We have the problem of hackers trying to submit forged payment requests. They return the url /checkout?fail=1 when their attempts fails.
Using modsec, How can we block their ip IF they visit that url more than 3 times?
Asked
Active
Viewed 79 times
0
-
I don't know with modsec (google?) but it's easy to do with fail2ban – NRE Dec 08 '20 at 06:40
-
thanks, but I can't even see in their docs how to do this. – Tim Dec 09 '20 at 12:41
-
You can look https://serverfault.com/questions/416926/automatically-block-ip-who-requests-certain-url or on Google, there are a lot of examples/solutions how to do that – NRE Dec 10 '20 at 06:33
-
Thank you. Believe it or not, I searched high and low before posting this. – Tim Dec 14 '20 at 14:11