Redirect 清漆&x2B;Nginx重定向问题(重定向到:8080)
我正在使用Wordpress和Redirect 清漆&x2B;Nginx重定向问题(重定向到:8080),redirect,nginx,wordpress,varnish,Redirect,Nginx,Wordpress,Varnish,我正在使用Wordpress和更好的WP安全性插件 该插件提供了一个选项,不允许机器人程序或任何人登录到/wp admin或/wp login 相反,它要求您访问一个特定的URL,例如/secret area,然后从那里将您重定向到以下URL(注意它附加的长键): /wp admin?h28g8y28kknkwh28h3&重定向到=/wp admin/ 这样,正在扫描的机器人就找不到常见的Wordpress登录路径 问题是,当我启用Varnish时,当我访问/secret area时,页面试图重
更好的WP安全性/wp admin/wp login/secret area/wp admin?h28g8y28kknkwh28h3&重定向到=/wp admin//secret areaexample.com:8080/wp login.php?h28g8y28kknkwh28h3&重定向到=/wp admin/8080Better WP Security# BEGIN Better WP Security
set $susquery 0;
set $rule_2 0;
set $rule_3 0;
if ($request_method ~* "^(TRACE|DELETE|TRACK)"){ return 403; }
location /wp-comments-post.php {
valid_referers novalidreferrers;
set $rule_0 0;
if ($request_method ~ "POST"){ set $rule_0 1$rule_0; }
if ($invalid_referer) { set $rule_0 2$rule_0; }
if ($http_user_agent ~ "^$"){ set $rule_0 3$rule_0; }
if ($rule_0 = "3210") { return 403; }
} if ($args ~* "\.\./") { set $susquery 1; }
if ($args ~* ".(bash|git|hg|log|svn|swp|cvs)") { set $susquery 1; }
if ($args ~* "etc/passwd") { set $susquery 1; }
if ($args ~* "boot.ini") { set $susquery 1; }
if ($args ~* "ftp:") { set $susquery 1; }
if ($args ~* "http:") { set $susquery 1; }
if ($args ~* "https:") { set $susquery 1; }
if ($args ~* "(<|%3C).*script.*(>|%3E)") { set $susquery 1; }
if ($args ~* "mosConfig_[a-zA-Z_]{1,21}(=|%3D)") { set $susquery 1; }
if ($args ~* "base64_encode") { set $susquery 1; }
if ($args ~* "(%24&x)") { set $susquery 1; }
if ($args ~* "(\[|\]|\(|\)|<|>|ê|\"|;|\?|\*|=$)"){ set $susquery 1; }
if ($args ~* "("|'|<|>|\|{|||%24&x)"){ set $susquery 1; }
if ($args ~* "(127.0)") { set $susquery 1; }
if ($args ~* "(%0|%A|%B|%C|%D|%E|%F)") { set $susquery 1; }
if ($args ~* "(globals|encode|localhost|loopback)") { set $susquery 1; }
if ($args ~* "(request|select|insert|concat|union|declare)") { set $susquery 1; }
if ($http_cookie !~* "wordpress_logged_in_" ) {
set $susquery 2$susquery;
set $rule_2 1;
set $rule_3 1;
}
if ($args !~ "^loggedout=true") { set $susquery 3$susquery; }
if ($susquery = 4321) { return 403; }
rewrite ^/login/?$ /wp-login.php?h28g8y28kknkwh28h3 redirect;
if ($rule_2 = 1) { rewrite ^/admin/?$ /wp-login.php?h28g8y28kknkwh28h3&redirect_to=/wp-admin/ redirect; }
if ($rule_2 = 0) { rewrite ^/admin/?$ /wp-admin/?h28g8y28kknkwh28h3 redirect; }
rewrite ^/register/?$ /wp-login.php?h28g8y28kknkwh28h3&action=register redirect;
if ($uri !~ "^(.*)admin-ajax.php") { set $rule_3 2$rule_3; }
if ($http_referer !~* wp-admin ) { set $rule_3 3$rule_3; }
if ($http_referer !~* wp-login.php ) { set $rule_3 4$rule_3; }
if ($http_referer !~* login ) { set $rule_3 5$rule_3; }
if ($http_referer !~* admin ) { set $rule_3 6$rule_3; }
