theraw/The-World-Is-Yours
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
301 Commits 9 Branches 3 Tags
026adc4d5a00d729753337b763d79ebb25d6c9d9
T
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
ƬHE ЯAW ☣ 026adc4d5a Update README.md
2022-04-12 01:57:29 +02:00
.github/workflows
Update docker-image.yml
2022-04-12 01:56:32 +02:00
static
Add files via upload
2022-03-29 02:56:52 +02:00
Dockerfile
Update Dockerfile
2022-04-12 00:56:46 +02:00
install
oopsie
2022-03-29 04:16:30 +02:00
LICENSE
Create LICENSE
2022-03-21 15:11:30 +07:00
README.md
Update README.md
2022-04-12 01:57:29 +02:00

README.md

Nginx L7 DDoS Protection! 💥 Docker Image CI

Now easier then before, you will have to compile only Nginx, Rest of modules come pre-compiled. Simple

  • Support Ubuntu 20.04.

-- Security Dynamic Modules.

  • ModSecurity Support.
  • Naxsi Support.
  • Cookie Based Challenge.

How do these 3 modules work together? Well L7 will block all or most of bots, however modSecurity and Naxsi take priority over cookie challenge! So if its a offensive request that modsecurity or naxsi detect it as such then these 2 will deal with that request otherwise cookie challenge will appear.

INSTALLATION

  1. apt-get install build-essential libssl-dev curl nano wget zip unzip sudo git psmisc -y

  2. curl -s https://raw.githubusercontent.com/theraw/The-World-Is-Yours/master/install > install; bash install

FOLDER PATH.

=> /nginx/                                = Nginx Path, (private)
=> /nginx/live/                           = Vhosts Configs (private)
=> /nginx/modsec/                         = Security Rules Dir (private)
=> /hostdata/                             = Place to store your domain folders. (private)
=> /hostdata/yourdomain.com/              = Ex of domain dir (private folder),
=> /hostdata/yourdomain.com/public_html/  = Ex of your domain webroot (public files only),
=> /hostdata/yourdomain.com/logs/         = Place where to store your Domains logs (access.log) (private folder),
=> /hostdata/yourdomain.com/ssl/          = Place where to store domain ssl/key (private folder),
=> /hostdata/yourdomain.com/cache/        = Place where to store site cache (private folder).

// Private Folder - Means this cannot be accessed by public.
// Public Folder  - Means files into this folder can be accessed by public.

KEEP IN MIND!

  1. You're trading perfomance for security.
  2. If your server provider does not have anti-ddos your IPTABLES will fail to keep the bans, and your server may be offline in cases of big attacks.

Contributors

Special thanks to the following contributors:


ƬHE ЯAW ☣
Lục Thiên Phong
Reference in New Issue View Git Blame Copy Permalink
S
Description
No description provided
Readme Apache-2.0 81 MiB
Languages
Shell 99.5%
HTML 0.5%