How can i block on Nginx an attack like the code below?

Asked Jan 07 '21 at 12:54

Active Jan 07 '21 at 12:54

Viewed 128 times

The error shows up in error.log and the server suffers from multiple requests like this one.

FastCGI sent in stderr: "Primary script unknown" while reading response header from upstream, client: 127.0.0.1, server: "attacker's ip", request: "GET /random characters.php HTTP/1.1", upstream: "fastcgi://127.0.0.1:9000", host: "my server ip"

Kindly asking for help.

asked Jan 07 '21 at 12:54

UserWarrior4321

Check out this answer https://serverfault.com/a/849859/599646 . It describes how to configure Fail2Ban for what you need. – anemyte Jan 07 '21 at 12:58
Also, see the [Pitfalls and Common Mistakes](https://www.nginx.com/resources/wiki/start/topics/tutorials/config_pitfalls/#passing-uncontrolled-requests-to-php) document regarding Passing Uncontrolled Requests to PHP. – Richard Smith Jan 07 '21 at 14:04

How can i block on Nginx an attack like the code below?

0 Answers0