Software version:
centos 7
naxsi-0.55.3
tengine-2.2.2
nginx.conf file configuration, refer to official website document configuration,
SecRulesEnabled;
LearningMode;
DeniedUrl "/403.html";
CheckRule "$SQL >= 8" BLOCK;
CheckRule "$RFI >= 8" BLOCK;
CheckRule "$TRAVERSAL >= 4" BLOCK;
CheckRule "$EVADE >= 4" BLOCK;
CheckRule "$XSS >= 8" BLOCK;
error_log logs/foo.log;
question:
2018/03/29 23:26:05 [error] 902-sharp0: *10 NAXSI_FMT:ip=192.168.2.108&server=admin.zhengxin.com&
uri=/test&learning=1&vers=0.55.3&total_processed=5&total_blocked=5&block=1&
cscore0=$XSS&score0=24&zone0=HEADERS&
id0=1315&var_name0=cookie, client: 192.168.2.108, server: admin.zhengxin.com,
request: "GET /test HTTP/1.1", host: "admin.zhengxin.com"
CheckRule "$XSS >= 8" BLOCK ;
question:
CheckRule "$XSS >= 8" BLOCK