Explanation of Enabling WAF on Little Z's Blog
Publish: 2016-10-26 | Modify: 2017-06-21
Using a WAF is not a fancy thing. Little Z's blog has officially deployed a WAF in the environment to enhance website security. The open-source VeryNginx is used for implementation. If needed, you can refer to the documentation: OneinStack deployment of VeryNginx to implement WAF functionality.
What is a WAF?
A Web Application Firewall (WAF) is a product that provides protection for web applications by executing a series of security policies specifically for HTTP/HTTPS. It is also known as a website application-level intrusion defense system.
Website Description
If you accidentally trigger a WAF rule, your request will be intercepted. For example, if you try to request an illegal address like https://blog.xiaoz.org//www.zip%20Match1:www.zip%20Match2:/, it will have the same effect as shown in the image below.
If you have encountered any abnormalities when accessing the blog recently, please provide feedback below. Your assistance is greatly appreciated.
Comments
xiaoz
I come from China and I am a freelancer. I specialize in Linux operations, PHP, Golang, and front-end development. I have developed open-source projects such as Zdir, ImgURL, CCAA, and OneNav.
Random article
- The Bumpy Journey of Registering a WISE Business Account in the UK
- An Analysis of the Principles and Theoretical Foundations of HTTPS
- Guide to UK Corporate Tax: How to Register and Activate Your UTR
- Bandwagon Cheap VPS Hosting/CN2 Network with Reviews
- Megalayer Black Friday Flash Sale: $199 Dedicated Server / $9.9 VPS
- Exclusive November Account Opening Promotion at Huashengtong: Get 600 HKD Cash Voucher + 400 HKD Stock
- Building a WEB Shared Terminal (WebSSH) using ttyd on CentOS 7
- 4 Methods to Change MySQL Root Password
- Validating CloudFlare Certificate Requests with Nginx Location Matching
- Changing Domain Name for Two Weeks: Let's See How Major Search Engines Respond