Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

nginx 보안 설정 추가 #156

Open
5 of 6 tasks
hyejungg opened this issue Mar 30, 2022 · 0 comments
Open
5 of 6 tasks

nginx 보안 설정 추가 #156

hyejungg opened this issue Mar 30, 2022 · 0 comments
Assignees
@hyejungg
Labels
feat 새 기능 추가 settings nginx nginx 설정을 추가

Comments

@hyejungg
Copy link
Member

hyejungg commented Mar 30, 2022
edited
Loading

What is this issue? 🚀

보안 설정을 추가하였습니다.

Progress 🏃‍♀️

  • ip 주소로 접근 불가하도록 변경 
    #default 파일 하단
server {
  listen 80 default_server;
  return 444;
}
  • 특정 url 차단 + bad_bot에 python-request 에이전트 추가
    • /.env
    • /actuator/health
    • /api/v1/notices?page=1&per_page=1&thread_name=general
    #default 파일
location / {
     ...
  # 특정 url 차단
  if ($request_uri ~* (.env|api|actuator|health|thread)){
     return 403;
  }
  ...
}
  • 커스텀 에러 페이지 설정 -> nginx 버전 안보이도록 추가
  • 특정 url 만 들어올 수 있도록 찾아보기 (/auth, /user, /folder, /item, /cart)
  • 92.118.161.29 - - [29/Mar/2022:19:35:12 +0900] "GET / HTTP/1.1" 200 22 "-" "NetSystemsResearch studies the availability of various services across the internet. Our website is netsystemsresearch.com"
  • 데일리로 슬랙에 알림 오는 404 경로 에러는 Nginx 단에서 막도록 상시 추가
@hyejungg hyejungg added the feat 새 기능 추가 label Mar 30, 2022
@hyejungg hyejungg self-assigned this Mar 30, 2022
@hyejungg hyejungg added the settings nginx nginx 설정을 추가 label Apr 4, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@hyejungg hyejungg

Labels
feat 새 기능 추가 settings nginx nginx 설정을 추가
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@hyejungg