Makussu/bunkerweb
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

examples - improve nextcloud example so it works with webdav clients

Browse Source
This commit is contained in:
bunkerity 2021-05-17 10:26:35 +02:00
parent b3bb4ec40f
commit 7c6a13c549
No known key found for this signature in database
GPG Key ID: 3D80806F12602A7C
4 changed files with 6 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
examples/multisite-custom-server-confs/docker-compose.yml
View File

@ -32,7 +32,8 @@ services:
- nc.website.com_LIMIT_REQ_BURST=10 - nc.website.com_LIMIT_REQ_BURST=10
- nc.website.com_ALLOWED_METHODS=GET|POST|HEAD|COPY|DELETE|LOCK|MKCOL|MOVE|PROPFIND|PROPPATCH|PUT|UNLOCK|OPTIONS - nc.website.com_ALLOWED_METHODS=GET|POST|HEAD|COPY|DELETE|LOCK|MKCOL|MOVE|PROPFIND|PROPPATCH|PUT|UNLOCK|OPTIONS
- nc.website.com_X_FRAME_OPTIONS=SAMEORIGIN - nc.website.com_X_FRAME_OPTIONS=SAMEORIGIN
- nc.website.com_BAD_BEHAVIOR_STATUS_CODES=400|401|403|405|444 - nc.website.com_BAD_BEHAVIOR_STATUS_CODES=400 401 403 405 444
- nc.website.com_WHITELIST_USER_AGENT=WebDAV
networks: networks:
- net1 - net1
- net2 - net2

2
examples/multisite-custom-server-confs/modsec-confs/nc.website.com/nextcloud.conf
View File

@ -1,2 +1,2 @@
SecRuleRemoveById 921110 SecRuleRemoveById 921110
SecRule REQUEST_FILENAME "@contains /remote.php/webdav" "id:1,ctl:ruleRemoveByTag=OWASP_CRS" SecRule REQUEST_FILENAME "@contains /remote.php/webdav" "id:1,nolog,pass,ctl:ruleRemoveByTag=OWASP_CRS"

3
examples/nextcloud/docker-compose.yml
View File

@ -30,7 +30,8 @@ services:
- ALLOWED_METHODS=GET|POST|HEAD|COPY|DELETE|LOCK|MKCOL|MOVE|PROPFIND|PROPPATCH|PUT|UNLOCK|OPTIONS - ALLOWED_METHODS=GET|POST|HEAD|COPY|DELETE|LOCK|MKCOL|MOVE|PROPFIND|PROPPATCH|PUT|UNLOCK|OPTIONS
- X_FRAME_OPTIONS=SAMEORIGIN - X_FRAME_OPTIONS=SAMEORIGIN
- USE_GZIP=yes - USE_GZIP=yes
- BAD_BEHAVIOR_STATUS_CODES=400|401|403|405|444 - BAD_BEHAVIOR_STATUS_CODES=400 401 403 405 444
- WHITELIST_USER_AGENT=WebDAV
mync: mync:
image: nextcloud:21-fpm image: nextcloud:21-fpm

2
examples/nextcloud/modsec-confs/nextcloud.conf
View File

@ -1,2 +1,2 @@
SecRuleRemoveById 921110 SecRuleRemoveById 921110
SecRule REQUEST_FILENAME "@contains /remote.php/webdav" "id:1,ctl:ruleRemoveByTag=OWASP_CRS" SecRule REQUEST_FILENAME "@contains /remote.php/webdav" "id:1,nolog,pass,ctl:ruleRemoveByTag=OWASP_CRS"