if ($http_referer !~* register ) { set $rule_3 7$rule_3; }
if ($args !~ "^action=logout") { set $rule_3 8$rule_3; }
if ($args !~ "^h28g8y28kknkwh28h3") { set $rule_3 9$rule_3; }
if ($args !~ "^action=rp") { set $rule_3 0$rule_3; }
if ($args !~ "^action=register") { set $rule_3 a$rule_3; }
if ($args !~ "^action=postpass") { set $rule_3 b$rule_3; }
if ($rule_3 = ba0987654321) {
rewrite ^(.*/)?wp-login.php /not_found redirect;
rewrite ^/wp-admin(.*)$ /not_found redirect;
}
# END Better WP Security
#开始提高WP安全性
设置$0;
设置$rule_2 0;
设置$rule_3 0;
if($request_method~*“^(TRACE | DELETE | TRACK)”){return 403;}
位置/wp-comments-post.php{
有效的推荐人或推荐人;
设置$rule\u 0;
if($request_method~“POST”){set$rule_0 1$rule_0;}
if($invalid_referer){set$rule_0 2$rule_0;}
如果($http_user_agent~“^$”{set$rule_0 3$rule_0;}
如果($rule_0=“3210”){return 403;}
}如果($args~*“\.\./”){set$susquery 1;}
if($args~*”(bash | git | hg | log | svn | swp | cvs){set$susquery 1;}
if($args~*“etc/passwd”){set$susquery 1;}
if($args~*“boot.ini”){set$susquery 1;}
if($args~*“ftp:”){set$susquery 1;}
if($args~*“http:”){set$susquery 1;}
if($args~*“https:”){set$susquery 1;}
if($args~*“(|%3E)”){set$susquery 1;}
如果($args~*“mosConfig_u[a-zA-Z_]{1,21}(|%3D)”{set$susquery 1;}
if($args~*“base64_encode”){set$susquery 1;}
if($args~*“(%24&x)”){set$susquery 1;}
如果($args~*”(\[\\]\(\[\\)\\\\\\\\\\\\?\\*\=$)”{set$susquery 1;}
如果($args~*”(";';<;>;\;{;|;| 24&x){set$susquery 1}
if($args~*“(127.0)”{set$susquery 1;}
如果($args~*“(%0 |%A |%B |%C |%D |%E |%F)”){set$susquery 1;}
if($args~*“(全局|编码|本地主机|环回)”){set$susquery 1;}
if($args~*”(请求|选择|插入| concat |联合|声明){set$susquery 1;}
如果($http\u cookie!~*“wordpress\u登录\u”){
设置$SUSKERY 2$SUSKERY;
设置$rule_2 1;
设置$rule_3 1;
}
如果($args!~“^loggedout=true”){set$susquery 3$susquery;}
如果($susquery=4321){return403;}
重写^/login/?$/wp login.php?h28g8y28kknkwh28h3重定向;
如果($rule_2=1){rewrite^/admin/?$/wp login.php?h28g8y28kknkwh28h3&redirect_to=/wp admin/redirect;}
如果($rule_2=0){重写^/admin/?$/wp admin/?h28g8y28kknkwh28h3重定向;}
重写^/register/?$/wp login.php?h28g8y28kknkwh28h3&action=注册重定向;
if($uri!~“^(.*)admin ajax.php”){set$rule\u 3 2$rule\u 3;}
如果($http\u referer!~*wp admin){set$rule\u 3$rule\u 3;}
if($http\u referer!~*wp-login.php){set$rule\u 3 4$rule\u 3;}
如果($http\u referer!~*login){set$rule\u 3 5$rule\u 3;}
如果($http\u referer!~*admin){set$rule\u 3 6$rule\u 3;}
if($http\u referer!~*register){set$rule\u 3 7$rule\u 3;}
如果($args!~“^action=logout”){set$rule\u 3 8$rule\u 3;}
if($args!“^h28g8y28kknkwh28h3”){set$rule_3 9$rule_3;}
如果($args!~“^action=rp”){set$rule\u 3 0$rule\u 3;}
如果($args!~“^action=register”){set$rule\u 3 a$rule\u 3;}
如果($args!~“^action=postpass”){set$rule\u 3 b$rule\u 3;}
如果($rule_3=ba0987654321){
重写^(.*/)?wp-login.php/not_-found重定向;
重写^/wp admin(.*)$/not\u找到重定向;
}
#结束更好的可湿性粉剂安全
port\u in\u redirect off;