Xyoo tas los peb tau tso tawm Nemesida WAF Dawb, lub zog hloov pauv rau NGINX uas thaiv kev tawm tsam ntawm cov ntawv thov web. Tsis zoo li kev lag luam version, uas yog raws li kev kawm tshuab, cov dawb version soj ntsuam thov tsuas yog siv txoj kev kos npe.
Nta ntawm kev tso tawm ntawm Nemesida WAF 4.0.129
Ua ntej tshaj tawm tam sim no, Nemesida WAF dynamic module txhawb nqa tsuas yog Nginx Stable 1.12, 1.14 thiab 1.16. Qhov kev tso tawm tshiab ntxiv kev txhawb nqa rau Nginx Mainline, pib los ntawm 1.17, thiab Nginx Plus, pib ntawm 1.15.10 (R18).
Vim li cas thiaj ua lwm yam WAF?
NAXSI thiab mod_security yog tej zaum qhov nrov tshaj plaws WAF modules dawb, thiab mod_security yog nquag txhawb nqa los ntawm Nginx, txawm hais tias thaum xub thawj nws tsuas yog siv hauv Apache2. Ob qhov kev daws teeb meem yog dawb, qhib qhov chaw thiab muaj ntau tus neeg siv thoob ntiaj teb. Rau mod_security, dawb thiab ua lag luam kos npe teev muaj nyob rau $ 500 toj ib xyoo, rau NAXSI muaj cov txheej txheem kos npe dawb tawm ntawm lub thawv, thiab koj tuaj yeem nrhiav cov cai ntxiv, xws li doxsi.
Xyoo no peb tau sim ua haujlwm ntawm NAXSI thiab Nemesida WAF Dawb. Luv luv txog cov txiaj ntsig:
- NAXSI tsis ua ob npaug URL txiav txim siab hauv ncuav qab zib
- NAXSI siv sij hawm ntev heev los teeb tsa - los ntawm lub neej ntawd, qhov kev teeb tsa tsis raug cai yuav thaiv cov kev thov feem ntau thaum ua haujlwm nrog lub vev xaib (kev tso cai, kho qhov profile lossis cov khoom siv, koom nrog kev tshawb fawb, thiab lwm yam) thiab yuav tsum tsim cov npe tshwj xeeb. , uas muaj kev cuam tshuam tsis zoo rau kev ruaj ntseg. Nemesida WAF Dawb nrog rau qhov chaw pib tsis ua ib qho tsis tseeb zoo thaum ua haujlwm nrog lub xaib.
- tus naj npawb ntawm kev tawm tsam rau NAXSI yog ntau zaus ntau dua, thiab lwm yam.
Txawm hais tias muaj qhov tsis txaus, NAXSI thiab mod_security muaj tsawg kawg yog ob qhov zoo - qhib qhov chaw thiab ntau tus neeg siv. Peb txhawb lub tswv yim ntawm kev nthuav tawm qhov chaws, tab sis peb tsis tuaj yeem ua qhov no tseem vim muaj teeb meem nrog "piracy" ntawm kev lag luam version, tab sis txhawm rau them nyiaj rau qhov tsis txaus, peb tau nthuav tawm tag nrho cov ntsiab lus ntawm kos npe teev. Peb saib xyuas kev ceev ntiag tug thiab hais kom koj txheeb xyuas qhov no koj tus kheej siv lub npe server.
Nta ntawm Nemesida WAF Dawb:
- zoo kos npe database nrog tsawg kawg tus lej ntawm False Positive thiab False Negative.
- kev txhim kho thiab hloov tshiab los ntawm qhov chaw cia khoom (nws yog ceev thiab yooj yim);
- Cov xwm txheej yooj yim thiab nkag siab txog qhov xwm txheej, thiab tsis yog "kev ntxhov siab" zoo li NAXSI;
- dawb kiag li, tsis muaj kev txwv rau cov tsheb khiav, virtual hosts, thiab lwm yam.
Hauv kev xaus, kuv yuav muab ntau cov lus nug los ntsuas qhov ua tau zoo ntawm WAF (nws raug nquahu kom siv nws hauv txhua qhov chaw: URL, ARGS, Headers & Lub cev):
')) un","ion se","lect 1,2,3,4,5,6,7,8,9,0,11#"]
')) union/**/select/**/1,/**/2,/**/3,/**/4,/**/5,/**/6,/**/7,/**/8,/**/9,/**/'some_text',/**/11#"]
union(select(1),2,3,4,5,6,7,8,9,0x70656e746573746974,11)#"]
')) union+/*!select*/ (1),(2),(3),(4),(5),(6),(7),(8),(9),(0x70656e746573746974),(11)#"]
')) /*!u%6eion*/ /*!se%6cect*/ (1),(2),(3),(4),(5),(6),(7),(8),(9.),(0x70656e746573746974),(11)#"]
')) %2f**%2funion%2f**%2fselect (1),(2),(3),(4),(5),(6),(7),(8),(9),(0x70656e746573746974),(11)#"]
%5B%221807182982%27%29%29%20uni%22%2C%22on
%20sel%22%2C%22ect%201%2C2%2C3%2C4%2C5%2C6%2C7%2C8%2C9%2C%2some_text%27%2C11%23%22%5D
cat /et?/pa?swd
cat /et'c/pa'ss'wd
cat /et*/pa**wd
e'c'ho 'swd test pentest' |awk '{print "cat /etc/pas"$1}' |bas'h
cat /etc/passwd
cat$u+/etc$u/passwd$u
<svg/onload=alert()//
Yog tias qhov kev thov tsis raug thaiv, ces feem ntau yuav WAF yuav plam qhov kev tawm tsam tiag. Ua ntej siv cov piv txwv, xyuas kom tseeb tias WAF tsis thaiv cov kev thov raug cai.
Tau qhov twg los: www.hab.com