Using a WAF is not a fancy thing. Little Z's blog has officially deployed a WAF in the environment to enhance website security. The open-source VeryNginx is used for implementation. If needed, you can refer to the documentation: OneinStack deployment of VeryNginx to implement WAF functionality.

What is a WAF?

A Web Application Firewall (WAF) is a product that provides protection for web applications by executing a series of security policies specifically for HTTP/HTTPS. It is also known as a website application-level intrusion defense system.

Website Description

If you accidentally trigger a WAF rule, your request will be intercepted. For example, if you try to request an illegal address like https://blog.xiaoz.org//www.zip%20Match1:www.zip%20Match2:/, it will have the same effect as shown in the image below.

If you have encountered any abnormalities when accessing the blog recently, please provide feedback below. Your assistance is greatly appreciated.