From c577507b687f760ee24a44a6be5428097a8e6a29 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=C6=ACHE=20=D0=AFAW=20=E2=98=A3?= <raw@dopehosting.net>
Date: Sat, 30 Dec 2017 00:42:45 +0100
Subject: [PATCH] Update default

---
 static/vhost/default | 20 ++++++++++++++++----
 1 file changed, 16 insertions(+), 4 deletions(-)

diff --git a/static/vhost/default b/static/vhost/default
index 8bbf8cd..f5a7976 100644
--- a/static/vhost/default
+++ b/static/vhost/default
@@ -4,13 +4,25 @@ server {
         index index.html;
         server_name localhost;
 
-
         location / {
-         access_log /hostdata/default/logs/access.log main;
-         error_log  /hostdata/default/logs/error.log;
+          SecRulesEnabled;
+          LearningMode;
+          DeniedUrl "/denied/";
+          CheckRule "$SQL >= 8" BLOCK;
+          CheckRule "$RFI >= 8" BLOCK;
+          CheckRule "$TRAVERSAL >= 4" BLOCK;
+          CheckRule "$EVADE >= 4" BLOCK;
+          CheckRule "$XSS >= 8" BLOCK;
          
-         try_files $uri $uri/ =404;
+          access_log /hostdata/default/logs/access.log main;
+          error_log  /hostdata/default/logs/error.log;
+         
+          try_files $uri $uri/ =404;
         }
+        location /denied/ {
+          return 444;
+        }
+        
         
         location ~ \.php {
           try_files $uri /index.php =404;