Skip to content

Instantly share code, notes, and snippets.

What would you like to do?
nginx rule to mitigate DoS attack on WordPress load-scripts.php
location ~* ^/wp-admin/load-scripts\.php$ {
if ( $query_string ~* "^.{1024,}$" ) {
return 444;

This comment has been minimized.

Copy link

@joetek joetek commented Feb 6, 2018

Thanks for sharing. Might want to also mitigate load-styles.php, as it has the same issues.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment