SQL Injection Block

melaleuca · March 11, 2016, 7:50am

I am looking for example to block XSS (SQL injections).

Baptiste · March 22, 2016, 8:03pm

well, something like this:

frontend f_main
   timeout http-request 10s
   option http-buffer-request
   http-request deny if { req.body -m reg "(SELECT * FROM|; SELECT)" }

Update the regex list to match your SQLinjections attack.

Topic		Replies	Views
Cannot POST text with "select " and " into " Help!	1	416	March 18, 2022
Block Vulnerability Scanners base on http_err_rate Help!	0	966	May 31, 2017
How to enable DDoS protection? Help!	0	274	August 24, 2023
Brute Force protection with Basic Authentication Help!	0	525	April 27, 2018
How to prevent the backend from serving traffic when clients receive a mass timeout? Help!	0	132	August 4, 2023