855bcbce34
This is related to some new bugs that found in LiveHackingEvent 1337up0522. The latest coreruleset need *ModSecurity version 2.9.6 or 3.0.8* - https://terjanq.medium.com/waf-bypasses-via-0days-d4ef1f212ec - https://coreruleset.org/20220920/crs-version-3-3-4-and-3-2-3/ - https://coreruleset.org/20220919/crs-version-3-3-3-and-3-2-2-covering-several-cves/ - https://github.com/coreruleset/coreruleset/releases/tag/v3.3.4 |
||
|---|---|---|
| .. | ||
| rootfs | ||
| cloudbuild.yaml | ||
| Makefile | ||
| rc.yaml | ||
| README.md | ||
NGINX base image using alpine
This custom image contains:
- nginx-http-auth-digest
- ngx_http_substitutions_filter_module
- OpenTelemetry-CPP
- OpenTelemetry-CPP-Nginx
- nginx-opentracing
- opentracing-cpp
- zipkin-cpp-opentracing
- dd-opentracing-cpp
- ModSecurity-nginx (only supported in x86_64)
- brotli
- geoip2
How to use this image: This image provides a default configuration file with no backend servers.
Using docker
NGINX base image we use is defined in NGINX_BASE file at the root of the project
docker run -v /some/nginx.conf:/etc/nginx/nginx.conf:ro $(cat ../../NGINX_BASE)