://github.com/NginxProxyManager/nginx-proxy-manager/issues/601

Screenshot_1
Hi there,
Can you tell me what's module did you build this funtion?
Thank you!

Originally created by @investlab on GitHub (Sep 10, 2020). Original GitHub issue: https://github.com/NginxProxyManager/nginx-proxy-manager/issues/601 ![Screenshot_1](https://user-images.githubusercontent.com/10806362/92690225-d4c53b80-f36a-11ea-96be-42f4ad3faa36.png) Hi there, Can you tell me what's module did you build this funtion? Thank you!
kerem 2026-02-26 06:33:11 +03:00
kerem commented 2026-02-26 06:33:11 +03:00
Author
Owner
Copy link

@mochman commented on GitHub (Sep 14, 2020):

It looks like when you enable that, block-exploits.conf is included.

<!-- gh-comment-id:691838044 --> @mochman commented on GitHub (Sep 14, 2020): It looks like when you enable that, [block-exploits.conf](https://github.com/jc21/nginx-proxy-manager/blob/bb0f4bfa626bfa30e3ad2fa31b5d759c9de98559/docker/rootfs/etc/nginx/conf.d/include/block-exploits.conf) is included.
kerem commented 2026-02-26 06:33:11 +03:00
Author
Owner
Copy link

@investlab commented on GitHub (Sep 14, 2020):

Thank you @mochman
I will custom this funtion using modsecurity.

<!-- gh-comment-id:691840540 --> @investlab commented on GitHub (Sep 14, 2020): Thank you @mochman I will custom this funtion using modsecurity.
kerem commented 2026-02-26 06:33:11 +03:00
Author
Owner
Copy link

@itsKV commented on GitHub (Aug 4, 2022):

It looks like when you enable that, block-exploits.conf is included.

And where can I find this block-exploits.conf file on host filesystem?
I couldn't find that conf.d folder mentioned in path of conf file.

<!-- gh-comment-id:1204930238 --> @itsKV commented on GitHub (Aug 4, 2022): > It looks like when you enable that, [block-exploits.conf](https://github.com/jc21/nginx-proxy-manager/blob/bb0f4bfa626bfa30e3ad2fa31b5d759c9de98559/docker/rootfs/etc/nginx/conf.d/include/block-exploits.conf) is included. And where can I find this block-exploits.conf file on host filesystem? I couldn't find that conf.d folder mentioned in path of conf file.
kerem commented 2026-02-26 06:33:11 +03:00
Author
Owner
Copy link

@mochman commented on GitHub (Aug 4, 2022):

It's not on the host filesystem. It's located in the container filesystem at /etc/nginx/conf.d/include/block-exploits.conf.
You can get it on the host filesystem by creating a bind mount to the file directly.

<!-- gh-comment-id:1204980538 --> @mochman commented on GitHub (Aug 4, 2022): It's not on the host filesystem. It's located in the container filesystem at `/etc/nginx/conf.d/include/block-exploits.conf`. You can get it on the host filesystem by creating a [bind mount](https://docs.docker.com/storage/bind-mounts/) to the file directly.
kerem commented 2026-02-26 06:33:11 +03:00
Author
Owner
Copy link

@YurkinPark commented on GitHub (Nov 21, 2024):

btw, are there some addons which i can use to provide such options (like "Block common exploits") to be included in configuration (or managed externally) to let administrator specify user-agent or IP to block traffic from such client?

<!-- gh-comment-id:2490484684 --> @YurkinPark commented on GitHub (Nov 21, 2024): btw, are there some addons which i can use to provide such options (like "Block common exploits") to be included in configuration (or managed externally) to let administrator specify user-agent or IP to block traffic from such client?
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
develop
dependabot/npm_and_yarn/backend/liquidjs-10.25.7
dependabot/npm_and_yarn/frontend/prod-minor-updates-2a16bf3987
dependabot/npm_and_yarn/frontend/dev-patch-updates-754666cf41
dependabot/npm_and_yarn/backend/basic-ftp-5.3.0
dependabot/npm_and_yarn/test/follow-redirects-1.16.0
dependabot/npm_and_yarn/test/axios-1.15.0
dependabot/npm_and_yarn/frontend/lodash-4.18.1
dependabot/npm_and_yarn/backend/lodash-4.18.1
dependabot/npm_and_yarn/test/lodash-4.18.1
dependabot/npm_and_yarn/frontend/vite-7.3.2
dependabot/npm_and_yarn/backend/prod-minor-updates-5ec19a7f21
dependabot/npm_and_yarn/frontend/lodash-es-4.18.1
dependabot/npm_and_yarn/frontend/happy-dom-20.8.9
dependabot/npm_and_yarn/backend/path-to-regexp-8.4.0
dependabot/npm_and_yarn/frontend/picomatch-4.0.4
dependabot/npm_and_yarn/backend/picomatch-2.3.2
dependabot/npm_and_yarn/frontend/yaml-1.10.3
dependabot/npm_and_yarn/test/flatted-3.4.2
dependabot/npm_and_yarn/test/tar-7.5.11
dependabot/npm_and_yarn/frontend/immutable-5.1.5
master
dependabot/npm_and_yarn/test/glob-10.5.0
dependabot/npm_and_yarn/frontend/mdast-util-to-hast-13.2.1
dependabot/npm_and_yarn/test/form-data-4.0.4
v3-abandoned
bump-freedns
openidc
ssl-passthrough-hosts
static-content
v2.14.0
v2.13.7
v2.13.6
v2.13.5
v2.13.4
v2.13.3
v2.13.2
v2.13.1
v2.13.0
v2.12.6
v2.12.5
v2.12.4
v2.12.3
v2.12.2
v2.12.1
v2.12.0
v2.11.3
v2.11.2
v2.11.1
v2.11.0
v2.10.4
v2.10.3
v2.10.2
v2.10.1
v2.10.0
v2.9.22
v2.9.21
v2.9.20
v2.9.19
v2.9.18
v2.9.17
v2.9.16
v2.9.15
v2.9.14
v2.9.13
v2.9.12
v2.9.11
v2.9.10
v2.9.9
v2.9.8
v2.9.7
v2.9.6
v2.9.5
v2.9.4
v2.9.3
v2.9.2
v2.9.1
v2.9.0
v2.8.1
v2.8.0
v2.7.3
v2.7.2
v2.7.1
v2.7.0
v2.6.2
v2.6.1
v2.6.0
v2.5.0
v2.4.0
v2.3.1
v2.3.0
v2.2.4
v2.2.3
v2.2.2
v2.2.1
v2.2.0
v2.1.2
v2.1.1
v2.1.0
2.0.14
2.0.13
2.0.12
2.0.11
2.0.10
2.0.9
2.0.8
2.0.7
2.0.6
2.0.5
2.0.4
2.0.3
2.0.2
2.0.0
v2.0.0
1.1.2
1.1.1
1.0.1
Labels
Clear labels   
awaiting feedback

   
bug

   
cannot reproduce

   
dns provider request

   
duplicate

   
enhancement

   
enhancement

   
enhancement

   
good first issue

   
help wanted

   
invalid

   
need more info

   
no certbot plugin available

   
product-support

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
stale

   
troll

   
upstream issue

   
v2

   
v2

   
v2

   
v3

   
wontfix
No labels
awaiting feedback
bug
cannot reproduce
dns provider request
duplicate
enhancement
enhancement
enhancement
good first issue
help wanted
invalid
need more info
no certbot plugin available
product-support
pull-request
question
stale
troll
upstream issue
v2
v2
v2
v3
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/nginx-proxy-manager-NginxProxyManager#507
No description provided.