Jump to content

ModSecurity rule to prevent dologin.php attacks


Kailash

Recommended Posts

Is there any mod_security rule to prevent direct attack to POST dologin.php file like following:

185.46.110.163 - - [19/Dec/2018:04:28:06 -0700] "POST /dologin.php HTTP/1.1" 302 - "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; rv:2.2) Gecko/20110201"
178.218.225.3 - - [19/Dec/2018:04:28:07 -0700] "POST /dologin.php HTTP/1.1" 302 - "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36"
185.46.154.136 - - [19/Dec/2018:04:28:07 -0700] "POST /dologin.php HTTP/1.1" 302 - "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.222

Thanks!

Link to comment
Share on other sites

  • 2 years later...

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...

Important Information

By using this site, you agree to our Terms of Use & Guidelines and understand your posts will initially be pre-moderated