gixy
caddy-ratelimit
gixy | caddy-ratelimit | |
---|---|---|
9 | 1 | |
8,153 | 14 | |
0.2% | - | |
4.3 | 0.0 | |
4 months ago | almost 2 years ago | |
Python | Go | |
GNU General Public License v3.0 or later | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
gixy
- If is Evil when used in location context
- Gixy is a tool to prevent Nginx security misconfiguration
- GitHub - yandex/gixy: Nginx configuration static analyzer
- Gixy: Nginx Configuration Static Analyzer
-
Leaking Bitwarden's Vault with a Nginx vulnerability
https://github.com/yandex/gixy/blob/master/docs/en/plugins/a...
(and nixos automatically runs gixy on a configuration generated through it, so the system refuses to build <3)
-
Avoiding the Top Nginx Configuration Mistakes
* [alias_traversal] Path traversal via misconfigured alias
The alias traversal gotcha is one of the most pernicious I've seen. A single, seemingly innocuous '/' is the difference between a path traversal vulnerability or not.
[0]: https://github.com/yandex/gixy#what-it-can-do
-
2 of my servers got hacked last night around the same time.
not sure what is the exact reason but, nginx has vulnerability of of misconfigured ngnix.conf, I recommend using https://github.com/yandex/gixy and check if your nginx config files any sort of misconfig or not.
- GIXY – Nginx configuration static analyzer
- Common Nginx misconfigurations that leave your web server open to attack
caddy-ratelimit
-
Common Nginx misconfigurations that leave your web server open to attack
Caddy has a rate limiting plugin. Using it requires building a new Docker image, if necessary. https://github.com/hundertzehn/caddy-ratelimit
What are some alternatives?
Caddy - Fast and extensible multi-platform HTTP/1-2-3 web server with automatic HTTPS
dist - Resources for packaging and distributing Caddy
materialize - Materialize, a web framework based on Material Design
manix - A fast CLI documentation searcher for Nix.
static-web-server - A cross-platform, high-performance and asynchronous web server for static files-serving. ⚡
merecat - Small and made-easy HTTP/HTTPS server based on Jef Poskanzer's thttpd
caddy-docker - Source for the official Caddy v2 Docker Image
vaultwarden - Unofficial Bitwarden compatible server written in Rust, formerly known as bitwarden_rs
dhall - Maintainable configuration files
Materialize - Materialize, a CSS Framework based on Material Design
nixpkgs - Nix Packages collection & NixOS