Lazy Jerry lazyjerry

## Nginx 防護設定 nginx config
## 放在 server 區塊中，也可以獨立一個檔案讀取
## ref: https://www.howtoforge.com/nginx-how-to-block-exploits-sql-injections-file-injections-spam-user-agents-etc

## Block SQL injections
set $block_sql_injections 0;
if ($query_string ~ "union.*select.*\(") {
    set $block_sql_injections 1;
}
if ($query_string ~ "union.*all.*select.*") {
    set $block_sql_injections 1;
	## 放在 server 區塊中，也可以獨立一個檔案讀取
	## ref: https://www.howtoforge.com/nginx-how-to-block-exploits-sql-injections-file-injections-spam-user-agents-etc

	## Block SQL injections
	set $block_sql_injections 0;
	if ($query_string ~ "union.select.\(") {
	set $block_sql_injections 1;
	}
	if ($query_string ~ "union.all.select.*") {
	set $block_sql_injections 1;